Explyra
GDPR COMPLIANCE

General Data Protection

Last Updated: March 17, 2026

Explyra is committed to the highest standards of data privacy and transparency for our European Union and global users.

1Commitment to GDPR

Explyra ("we," "us," or "our") is dedicated to protecting the privacy and security of your personal data. This GDPR Compliance statement outlines our efforts to adhere to the General Data Protection Regulation (Regulation (EU) 2016/679) for all individuals within the European Economic Area (EEA) and the United Kingdom.

2Data Protection Principles

We process data in accordance with the seven core principles of GDPR:

  • Lawfulness, Fairness, and Transparency: We process data lawfully and are fully transparent with users.
  • Purpose Limitation: We only collect data for specific, explicit, and legitimate purposes.
  • Data Minimization: We limit collection to only what is necessary for our services.
  • Accuracy: We take reasonable steps to ensure data is accurate and up to date.
  • Storage Limitation: Data is retained only for as long as necessary.
  • Integrity and Confidentiality: We use advanced encryption and security controls.
  • Accountability: We document our compliance measures and take responsibility for data processing.

3User Rights (Chapter III)

As a data subject under GDPR, you possess significant rights regarding your information:

  • Right of Access (Art. 15): Obtain confirmation of processing and access to your data.
  • Right to Rectification (Art. 16): Correct inaccurate or incomplete personal information.
  • Right to Erasure (Art. 17): Request the permanent deletion of your data ("Right to be Forgotten").
  • Right to Data Portability (Art. 20): Receive your data in a structured, commonly used, and machine-readable format.
  • Right to Object (Art. 21): Object to processing based on legitimate interests or direct marketing.

4Data Protection Impact Assessments (DPIA)

For high-risk processing activities, particularly those involving automated decision-making or new technologies, Explyra™ conducts Data Protection Impact Assessments. These assessments ensure that privacy risks are identified and mitigated at the architectural phase of any new feature development.

5Sub-processing & Vendor Management

We only share data with third-party subprocessors who demonstrate equivalent or superior GDPR compliance standards. All subprocessors are subject to strict Data Processing Addendums (DPAs) in accordance with Article 28. For a full list of our partners, please visit our Subprocessors Page.

6Data Breach Protocol

In the event of a personal data breach, Explyra™ follows a rigorous notification protocol. We will notify the relevant Supervisory Authority within 72 hours of becoming aware of the breach, unless the breach is unlikely to result in a risk to your rights. Impacted users will be notified without undue delay.

7Data Protection Officer (DPO)

Explyra™ has appointed a Data Protection Officer to oversee our compliance program. If you wish to exercise your rights or have any questions, please contact our legal department:

📧 Email: [email protected]
🏢 GDPR Compliance Office · Explyra™
📍 New Delhi, India