GDPR Policy

Last updated: July 2025

1. Introduction

This GDPR Policy explains how PulseScale complies with the General Data Protection Regulation (GDPR) (EU) 2016/679 when processing the personal data of individuals located in the European Economic Area (EEA).

2. Lawful Basis for Processing

We collect and process personal data based on one or more of the following legal bases:

• Consent
• Performance of a contract
• Legal obligation
• Legitimate interests

3. Data Collection

We may collect personal data such as name, email address, job title, company, and usage data from our website and services.

4. Data Subject Rights

Under the GDPR, you have the following rights:

• Right to access your data
• Right to rectification
• Right to erasure ("right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object
• Right to withdraw consent

5. Data Transfers

If we transfer personal data outside the EEA, we ensure adequate safeguards are in place such as Standard Contractual Clauses or equivalent protection mechanisms.

6. Data Security

We take appropriate security measures to protect personal data from unauthorized access, alteration, or disclosure.

7. Data Retention

We retain data only as long as necessary to fulfill our service obligations or comply with legal requirements.

8. Use of Processors

We may use third-party processors to help deliver our services. All processors are bound by strict data protection terms.

9. Complaints

If you believe your rights under GDPR have been violated, you have the right to lodge a complaint with your local data protection authority.

10. Contact

For GDPR-related inquiries, please contact our Data Protection Officer at dpo@pulsescaleware.com