GWEB

GDPR Compliance Statement for GWEB.TECH

Last Updated: May 18, 2025

1. Introduction

Global Web Technology Services LLC, also known as GWEB.TECH (the "Company", "we", "us", or "our"), operates this website, gweb.tech (referred to as the "Site" or "Website") to serve its customers. By utilizing the Site or any current or forthcoming service(s) provided by the Company (collectively referred to as the "Services"), in alignment with the relevant service agreement ("Service Agreement(s)"), you are acknowledging your agreement to adhere to and be bound by the terms and conditions outlined in our Terms of Use and Policies, as well as any operational rules, regulations, policies, and procedures that may be revised periodically on the Site (collectively known as the "Terms"). These Terms dictate your access to and utilization of the Site, the Services, and any information, products, software, and/or features provided to you. If you are utilizing the Site or Services on behalf of your employer, you confirm that you have the authority to accept these Terms on your employer's behalf.

This particular document, the GDPR Compliance Statement, outlines how GWEB.TECH collects, uses, processes, and protects the personal data of individuals within the European Economic Area (EEA) and the UK, in accordance with the General Data Protection Regulation (GDPR). This statement is an integral part of our overall commitment to transparency and data protection and should be read in conjunction with our main Privacy Policy and Cookie Policy, which are available on our Site.

Disclaimer: This document is for informational purposes only and does not constitute legal advice. You should consult with a legal professional to ensure full compliance with GDPR.

2. Data Controller

The data controller responsible for your personal data is:

Global Web Technology Services LLC ("GWEB.TECH") PO BOX 40054, Bellevue, WA 98000, USA privacy@gweb.tech (888)-861-2068

3. What Personal Data We Collect

We may collect and process the following categories of personal data:

Identity Data: Includes first name, last name, username or similar identifier. (We collect this if you create an account, fill out a contact form, or register for our services).
Contact Data: Includes billing address, delivery address (if applicable for services/products), email address, and telephone numbers. (We collect this when you register for services, make a purchase, or request support).
Technical Data: Includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this Website. (This is often collected automatically by our web servers and analytics tools).
Usage Data: Includes information about how you use our Website, products, and services, such as pages visited, features used, and time spent on the Site.
Marketing and Communications Data: Includes your preferences in receiving marketing from us and our third parties and your communication preferences. (We collect this if you subscribe to our newsletters, product updates, or other marketing communications).
Cookies and Tracking Data: Information collected via cookies and similar tracking technologies. Please see our Cookie Policy, available on our Site, for more details.
User-Generated Content: Any information you voluntarily submit to us, such as comments on blog posts, forum contributions, testimonials, or feedback provided through surveys or support channels. (Applicable if your site has these features).
Transaction Data: Includes details about payments to and from you and other details of products and services you have purchased from us. (Applicable if you sell products/services directly on the site).
Developer Data: If you use our APIs or developer tools, we may collect information related to your API usage, project details, or integration methods. (Applicable if you offer developer services).

We do not intentionally collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data) unless you voluntarily provide it or it is strictly necessary for a service you request (and with explicit consent where required).

4. How We Use Your Personal Data

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

To provide and manage your access to our Website: (e.g., authenticating users, maintaining user accounts).
To operate and improve our Website: (e.g., analyzing usage to enhance user experience, troubleshooting, developing new features).
To personalize your experience on our Website: (e.g., showing relevant content, service recommendations).
To communicate with you: (e.g., responding to inquiries, sending service updates, administrative messages, and support requests).
For marketing purposes: (e.g., sending newsletters, promotional materials about new services or special offers, but only with your explicit consent where required or based on legitimate interest for existing customers, with an option to opt-out).
To comply with legal obligations: (e.g., fraud prevention, tax reporting, responding to lawful requests by public authorities).
To manage our relationship with you: (e.g., notifying you about changes to our terms or privacy policy, managing subscriptions).
To process transactions: (e.g., to fulfill orders for services or products).
To provide customer support and technical assistance.
For security and fraud prevention purposes.

5. Legal Basis for Processing Personal Data

We process your personal data based on the following legal grounds under GDPR:

Consent: Where you have given us explicit consent to process your personal data for one or more specific purposes (e.g., subscribing to a marketing newsletter). You have the right to withdraw consent at any time.
Contract: Where processing is necessary for the performance of a contract to which you are a party or to take steps at your request before entering into such a contract (e.g., providing a service you signed up for, processing your order).
Legal Obligation: Where processing is necessary for compliance with a legal obligation to which we are subject (e.g., tax laws, anti-fraud regulations).
Legitimate Interests: Where processing is necessary for our legitimate interests (or those of a third party), and your interests and fundamental rights do not override those interests. We will identify what our legitimate interests are when applicable (e.g., improving our Website and Services, network security, preventing fraud, direct marketing to existing customers for similar services, subject to opt-out).

6. Data Sharing and Transfers

We do not sell your personal data. We may share your personal data with trusted third parties under the following circumstances:

Service Providers: Companies that provide services on our behalf, such as:
- Website hosting providers (e.g., AWS, Google Cloud, Azure - specify your provider if comfortable)
- Payment processors (e.g., Stripe, PayPal - if you process payments)
- Analytics providers (e.g., Google Analytics - be sure to mention if you use this and have a data processing agreement)
- Email marketing and communication platforms (e.g., Mailchimp, SendGrid)
- Customer support platforms (e.g., Zendesk, Intercom)
- Cloud storage providers
- IT service and security providers These providers are contractually bound to protect your data and use it only for the purposes we specify.
Legal Requirements: If required by law, regulation, or legal process (such as a court order or subpoena), or to protect the rights, property, or safety of GWEB.TECH, our customers, or others.
Business Transfers: In connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company. We will notify you before your personal data is transferred and becomes subject to a different privacy policy.
With Your Consent: We may share your data with other third parties if you have explicitly consented to it.

International Data Transfers: Your personal data may be transferred to, and processed in, countries other than the country in which you are resident. These countries may have data protection laws that are different from the laws of your country. Specifically, our primary servers are located in Virginia, USA, and our third-party service providers may operate around the world. If we transfer your personal data out of the EEA or UK to countries not deemed to provide an adequate level of data protection, we will ensure that appropriate safeguards are in place. These typically include implementing Standard Contractual Clauses (SCCs) approved by the European Commission with our third-party service providers and partners or relying on other legally recognized transfer mechanisms such as adequacy decisions or Binding Corporate Rules where applicable.

7. Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. Generally, data related to active accounts or ongoing services will be retained for 24 months after the account becomes inactive or the service concludes, unless a different retention period is specified below or required by law.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

Examples of retention periods:

User account data: Retained for as long as the account is active and for a period of 24 months thereafter for analytical or administrative purposes, unless legal obligations require longer retention.
Contact form submissions/customer inquiries: Retained for 24 months after the last interaction to ensure we can address follow-up questions or issues.
Technical and Usage Data (e.g., server logs): Retained for up to 24 months for security, troubleshooting, and analytical purposes.
Marketing preferences: Retained as long as you consent to receive marketing communications. If you opt-out, we will retain a record of your opt-out indefinitely to ensure we respect your preference.
Transaction Data: Retained for up to 7 years to comply with tax and accounting laws. If local compliance and laws dictate a different retention period for transaction data, we will adhere to those specific local requirements. (Please review and update these examples with your actual retention policies if they differ).

8. Your Data Protection Rights

Under GDPR, you have the following rights regarding your personal data:

The right to be informed: To know how we process your personal data (which is the purpose of this statement).
The right of access: To request copies of your personal data.
The right to rectification: To request correction of inaccurate or incomplete personal data.
The right to erasure (right to be forgotten): To request deletion of your personal data, under certain conditions.
The right to restrict processing: To request the restriction of processing your personal data, under certain conditions.
The right to data portability: To request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
The right to object to processing: To object to our processing of your personal data, under certain conditions (e.g., for direct marketing, or processing based on legitimate interests).
Rights in relation to automated decision making and profiling: You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. (GWEB.TECH does not currently engage in automated decision-making or profiling that has legal or similarly significant effects on individuals. If this changes, we will update this statement).

To exercise any of these rights, please contact us at privacy@gweb.tech. We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We will try to respond to all legitimate requests within one month.

You also have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement if you consider that the processing of personal data relating to you infringes GDPR.

9. Data Security

We have implemented appropriate technical and organizational security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorized way, altered, or disclosed. These measures include:

Encryption: Use of SSL/TLS encryption for data transmitted to and from our Site.
Access Controls: Limiting access to personal data to employees, contractors, and agents who have a business need to know. They are subject to confidentiality obligations.
Regular Security Assessments: Conducting periodic reviews of our security practices.
Data Minimization: Collecting only the personal data necessary for the stated purposes.
Incident Response Plan: Procedures in place to deal with any suspected personal data breach. We will notify you and any applicable regulator of a breach where we are legally required to do so.
Secure Server Environments: Hosting data in secure data centers with physical and electronic security measures.

However, no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its absolute security.

10. Use of Cookies and Tracking Technologies

Our Website uses cookies and similar tracking technologies (such as web beacons and pixels) to enhance user experience, analyze website traffic, distinguish you from other users, and for marketing purposes. For detailed information on the cookies we use, the purposes for which we use them, and how you can manage your cookie preferences, please refer to our Cookie Policy, available on our Site.

11. Children's Privacy

Our Website and Services are not intended for, and we do not knowingly direct them to, children under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under the age of 16 without verification of parental consent, we will take steps to remove that information from our servers. If you are a parent or guardian and believe that your child has provided us with personal data without your consent, please contact us at privacy@gweb.tech, and we will take steps to delete such information from our systems.

12. Changes to This GDPR Compliance Statement

We may update this GDPR Compliance Statement from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the new statement on this page and updating the "Last Updated" date. We encourage you to review this statement periodically for any changes. Your continued use of the Site or Services after any changes or revisions to this GDPR Compliance Statement shall indicate your agreement with the terms of such revised statement.

13. Contact Us

If you have any questions about this GDPR Compliance Statement or our data protection practices, or if you wish to exercise any of your rights, please contact us:

By email: privacy@gweb.tech By mail: Global Web Technology Services LLC, PO BOX 40054, Bellevue, WA 98000, USA By phone: (888)-861-2068

;