CreatorXOne

CreatorXone GDPR Compliance Statement

CreatorXone, a project by MSB Media, s.r.o., VAT number: SK2121581044 ("we," "us," "our"), is committed to protecting the personal data of our users in compliance with the General Data Protection Regulation (GDPR), Regulation (EU) 2016/679. This statement outlines how we ensure your rights and data are safeguarded while using our dashboard for managing and enhancing your presence on platforms like OnlyFans, Fansly, and Reddit ("Service").

1. Introduction

As a company based in Slovakia, we adhere to GDPR requirements when processing personal data of individuals in the European Union (EU) and European Economic Area (EEA). This statement complements our Privacy Policy and Terms of Service, detailing our approach to GDPR compliance.

2. Lawful Basis for Processing

We process your personal data based on the following lawful grounds under GDPR:

  • Contract: To provide our Service as agreed in our Terms of Service (e.g., managing your social media presence).
  • Consent: Where you explicitly agree, such as for marketing communications or optional features.
  • Legitimate Interest: For purposes like improving our Service or ensuring its security, balanced against your rights and freedoms.
  • Legal Obligation: To comply with applicable laws and regulations.

3. Your GDPR Rights

As an EU/EEA resident, you have the following rights regarding your personal data under GDPR:

  • Right to Access: Request a copy of the data we hold about you.
  • Right to Rectification: Correct inaccurate or incomplete data.
  • Right to Erasure: Request deletion of your data ("right to be forgotten").
  • Right to Restrict Processing: Limit how we use your data in certain cases.
  • Right to Object: Oppose processing based on legitimate interests or for direct marketing.
  • Right to Data Portability: Receive your data in a structured, machine-readable format.
  • Right to Withdraw Consent: Revoke consent at any time where processing relies on it.

To exercise these rights, contact us at [email protected].

4. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including multiple layers of encryption for credentials and strict User Access Control (UAC) mechanisms, as required by GDPR Article 32.

5. Data Transfers

If we transfer your data outside the EEA (e.g., to third-party service providers), we ensure adequate protection through safeguards such as Standard Contractual Clauses (SCCs) approved by the European Commission, in line with GDPR Article 46.

6. Data Breach Notification

In the event of a personal data breach posing a risk to your rights and freedoms, we will notify the Slovak Office for Personal Data Protection within 72 hours and inform affected users without undue delay, as required by GDPR Articles 33 and 34.

7. Third-Party Processors

We engage trusted third-party processors (e.g., payment providers) to support our Service. These processors operate under Data Processing Agreements (DPAs) that ensure GDPR compliance, including confidentiality and security obligations.

8. Contacting the Supervisory Authority

If you believe your GDPR rights have been violated, you may lodge a complaint with the Office for Personal Data Protection of the Slovak Republic or your local supervisory authority in your country of residence.

9. Questions and Contact Information

For questions about our GDPR compliance or to exercise your rights, please contact us at [email protected]. We aim to respond to all requests within one month, as required by GDPR.