GDPR Compliance

Last updated: March 12, 2025

1. Introduction to GDPR

The General Data Protection Regulation (GDPR) is a comprehensive privacy and security law that imposes obligations on organizations that target or collect data related to people in the European Union (EU). At Bl4der, we are fully committed to GDPR compliance and protecting your privacy rights.

2. Your Rights Under GDPR

Under GDPR, you have the following rights:

2.1 Right to Access (Article 15)

You have the right to request a copy of your personal data and to know:

  • The purposes of processing
  • The categories of personal data concerned
  • The recipients to whom the data has been/will be disclosed
  • How long we store your data
  • Information about your other GDPR rights

2.2 Right to Rectification (Article 16)

You have the right to have inaccurate personal data rectified, or completed if it is incomplete.

2.3 Right to Erasure (Article 17)

Also known as the 'right to be forgotten', you can request the deletion or removal of personal data where:

  • The data is no longer necessary for its original purpose
  • You withdraw consent
  • You object to processing and there is no overriding legitimate interest
  • The data was unlawfully processed

2.4 Right to Restrict Processing (Article 18)

You have the right to restrict or suppress the processing of your personal data in certain circumstances.

2.5 Right to Data Portability (Article 20)

You have the right to obtain and reuse your personal data for your own purposes across different services.

2.6 Right to Object (Article 21)

You have the right to object to processing based on legitimate interests or for direct marketing.

3. How We Process Your Data

3.1 Legal Basis for Processing

We process your data under the following legal bases:

  • Consent: When you explicitly agree to the processing
  • Contract: To fulfill our contractual obligations to you
  • Legal Obligation: To comply with the law
  • Legitimate Interests: When necessary for our legitimate business interests

3.2 Data Minimization

We only collect and process the minimum amount of data necessary to provide our password management service.

4. International Data Transfers

When we transfer data outside the EU/EEA, we ensure appropriate safeguards are in place through:

  • Standard Contractual Clauses (SCCs)
  • Adequacy decisions by the European Commission
  • Binding Corporate Rules where applicable

5. Data Protection Measures

We implement appropriate technical and organizational measures to ensure data security:

  • End-to-end encryption
  • Zero-knowledge architecture
  • Regular security audits
  • Staff training on data protection
  • Access controls and authentication

6. Data Breach Procedures

In the event of a data breach that risks your rights and freedoms, we will:

  • Notify the relevant supervisory authority within 72 hours
  • Inform affected users without undue delay
  • Document all breaches and our response

7. Data Protection Officer

Our Data Protection Officer (DPO) can be contacted at:

TM Infotech Kft.

9325 Sopronnémeti, Hunyadi utca 3/a

Hungary

Phone: +36 30 442 9707

Email: info@tm-it.hu

Company Registration Number: 08-09-034842

Tax ID: 32053461-2-08

8. Exercising Your Rights

To exercise any of your GDPR rights:

Email

Contact us at info@tm-it.hu

Account Settings

Use the privacy controls in your account settings

Data Protection Officer

Contact our DPO using the details above

We will respond to your request within one month. This period may be extended by two further months where necessary, taking into account the complexity and number of requests.

9. Supervisory Authority

You have the right to lodge a complaint with a supervisory authority if you believe we are not processing your data in compliance with GDPR.

This GDPR notice is part of our commitment to transparency and your privacy rights. For more detailed information, please refer to our Privacy Policy.