GDPR Compliance
Last updated: January 11, 2025
Your Data Rights
Under GDPR, you have the following rights regarding your personal data
Right to Access
Request a copy of your personal data
Right to Rectification
Correct inaccurate personal data
Right to Erasure
Request deletion of your data
Right to Restriction
Limit how we use your data
Right to Portability
Transfer data to another service
Right to Object
Object to certain data processing
1. Our Commitment to GDPR
Microlearning is committed to complying with the General Data Protection Regulation (GDPR) for all users in the European Union and European Economic Area. This page outlines how we process your data in accordance with GDPR requirements.
2. Legal Basis for Processing
We process personal data under the following legal bases:
- Contract Performance: To provide our training services as agreed with your employer
- Legitimate Interests: To improve our platform and provide customer support
- Legal Obligation: To comply with applicable laws and regulations
- Consent: For marketing communications (where applicable)
3. Data Controller
Microlearning acts as a data processor on behalf of enterprise customers (data controllers). For worker training data, your employer is the data controller and determines the purposes of data processing.
4. International Data Transfers
Your data is primarily stored in India. When data is transferred outside the EEA, we ensure appropriate safeguards are in place through:
- Standard Contractual Clauses (SCCs)
- Adequacy decisions where applicable
- Binding Corporate Rules with partners
5. Data Protection Officer
We have appointed a Data Protection Officer (DPO) who can be contacted for any GDPR-related inquiries:
Email: dpo@micro-learning.app
Address: Data Protection Officer, Microlearning, Bangalore, India
6. Data Breach Notification
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will:
- Notify the relevant supervisory authority within 72 hours
- Notify affected individuals without undue delay (if high risk)
- Document all breaches and remediation actions
7. Exercising Your Rights
To exercise any of your GDPR rights, please contact us at privacy@micro-learning.app. We will respond to your request within 30 days.
Note: For worker training data, you may need to contact your employer (the data controller) to exercise certain rights.
8. Supervisory Authority
You have the right to lodge a complaint with your local data protection supervisory authority if you believe we have not complied with GDPR requirements.
9. Updates to This Policy
We review our GDPR compliance regularly and will update this page to reflect any changes in our practices or applicable regulations.