Last updated: 15 April 2026
Commitment
Crypto License Network complies with the EU General Data Protection Regulation (Regulation 2016/679), the UK GDPR, and the UK Data Protection Act 2018. We treat compliance as ongoing operational discipline, not a one-off policy artefact.
Data Protection Officer
Our DPO is reachable at dataprotection@cryptolicense-network.pages.dev. The DPO is independently empowered and reports directly to senior management.
Data Protection Impact Assessments (DPIAs)
We conduct DPIAs for any new processing activity that is likely to result in a high risk to data subjects — including large-scale processing, systematic monitoring, or processing of special category data.
Record of Processing Activities (Article 30)
We maintain an up-to-date Record of Processing Activities (ROPA) for all controller and processor activity. The ROPA is available to supervisory authorities on request.
Data subject rights
We respond to all subject rights requests within one month. The mechanics of each right (access, rectification, erasure, restriction, portability, objection) are set out in our Privacy Policy.
Breach notification
Personal data breaches are notified to the lead supervisory authority within 72 hours of detection where notification is required. Affected data subjects are notified directly where the breach poses a high risk.
Cross-border transfers
Transfers outside the UK / EEA rely on adequacy decisions, the EU Standard Contractual Clauses, or the UK International Data Transfer Addendum. We document the transfer mechanism for each transfer.
Subprocessors
All subprocessors are governed by signed Data Processing Addenda (DPAs) that mirror our controller obligations.
Privacy by Design
We apply data minimisation, purpose limitation, role-based access and pseudonymisation by default in all new systems and processes.
Contact
For GDPR-related questions, email dataprotection@cryptolicense-network.pages.dev.