GDPR Compliance Policy for Management Loop

Effective Date: 2025

At Management Loop (https://mgtloop.com/), we are committed to protecting and respecting your privacy in compliance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”). This section of our policy explains your rights under GDPR and how we ensure compliance.

1. Lawful Basis for Processing

We process personal data under the following legal bases:

  • Consent – when you voluntarily provide information (e.g., signing up, requesting services, or accepting cookies).

  • Contract – when processing your data is necessary to fulfill a service you requested (e.g., resume design, HR training, portfolio building).

  • Legal Obligation – when processing is required by applicable laws.

  • Legitimate Interests – when processing helps us operate, improve, and secure our services without overriding your rights.

2. Your GDPR Rights

As a data subject under GDPR, you have the following rights:

  1. Right to Access – Request a copy of the personal data we hold about you.

  2. Right to Rectification – Correct inaccurate or incomplete information.

  3. Right to Erasure (“Right to be Forgotten”) – Request deletion of your personal data when it is no longer necessary.

  4. Right to Restrict Processing – Ask us to limit how your data is processed.

  5. Right to Data Portability – Receive your personal data in a structured, commonly used, and machine-readable format.

  6. Right to Object – Object to processing of your personal data, including for direct marketing.

  7. Rights Related to Automated Decision-Making and Profiling – You will not be subject to decisions based solely on automated processing without your explicit consent.

3. Data Retention

We will keep your personal data only as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, or resolve disputes.

4. Data Transfers Outside the EU

If we transfer personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or equivalent legal mechanisms.

5. Data Security

We implement technical and organizational security measures (encryption, secure hosting, restricted access) to protect your personal information from unauthorized access, loss, misuse, or alteration.

6. How to Exercise Your Rights

To exercise your GDPR rights, please contact us at:

Management Loop (MGTLOOP)
Website: https://mgtloop.com/
Email: business@mgtloop.com

We will respond to your request within 30 days as required under GDPR.

7. Supervisory Authority

If you believe your data protection rights have been violated, you have the right to lodge a complaint with your local Data Protection Authority (DPA) in the EU.