Celebrity Companies

Search

Popular Searches

GDPR Compliance

How we comply with the General Data Protection Regulation

Last Updated: June 9, 2025

Our Commitment to GDPR

At Celebrity Companies, we are committed to protecting your personal data and privacy rights in accordance with the General Data Protection Regulation (GDPR). We have implemented comprehensive measures to ensure compliance with GDPR requirements and to provide you with control over your personal information.

GDPR Compliance Statement

We process personal data in accordance with the principles outlined in Article 5 of the GDPR, ensuring that data is processed lawfully, fairly, and transparently. We collect data only for specified, explicit, and legitimate purposes, and we process only what is necessary for these purposes.

100%
GDPR Compliant
30 days
Response Time
EU
Data Protection

Your Rights Under GDPR

Right to Access (Article 15)

You have the right to access your personal data and information about how we process it, including the purposes and recipients.

Right to Data Portability (Article 20)

You can request a copy of your personal data in a structured, commonly used, machine-readable format.

Right to Erasure (Article 17)

You have the right to request deletion of your personal data under certain conditions, also known as the "right to be forgotten."

Right to Restriction (Article 18)

You can request restriction of processing of your personal data in specific circumstances while we verify accuracy.

Right to Rectification (Article 16)

You have the right to request correction of inaccurate or incomplete personal data we hold about you.

Right to Object (Article 21)

You have the right to object to processing of your personal data for direct marketing or legitimate interests.

Legal Basis for Processing

We process personal data only when we have a valid legal basis under Article 6 of the GDPR:

Consent (Article 6(1)(a))

For newsletter subscriptions and marketing communications where you have given explicit consent.

Contract Performance (Article 6(1)(b))

For account creation and service provision necessary to fulfill our contract with you.

Legitimate Interests (Article 6(1)(f))

For analytics, security monitoring, and improving our services where our interests don't override your rights.

Legal Obligation (Article 6(1)(c))

For compliance with legal requirements such as tax obligations and regulatory reporting.

International Data Transfers

We may transfer your personal data outside the European Economic Area (EEA) to provide our services. When we do so, we ensure appropriate safeguards are in place:

  • Adequacy decisions by the European Commission
  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Binding Corporate Rules for multinational companies
  • Certification schemes and codes of conduct

Data Processing Activities

We maintain a record of our data processing activities as required by Article 30 of the GDPR. This includes:

  • The purposes of processing
  • Categories of personal data collected
  • Categories of recipients with whom data is shared
  • Data retention periods
  • Technical and organizational security measures
  • International transfers and safeguards
  • Legal basis for processing
  • Data subject rights procedures

For more detailed information about our data processing activities, please refer to ourPrivacy Policy.

Data Breach Notification

In accordance with Articles 33 and 34 of the GDPR, we have procedures in place for data breach notification:

Supervisory Authority Notification

We will notify the relevant supervisory authority within 72 hours of becoming aware of a personal data breach, unless the breach is unlikely to result in a risk to rights and freedoms.

Data Subject Notification

If a breach is likely to result in a high risk to your rights and freedoms, we will notify you directly without undue delay, providing clear information about the breach and recommended actions.

Exercise Your Rights

To exercise any of your rights under the GDPR, please submit a request through ourData Requestpage or contact our Data Protection Officer directly. We will respond to your request within 30 days.

Contact Our Data Protection Officer

If you have any questions about our GDPR compliance, wish to exercise your rights, or want to file a complaint, please contact our Data Protection Officer.

dpo@celebcompanies.com

Response Time: We aim to respond to all GDPR-related inquiries within 30 days as required by law.