GDPR Compliance

Last updated: April 17, 2025

At Content Rewriter Pro, we are committed to ensuring the privacy and protection of your personal data in compliance with the General Data Protection Regulation (GDPR). This page outlines how we comply with GDPR requirements and how you can exercise your rights under this regulation.

Our Commitment to GDPR Compliance

The General Data Protection Regulation (GDPR) is a regulation in EU law on data protection and privacy for all individuals within the European Union and the European Economic Area. It also addresses the export of personal data outside the EU and EEA areas.

Star General Ltd, operating as Content Rewriter Pro, is committed to complying with the GDPR principles, which require personal data to be:

• Processed lawfully, fairly, and transparently
• Collected for specified, explicit, and legitimate purposes
• Adequate, relevant, and limited to what is necessary
• Accurate and, where necessary, kept up to date
• Stored for no longer than necessary
• Processed securely, ensuring integrity and confidentiality

Your Rights Under GDPR

Under the GDPR, individuals have the following rights regarding their personal data:

1. Right to Information

You have the right to know how we collect, use, and store your personal data. Our Privacy Policy provides detailed information on our data processing practices.

2. Right of Access

You have the right to request a copy of the personal data we hold about you, as well as information about how we process it.

3. Right to Rectification

You have the right to have inaccurate personal data rectified or completed if it is incomplete.

4. Right to Erasure (Right to be Forgotten)

You have the right to request the deletion of your personal data in certain circumstances, such as when the data is no longer necessary for the purposes for which it was collected.

5. Right to Restrict Processing

You have the right to request the restriction of processing of your personal data in certain circumstances, such as when you contest the accuracy of the data.

6. Right to Data Portability

You have the right to receive the personal data you have provided to us in a structured, commonly used, and machine-readable format, and to transmit this data to another controller.

7. Right to Object

You have the right to object to the processing of your personal data in certain circumstances, including for direct marketing purposes.

8. Rights Related to Automated Decision Making and Profiling

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.

How to Exercise Your Rights

To exercise any of these rights, please contact us at admin@contentrewriterpro.com. We will respond to your request within one month. This period may be extended by up to two additional months where necessary, taking into account the complexity and number of requests.

If we decide not to take action on your request, we will inform you of the reasons for not taking action and of the possibility of lodging a complaint with a supervisory authority.

Data Protection Officer

While we are not legally required to have a Data Protection Officer (DPO), we have appointed a data protection contact to oversee and ensure compliance with data protection regulations. You can contact our data protection team at dpo@contentrewriterpro.com.

Data Processing Activities

We maintain a record of our data processing activities, as required by the GDPR. This includes:

• The purposes of processing
• Categories of data subjects and personal data
• Categories of recipients to whom personal data has been or will be disclosed
• Where applicable, transfers of personal data to a third country or international organization
• The envisaged time limits for erasure of the different categories of data
• A general description of the technical and organizational security measures

Data Protection Impact Assessments

We conduct Data Protection Impact Assessments (DPIAs) for data processing activities that are likely to result in a high risk to the rights and freedoms of individuals. These assessments help us identify and minimize data protection risks.

Data Breach Notification

In the case of a personal data breach, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, where feasible. If the breach is likely to result in a high risk to the rights and freedoms of individuals, we will also notify the affected individuals without undue delay.

Data Processors

We ensure that any third-party data processors we use also comply with the GDPR. We have appropriate data processing agreements in place with all our processors, which include provisions for:

• Processing only on documented instructions from us
• Ensuring that persons authorized to process the personal data have committed themselves to confidentiality
• Implementing appropriate technical and organizational measures
• Assisting us in meeting our GDPR obligations
• Deleting or returning all personal data after the end of the provision of services
• Making available all information necessary to demonstrate compliance

International Data Transfers

If we transfer personal data outside the European Economic Area (EEA), we ensure that adequate safeguards are in place to protect the data. These safeguards include:

• Transfers to countries that the European Commission has decided offer an adequate level of protection
• Transfers subject to appropriate safeguards, such as Standard Contractual Clauses
• Transfers under binding corporate rules

Data Retention

We retain personal data only for as long as necessary for the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period for personal data, we consider:

• The amount, nature, and sensitivity of the personal data
• The potential risk of harm from unauthorized use or disclosure of the personal data
• The purposes for which we process the personal data
• Whether we can achieve those purposes through other means
• The applicable legal requirements

Children's Data

Our Service is not directed to children under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16 without verification of parental consent, we take steps to remove that information from our servers.

Changes to Our GDPR Compliance Statement

We may update our GDPR Compliance Statement from time to time. We will notify you of any changes by posting the new statement on this page and updating the "Last updated" date at the top of this statement.

We encourage you to review this GDPR Compliance Statement periodically to stay informed about our data protection practices.

Contact Us

If you have any questions about this GDPR Compliance Statement or our data processing practices, please contact us at:

Email: admin@contentrewriterpro.com
Postal Address: Star General Ltd, Wessex House, Upper market Street Eastleigh SO50 9FD, United Kingdom

You also have the right to lodge a complaint with a supervisory authority. In the UK, this is the Information Commissioner's Office (ICO).