1. Introduction to GDPR

The General Data Protection Regulation (GDPR) is a comprehensive data privacy law that applies to organizations processing personal data of individuals within the European Economic Area (EEA). At Unlocking NotebookLM, we value your privacy and are committed to ensuring the protection of your personal data as required under GDPR.

2. Data Controller Information

Brand Enterprise is the data controller responsible for determining the purposes and methods of processing personal data collected on Unlocking NotebookLM. For any questions or concerns regarding data processing, you can contact us at mail@brande.in.

3. Data Collection and Processing

We collect and process personal data from users for a variety of purposes, including providing services, enhancing user experience, and complying with legal obligations. When a user submits a form, the following data are collected:

• Date and Time of Submission: Date and time of the form submission (e.g., 9 November 2024, 2:15 am).
• Page URL: The URL of the page where the form was submitted (e.g., https://notebooklm.in/contact/).
• User Agent: Information about the user’s device and browser (e.g., Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36).
• Remote IP: The user’s IP address (e.g., 84.200.110.24).

In addition, we collect other personal data such as:

• Contact Information: Name, email address, and phone number.
• Technical Information: IP address, browser type, operating system, and other technical data.
• Usage Information: Information about your use of our website, including pages visited, time spent, and other analytical data.
• Cookies: Cookies and similar tracking technologies are used to enhance your experience. For more details, please see our Cookie Policy.

4. Lawful Basis for Processing

Under GDPR, we must have a lawful basis to process your personal data. We rely on the following lawful bases for processing data:

• Consent: Where we have obtained your consent to collect and process your data for specific purposes, such as sending marketing communications.
• Contractual Obligation: Processing is necessary to fulfil a contract or provide a service requested by you.
• Legal Obligation: Processing is necessary to comply with legal requirements.
• Legitimate Interest: Processing is necessary for our legitimate interests, such as improving our services or understanding website usage, provided these interests are not overridden by your rights and freedoms.

5. Data Usage

We use your personal data for the following purposes:

• Providing Services: To respond to inquiries, provide customer support, and deliver content or services requested by you.
• Improving Our Website: To analyze user behaviour and improve the user experience on our website.
• Marketing Communications: To send you updates, newsletters, or promotional materials, provided you have consented to receive such communications.
• Compliance: To comply with applicable legal requirements or regulatory obligations.

6. Data Sharing and Disclosure

We only share personal data with third parties when necessary to provide our services, comply with legal obligations, or improve user experience. We may share your data with:

• Service Providers: Trusted third-party providers that assist us in operating our website, such as hosting, analytics, and customer support.
• Legal Authorities: Where required by law, we may disclose personal data to comply with legal obligations or protect our rights.

We ensure that all third-party processors comply with GDPR and take appropriate steps to safeguard your data.

7. Data Retention and Deletion

We retain personal data for as long as necessary to fulfil the purposes for which it was collected or to comply with legal, accounting, or reporting requirements. Once the data is no longer needed, we securely delete or anonymise it.

If you wish for your personal data to be deleted, you may submit a request using our Data Deletion Request Form. We will ensure that your data is erased in compliance with applicable legal requirements, provided there are no overriding legitimate grounds for retaining it.

8. Data Security

We take data security seriously and have implemented appropriate technical and organisational measures to protect your personal data from unauthorised access, disclosure, alteration, or destruction. These measures include:

• Encryption: Data is encrypted both in transit and at rest to prevent unauthorised access.
• Access Control: Access to personal data is restricted to authorised personnel only.
• Regular Audits: We conduct regular security audits to identify and address potential vulnerabilities.

9. Your Rights Under GDPR

As a user, you have the following rights regarding your personal data:

• Right to Access: You can request access to the personal data we hold about you and obtain a copy of it.
• Right to Rectification: You can request corrections to any inaccurate or incomplete personal data.
• Right to Erasure: You have the right to request the deletion of your personal data under certain conditions.
• Right to Restriction of Processing: You can request that we limit the processing of your personal data in certain situations.
• Right to Data Portability: You can request a copy of your personal data in a structured, commonly used, and machine-readable format, and request that we transfer it to another data controller.
• Right to Object: You have the right to object to the processing of your personal data, particularly in cases involving direct marketing.