Social Media Guru Privacy Policy
Our Commitment to Your Privacy
Your data is essential to your social media success, and we treat it with the highest level of protection. We only collect and use the information necessary to provide top-quality services, backed by enterprise-level security trusted by thousands of brands.
Definitions
Business Purposes
We process personal data for legitimate reasons, including:
- Providing services to our global client base.
- Managing personnel, payroll, and business operations.
- Ensuring compliance with legal and regulatory requirements.
- Conducting investigations, handling complaints, or managing legal matters.
- Enhancing customer experience and promoting our services.
Personal Data
Any information that identifies or relates to an individual, such as:
- Contact Information: Phone number, email address.
- Employment Details: Job title, CV, salary details.
- Demographic Data: Marital status, nationality, education.
Special Categories of Data
Sensitive data, including racial or ethnic origin, health information, political views, trade union membership, or biometric data, is only processed with explicit consent or a valid legal basis.
Data Controller
Social Media Guru determines how and why personal data is processed.
Data Processor
An entity or individual that processes data on behalf of Social Media Guru.
Supervisory Authority
Our primary regulatory authority is the UK Information Commissioner’s Office (ICO). However, we comply with relevant data protection authorities in other regions, such as the EU, US, and APAC.
Scope
This policy applies to all employees, contractors, and stakeholders worldwide. It governs how we manage personal data, regardless of where it is stored or processed.
We adhere to global data protection standards, including:
- UK GDPR – for individuals in the United Kingdom.
- EU GDPR – for individuals in the European Economic Area (EEA).
- CCPA – for California-based clients.
- PDPA – for clients in Singapore and Malaysia.
Key Data Protection Principles
We follow these core principles under UK GDPR and other applicable laws:
- Lawfulness, Fairness, and Transparency – Personal data must be processed legally and openly.
- Purpose Limitation – Data is collected only for specified, legitimate purposes.
- Data Minimization – We only collect data that is strictly necessary.
- Accuracy – Personal data must be kept accurate and up to date.
- Storage Limitation – Data is retained only as long as necessary.
- Integrity and Confidentiality – Data is protected against unauthorized access or loss.
Your Rights
Depending on your location, you may have rights under data protection laws, including:
- Right to be informed – Understand how your data is used.
- Right of access – Request a copy of your personal data.
- Right to rectification – Correct any inaccuracies in your data.
- Right to erasure – Request deletion of your data under certain conditions.
- Right to restrict processing – Limit how your data is used.
- Right to data portability – Transfer your data to another service provider.
- Right to object – Refuse processing of your data, particularly for marketing.
- Rights related to automated decision-making – Request human review of automated decisions.
To exercise your rights, contact our Data Protection Officer at support@social-media.guru.
Legal Basis for Data Processing
We process personal data under the following legal grounds:
- Consent: You have given clear and explicit permission.
- Contractual Obligation: Processing is necessary to fulfill a contract.
- Legal Obligation: We must comply with legal requirements.
- Legitimate Interests: Data is processed to support business operations without infringing on individual rights.
For certain regions, additional data protection requirements may apply.
Data Security
We implement strict security measures to protect personal data:
- Electronic data is secured through encryption and password protection.
- Physical documents are stored securely and disposed of when no longer needed.
- Only authorized personnel have access to sensitive data.
- Regular cybersecurity measures and data backups are in place.
Data Retention
We retain personal data only as long as necessary to fulfill business or legal obligations. Once data is no longer required, it is securely deleted in compliance with applicable laws.
International Data Transfers
As a global business, personal data may be transferred across borders. We ensure these transfers meet strict security and legal requirements, including:
- Adequacy Decisions: Transfers to countries recognized as having sufficient data protection laws (e.g., UK-EU transfers).
- Standard Contractual Clauses (SCCs): When transferring data to countries without adequacy decisions.
- Binding Corporate Rules (BCRs): When applicable, to ensure global compliance.
Data Breach Reporting
If a data breach occurs, it must be reported to the Data Protection Officer immediately. If the breach poses a risk to individuals, we will notify the ICO (or relevant authority) within 72 hours and inform affected individuals when required by law.
Third-Party Processors
We only collaborate with third parties that meet strict data protection standards. Contracts with these processors ensure compliance with relevant laws, requiring them to uphold security, confidentiality, and lawful processing obligations.
Contact Information
If you have questions about this policy or your data rights, contact:
Data Protection Officer
Social Media Guru
Email: support@social-media.guru
You can also file a complaint with your local data protection authority:
- UK ICO: https://ico.org.uk/make-a-complaint/
- EEA Supervisory Authorities: Refer to the European Data Protection Board.
- Other Regions: Contact your local data protection authority.
This privacy policy reflects Social Media Guru’s global data protection commitments while ensuring compliance with regulations such as GDPR, UK GDPR, CCPA, and other international laws.
