GDPR Compliance – Tolfex Detail

At Tolfex Detail, we are fully committed to complying with the General Data Protection Regulation (GDPR) and protecting the privacy rights of individuals located in the European Union and beyond.

1. Lawful Basis for Processing

We only process your personal data when we have a lawful basis to do so. This includes your explicit consent, fulfilling a service agreement, complying with legal obligations, or acting in our legitimate business interest (e.g., improving our service quality).

2. Types of Personal Data

We may process the following personal data:

• Contact information: name, email, phone number
• Vehicle details (make, model, year)
• Billing and payment data
• Technical data (IP address, device, browser type, website behavior)

3. Data Subject Rights

If you are an EU resident, you have the following rights under GDPR:

• ✅ Right to access your personal data
• ✅ Right to correct inaccurate or incomplete data
• ✅ Right to request erasure of your data (“right to be forgotten”)
• ✅ Right to restrict or object to processing
• ✅ Right to data portability
• ✅ Right to withdraw consent at any time

4. Cross-Border Transfers

We may process data using secure cloud platforms hosted outside the EU. In such cases, we ensure appropriate safeguards are in place (e.g., standard contractual clauses).

5. Retention Period

We keep your data only for as long as necessary to fulfill our services, maintain records, or comply with legal requirements. You may request earlier deletion if justified under GDPR.

6. Data Protection Measures

Tolfex Detail uses SSL encryption, secure infrastructure, restricted access protocols, and regular audits to safeguard all user data.