We are committed to protecting your personal data in accordance with the General Data Protection Regulation (GDPR).
Our Commitment to Data Protection
moodXplore is fully compliant with the General Data Protection Regulation (GDPR) and other applicable European data protection laws. We believe that privacy is a fundamental right, and we have designed our app with privacy by design and by default.
πͺπΊ European Union Rights
If you are located in the European Union, you have enhanced rights under GDPR. We respect and facilitate the exercise of these rights.
Your Rights Under GDPR
Under GDPR, you have the following rights regarding your personal data:
π Right to Access
You can request a copy of all personal data we hold about you, including information about how we use it.
βοΈ Right to Rectification
You can request that we correct any inaccurate or incomplete personal data we hold about you.
ποΈ Right to Erasure
You can request that we delete your personal data in certain circumstances (also known as the "right to be forgotten").
βΈοΈ Right to Restrict Processing
You can request that we limit how we use your personal data in certain circumstances.
π€ Right to Data Portability
You can request to receive your personal data in a structured, commonly used, and machine-readable format.
π« Right to Object
You can object to processing of your personal data that is based on our legitimate interests.
β Right to Withdraw Consent
Where processing is based on consent, you can withdraw your consent at any time.
π€ Rights Related to Automated Decision Making
You have rights regarding automated decision-making, including AI-based profiling.
How to Exercise Your Rights
To exercise any of your GDPR rights, please contact us using the information provided below. We will:
Respond to your request within 30 days (1 month)
Verify your identity to protect your privacy
Provide the requested information or action free of charge
Explain any reasons if we cannot fulfill your request
Legal Basis for Processing
We process your personal data based on the following legal grounds under GDPR:
Consent (Article 6(1)(a))
Location-based personalized recommendations
AI-powered content generation
Marketing communications (if opted in)
Analytics and app improvement
Contract Performance (Article 6(1)(b))
Providing core app functionality
Account management and authentication
Customer support services
Legitimate Interest (Article 6(1)(f))
App security and fraud prevention
Technical support and maintenance
Anonymized analytics for service improvement
Legal Obligation (Article 6(1)(c))
Compliance with legal requirements
Responding to legal requests
Tax and accounting obligations
Data Protection by Design and Default
We implement data protection by design and by default throughout our app:
Technical Measures
End-to-end encryption for sensitive data
Anonymization and pseudonymization techniques
Secure authentication and access controls
Regular security audits and penetration testing
Automatic data deletion policies
Organizational Measures
Staff training on data protection
Data protection impact assessments
Regular compliance reviews
Incident response procedures
Third-party vendor assessments
Data Processing Activities
We maintain detailed records of all data processing activities as required by GDPR Article 30:
Purpose and legal basis for each processing activity
Categories of personal data processed
Data retention periods
Technical and organizational security measures
Third-party processors and transfers
International Data Transfers
When we transfer your personal data outside the European Economic Area (EEA), we ensure appropriate safeguards:
Standard Contractual Clauses (SCCs) approved by the European Commission
Adequacy decisions for certain countries
Binding Corporate Rules where applicable
Certification schemes and codes of conduct
Data Breach Notification
In the event of a data breach that poses risks to your rights and freedoms, we will:
Notify the relevant supervisory authority within 72 hours
Notify affected individuals without undue delay
Provide clear information about the breach and our response
Take immediate steps to contain and remedy the breach
Data Protection Officer
We have appointed a Data Protection Officer (DPO) who is responsible for:
Monitoring compliance with GDPR
Conducting data protection impact assessments
Serving as a point of contact for data subjects
Cooperating with supervisory authorities
Providing advice on data protection matters
Children's Privacy
We take special care to protect the privacy of children:
The app is designed for users 13 years and older
We do not knowingly collect data from children under 13
Enhanced protections for users under 16 in accordance with national laws
Parental consent mechanisms where required
AI and Automated Decision Making
Regarding AI-powered features and automated decision-making:
AI recommendations are not used for consequential automated decisions
You have the right to human review of AI-generated content
AI processing is based on your explicit consent
We provide transparency about AI algorithms and logic
You can opt out of AI features at any time
Supervisory Authority
You have the right to lodge a complaint with a supervisory authority if you believe we have violated your data protection rights. The relevant supervisory authority depends on your location within the EU.
To exercise your GDPR rights, please email us at gdpr@moodxplore.app with your request. We will respond within 30 days.
Report a Data Breach
If you believe there has been a data breach, please contact us immediately at security@moodxplore.app
Our commitment: We are dedicated to maintaining the highest standards of data protection and privacy. If you have any questions about our GDPR compliance or data protection practices, please don't hesitate to contact us.