Skip to main content
TaktMaster ProDigital Time Study App
Home
Features
Pricing
About
Contact
Get StartedGet Demo

Data Protection & GDPR Compliance

TaktMaster Pro is committed to protecting your personal data and ensuring full compliance with the General Data Protection Regulation (GDPR) and other privacy laws.

Last updated: November 28, 2025

GDPR Core Principles

Lawfulness, Fairness & Transparency

We process personal data lawfully, fairly, and in a transparent manner. You always know what data we collect and why.

Purpose Limitation

We only collect data for specified, explicit, and legitimate purposes. No data is used beyond its original purpose.

Data Minimization

We collect only the data that is adequate, relevant, and limited to what is necessary for our services.

Accuracy

We keep personal data accurate and up to date, and take reasonable steps to rectify inaccurate data.

Storage Limitation

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected.

Integrity & Confidentiality

We implement appropriate technical and organizational measures to protect personal data against unauthorized processing.

Your Data Protection Rights

Right of Access

You have the right to obtain confirmation as to whether or not personal data concerning you is being processed.

What you can do: Request a copy of all personal data we hold about you

Right to Rectification

You have the right to have inaccurate personal data corrected and incomplete data completed.

What you can do: Update your account information or request corrections

Right to Erasure

You have the right to request the deletion of your personal data under certain circumstances.

What you can do: Request complete deletion of your account and associated data

Right to Restrict Processing

You have the right to restrict the processing of your personal data under certain circumstances.

What you can do: Limit how we use your data while maintaining your account

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used format.

What you can do: Export your data in a machine-readable format

Right to Object

You have the right to object to the processing of your personal data for certain purposes.

What you can do: Opt out of marketing communications or analytics tracking

Legal Basis for Processing

Under GDPR, we must have a lawful basis for processing your personal data. Here are the legal bases we rely on:

Contract Performance

Processing necessary for the performance of a contract with you

Examples:

Account managementService deliveryPayment processingCustomer support

Legitimate Interest

Processing necessary for our legitimate interests (balanced against your rights)

Examples:

Website analyticsProduct improvementSecurity monitoringFraud prevention

Consent

Processing based on your explicit consent

Examples:

Marketing communicationsOptional analyticsCookies (non-essential)Newsletter subscriptions

Legal Obligation

Processing necessary to comply with legal obligations

Examples:

Tax reportingAudit requirementsRegulatory complianceData retention policies

Security Measures

Technical Safeguards

  • End-to-end encryption for data transmission
  • AES-256 encryption for data at rest
  • Multi-factor authentication (MFA)
  • Regular security audits and penetration testing
  • Automated vulnerability scanning
  • Secure coding practices and code reviews

Organizational Safeguards

  • Privacy by design and by default
  • Regular staff privacy training
  • Data Protection Impact Assessments (DPIAs)
  • Access controls and role-based permissions
  • Incident response procedures
  • Regular backup and disaster recovery testing

Physical Safeguards

  • Secure data centers with 24/7 monitoring
  • Biometric access controls
  • Environmental monitoring systems
  • Secure disposal of hardware and media
  • Visitor access controls
  • Video surveillance and intrusion detection

Data Breach Notification

In the unlikely event of a data breach that affects your personal data, we will notify you without undue delay, and in any case within 72 hours of becoming aware of the breach (where feasible).

We will provide you with clear information about what happened, what data may have been affected, and what steps we're taking to address the situation.

Data Processors & Sub-Processors

We use the following trusted partners who process data on our behalf. All processors have signed Data Processing Agreements (DPAs) requiring GDPR Article 28 compliance.

PartnerPurposeLocationSafeguards
SupabaseDatabase & AuthenticationUSA/EUEU-US DPF certified, DPA signed
StripePayment processingUSA/IrelandPCI DSS Level 1, DPA signed
VercelWebsite hostingUSASCCs in place
ResendTransactional emailUSADPA signed
Google AnalyticsWebsite analyticsUSAEU-US DPF certified

International Data Transfers

Your data may be transferred to and processed in the United States and other countries outside the UK/European Economic Area (EEA). We ensure appropriate safeguards are in place to protect your personal data in accordance with GDPR requirements.

Transfer Safeguards:

  • EU-US Data Privacy Framework (DPF)

    Our US-based partners are certified under the EU-US Data Privacy Framework

  • Standard Contractual Clauses (SCCs)

    We use EU Commission-approved Standard Contractual Clauses with all processors

  • Adequacy Decisions

    We rely on adequacy decisions where applicable for data transfers

Your Rights: You can request copies of the safeguards we use to protect your data during international transfers by contacting privacy@taktmasterpro.com

Data Retention Periods

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, and resolve disputes.

Data TypeRetention PeriodLegal Basis
Account dataUntil account deletion or 3 years inactiveContract performance
Audit logs7 yearsLegal obligation (business records)
Support tickets7 yearsLegal obligation
Usage analytics26 monthsLegitimate interest
Security logs90 daysLegitimate interest
Payment records7 yearsLegal obligation (tax/accounting)
Marketing dataUntil consent withdrawnConsent

After Retention: Data is securely deleted or anonymized so it can no longer identify you.

Data Protection Officer & Supervisory Authority

Data Protection Officer (DPO) Status

As a small to medium-sized business, we are not required to appoint a dedicated Data Protection Officer under GDPR Article 37. However, data protection compliance is overseen by senior management.

Privacy Contact: privacy@taktmasterpro.com

Responsibility: Senior management oversees all data protection compliance matters

UK Residents

If you are unhappy with how we handle your personal data, you have the right to complain to the UK's supervisory authority:

Information Commissioner's Office (ICO)

Website: ico.org.uk/make-a-complaint

Phone: 0303 123 1113

Address: Wycliffe House, Water Lane, Wilmslow, SK9 5AF

EU Residents

EU residents should contact their local Data Protection Authority:

European Data Protection Board

Find your DPA: edpb.europa.eu/about-edpb/board/members

Each EU member state has its own Data Protection Authority that handles complaints from residents.

Data Protection Impact Assessments (DPIA)

We conduct Data Protection Impact Assessments when we introduce new technologies or processing activities that may pose a high risk to your rights and freedoms.

We conduct DPIAs when:

  • Introducing new technologies or processing methods
  • Large-scale processing of sensitive or special category data
  • Systematic monitoring of publicly accessible areas
  • Automated decision-making with legal or significant effects

Request DPIA Information: You can request information about our DPIAs by contacting privacy@taktmasterpro.com

TaktMaster ProDigital Time Study App

Professional time study software built by industrial engineers for industrial engineers. Transform your manufacturing operations with our automated SMV calculation system.

support@taktmasterpro.com
01946 448901
Sandhills Court, Whitehaven, United Kingdom

Product

  • Features
  • Pricing
  • ROI Calculator

Resources

  • Use Cases
  • Blog
  • Documentation

Company

  • About Us
  • Contact Us

Stay Updated with Industrial Engineering Insights

Get monthly updates on time study methodology, manufacturing trends, and product updates.

© 2025 TaktMaster Pro. All rights reserved.

Privacy PolicyTerms of ServiceSecurityCookie PolicyData ProtectionAcceptable UseRefund Policy
AES-256 Encrypted
GDPR Ready
Compliance-Ready Architecture

Made with ❤️ by Industrial Engineers for Industrial Engineers

Get StartedGet Demo