Your GDPR Rights
Last Updated: November 12, 2025
Under the General Data Protection Regulation (GDPR), you have specific rights regarding your personal data. This page explains your rights and how to exercise them.
1. Right to Access (Article 15)
You have the right to request a copy of all personal data we hold about you. This includes:
- Your consent preferences (cookie and localStorage values)
- UI preferences (panel widths, navigation states)
- Any other data we may have collected
How to exercise: Email privacy@kbnetz.com with the subject "GDPR Access Request"
Response time: Within 30 days (extendable to 90 days in complex cases)
2. Right to Rectification (Article 16)
You have the right to correct any inaccurate personal data we hold about you.
How to exercise: Email privacy@kbnetz.com with the subject "GDPR Rectification Request" and specify what needs correction
Response time: Within 30 days
3. Right to Erasure / "Right to be Forgotten" (Article 17)
You have the right to request deletion of your personal data when:
- The data is no longer necessary for the purposes it was collected
- You withdraw consent and there's no other legal basis for processing
- You object to processing and there are no overriding legitimate grounds
- The data was unlawfully processed
- Erasure is required for compliance with a legal obligation
Quick action: Visit your Privacy Settings to clear all non-essential data immediately, or use ?gdpr=reset in the URL
How to exercise: Email privacy@kbnetz.com with the subject "GDPR Erasure Request"
Response time: Within 30 days
4. Right to Restrict Processing (Article 18)
You have the right to limit how we use your data when:
- You contest the accuracy of the data (until we verify it)
- Processing is unlawful but you don't want erasure
- We no longer need the data but you need it for legal claims
- You've objected to processing (pending verification of our legitimate grounds)
How to exercise: Email privacy@kbnetz.com with the subject "GDPR Restriction Request"
Response time: Within 30 days
5. Right to Data Portability (Article 20)
You have the right to receive your personal data in a structured, commonly used, machine-readable format (e.g., JSON, CSV) and to transmit it to another controller.
Applies to: Data you provided to us that we process based on consent or contract, in an automated manner
How to exercise: Email privacy@kbnetz.com with the subject "GDPR Portability Request"
Response time: Within 30 days
6. Right to Object (Article 21)
You have the right to object to processing of your personal data when:
- Processing is based on legitimate interests
- Processing is for direct marketing purposes
- Processing is for scientific/historical research or statistical purposes
How to exercise: Email privacy@kbnetz.com with the subject "GDPR Objection"
Response time: We must stop processing unless we can demonstrate compelling legitimate grounds that override your interests
7. Right to Withdraw Consent (Article 7)
Where processing is based on your consent, you have the right to withdraw that consent at any time.
Quick action: Use the Privacy Settings button in the header or click below:
Note: Withdrawing consent does not affect the lawfulness of processing before withdrawal
8. Right to Lodge a Complaint (Article 77)
You have the right to lodge a complaint with a supervisory authority if you believe we have violated your GDPR rights.
EU/EEA Users: Contact your local Data Protection Authority
Ireland (our GDPR representative): Data Protection Commission
Website: www.dataprotection.ie
Email: info@dataprotection.ie
Phone: +353 57 868 4800
9. Automated Decision-Making & Profiling (Article 22)
You have the right not to be subject to decisions based solely on automated processing, including profiling, which produces legal effects or similarly significantly affects you.
Our position: We do not engage in automated decision-making or profiling that significantly affects you.
How to Exercise Your Rights
To exercise any of these rights:
Contact Methods
Email: privacy@kbnetz.com
Data Protection Officer: dpo@kbnetz.com
Subject Line: "GDPR [Type of Request]"
What to include in your request:
- Your full name (if applicable)
- Email address or contact method
- Description of your request
- Proof of identity (if necessary for verification)
Response Times
We will respond to all requests:
- Standard response: Within 30 days
- Complex requests: Up to 90 days (we will inform you of the extension and reasons)
- Urgent matters: We will prioritize and respond as quickly as possible
No Fees (Usually)
Exercising your GDPR rights is free of charge. However, we may charge a reasonable fee or refuse the request if it is:
- Manifestly unfounded or excessive
- Repetitive in nature
Verification Process
To protect your data, we may need to verify your identity before fulfilling requests. We may ask for:
- Proof of identity (e.g., government-issued ID)
- Additional information to confirm you are the data subject
Data We Hold
For transparency, here's what personal data we typically hold:
- Consent data: Your cookie consent choice (cookie + localStorage)
- UI preferences: Panel widths, navigation states (localStorage)
- Future: AdSense cookies (only with explicit consent)
We do NOT currently collect:
- Email addresses (unless you contact us)
- Names or personal identifiers
- Payment information
- Location data
- Behavioral tracking data
Quick Actions
You can manage your preferences or clear all non-essential data instantly using these buttons.