Compliance Statement

Our commitment to international data protection standards and regulatory compliance

Last Updated: January 2025

GDPR Compliance (EU)

TakeGem is fully compliant with the General Data Protection Regulation (GDPR) as implemented by the European Union. We ensure the highest standards of data protection for all our European users.

  • Lawful Basis: We process personal data only when we have a lawful basis under Article 6 of GDPR
  • Data Subject Rights: Full support for access, rectification, erasure, portability, and objection rights
  • Data Protection Officer: Appointed DPO available for privacy-related inquiries
  • Breach Notification: 72-hour breach notification procedures in place

COPPA Compliance (US)

We strictly adhere to the Children's Online Privacy Protection Act (COPPA) to protect the privacy of children under 13 years of age.

  • Age Verification: Robust age verification mechanisms to prevent underage registration
  • Parental Consent: Verifiable parental consent required for users under 13
  • Limited Data Collection: Minimal data collection from children with parental oversight
  • Safe Harbor: Participation in FTC-approved safe harbor programs

CCPA Compliance (California)

TakeGem complies with the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), providing California residents with enhanced privacy rights.

  • Right to Know: Transparent disclosure of personal information collection and use
  • Right to Delete: Ability to request deletion of personal information
  • Right to Opt-Out: Option to opt-out of personal information sales
  • Non-Discrimination: Equal service regardless of privacy choices

International Standards

PIPEDA (Canada)

Compliance with Personal Information Protection and Electronic Documents Act for Canadian users.

LGPD (Brazil)

Adherence to Lei Geral de Proteção de Dados for Brazilian user data protection.

PDPA (Singapore)

Compliance with Personal Data Protection Act for Singapore-based users.

APPI (Japan)

Adherence to Act on Protection of Personal Information for Japanese users.

Security Certifications

ISO 27001

Information Security Management

SOC 2 Type II

Service Organization Control

PCI DSS

Payment Card Industry Standards

Compliance Contact

For compliance-related inquiries, data protection questions, or to exercise your privacy rights, please contact our dedicated compliance team:

Email: compliance@takegem.com

Data Protection Officer: dpo@takegem.com

Response Time: Within 30 days for most requests