Vora
Next-Gen Lab Management
Back to Home

GDPR Compliance

Last Updated: April 27, 2023

GDPR Compliance Statement

At Vora, we are committed to ensuring the privacy and protection of your personal data in compliance with the General Data Protection Regulation (GDPR). This page outlines our approach to GDPR compliance and your rights under this regulation.

Data Controller

Vora acts as a data controller for the personal information collected through our platform. As a data controller, we determine the purposes and means of processing personal data.

Legal Basis for Processing

We process your personal data based on one or more of the following legal bases:

  • Your consent
  • Performance of a contract with you
  • Compliance with a legal obligation
  • Protection of vital interests
  • Performance of a task carried out in the public interest
  • Legitimate interests pursued by us or a third party

Your Rights Under GDPR

Under the GDPR, you have the following rights:

  • Right to Access: You have the right to request copies of your personal data.
  • Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
  • Right to Erasure: You have the right to request that we erase your personal data, under certain conditions.
  • Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
  • Right to Object to Processing: You have the right to object to our processing of your personal data, under certain conditions.
  • Right to Data Portability: You have the right to request that we transfer the data we have collected to another organization, or directly to you, under certain conditions.

Data Protection Measures

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

  • Encryption of personal data
  • Ability to ensure ongoing confidentiality, integrity, availability, and resilience of processing systems and services
  • Ability to restore the availability and access to personal data in a timely manner in the event of a physical or technical incident
  • Process for regularly testing, assessing, and evaluating the effectiveness of technical and organizational measures for ensuring the security of the processing

International Data Transfers

If we transfer your personal data outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place to protect your data, such as Standard Contractual Clauses approved by the European Commission.

Data Breach Notification

In the event of a personal data breach, we will notify the relevant supervisory authority without undue delay and, where feasible, not later than 72 hours after having become aware of it, unless the breach is unlikely to result in a risk to the rights and freedoms of natural persons.

Contact Us

If you have any questions about our GDPR compliance or wish to exercise your rights, please contact our Data Protection Officer at contact@voralab.app.