As an Estonian entity, fortheworld OÜ operates within one of the world’s most advanced digital jurisdictions. We are committed to full transparency and strict adherence to the European Union’s data protection standards.
1. GDPR Compliance Statement
We operate in full compliance with the General Data Protection Regulation (GDPR). This ensures that our users have the highest level of protection regarding their personal data. Our "Privacy by Design" approach means that data protection is integrated into our infrastructure from the very first line of code.
2. Data Residency & Sovereignty
Storage: All personal data is processed and stored on secure servers located within the European Economic Area (EEA).
Security: We utilize industry-standard encryption (AES-256) and secure socket layers (TLS/SSL) to protect data both at rest and in transit.
3. Data Subject Rights
Under GDPR, you have specific rights which fortheworld OÜ fully supports:
Right to Access: You can request a copy of the data we hold about you.
Right to Erasure: You can request that we delete your personal data (the "Right to be Forgotten").
Right to Portability: You can request that we export your data in a machine-readable format.
Right to Rectification: You can request that we correct any inaccurate information.
To exercise these rights, please contact our support team at support@forthe.world
4. International Data Transfers
When we use global service providers (such as for authentication or calendar synchronization), we ensure that these providers adhere to the Data Privacy Framework or utilize Standard Contractual Clauses (SCCs) to ensure your data receives an equivalent level of protection as it does within the EU.
5. Regulatory Authority
As a company registered in Tallinn, Estonia, our lead supervisory authority is the Estonian Data Protection Inspectorate (Andmekaitse Inspektsioon).