Data Protection Compliance

Data Controller and Contact Information

XO Escorts Hub, managed by Landon Kirkwood based at 1 Broad Quay, Bristol BS1 4DA, United Kingdom, is committed to ensuring the security and protection of personal data that we process, and to providing a compliant and consistent approach to data protection. The owner can be contacted at [email protected] for any data protection-related inquiries.

Personal Data Collected and Purposes

The personal data we collect includes information necessary for providing our services, such as contact information and any other data voluntarily provided by users in the course of utilizing our website. This data is collected with the primary purpose of connecting clients with the elite escorts listed in our directory. The processing of personal data is based on the necessity of performance and consent, ensuring that user's interests and fundamental rights are not overridden by our requirements.

Legal Basis for Processing Personal Data

Our processing of personal data is conducted on several legal bases as stipulated under the GDPR. Consent is obtained from users through clear affirmative action when they navigate and utilize features of the site. Additionally, processing is necessary for the performance of a contract whereby users engage with our services and the facilitation of connections within our directory. Legitimate interests give us the grounds to process personal data, provided such interests are not overridden by the individual's rights.

Data Subject Rights

Individuals whose data we process have several rights under the GDPR, including the right to access, rectify, erase, restrict processing, data portability, and object to processing. These rights can be exercised by contacting the data controller at the aforementioned details. We are obliged to respond to requests from data subjects regarding these rights within strict timelines and free of charge, enhancing transparency and control over personal data.

Security Measures

Our organization employs stringent security measures to protect personal data from unauthorized access, disclosure, alteration, or destruction. These measures include encryption, access controls, security audits, and personnel training to promote awareness of data protection protocols. Data retention policies are strictly enforced, ensuring that personal information is not held for longer than necessary for the purposes described.

Third-Party Data Sharing

Any sharing of personal data with third parties, such as service providers or legal authorities, is conducted under data processing agreements that align with GDPR mandates. We select third-party partners who demonstrate an equivalent level of data protection compliance, ensuring that there is no compromise in the privacy rights of individuals whose data we process.

International Data Transfers

Should it be necessary to transfer personal data outside the European Economic Area (EEA), we ensure that such transfers are conducted in accordance with the GDPR's adequacy framework or through legally binding agreements that incorporate standard data protection clauses.