AI
MCPCore

GDPR Compliance

Last updated: 6/10/2025

1. Introduction

At MCPCore, we are committed to protecting the privacy and security of your personal data. This GDPR Compliance statement explains how we comply with the General Data Protection Regulation (GDPR) and how we protect your personal data when you use our platform.

2. Data Controller

MCPCore is the data controller for personal data collected through our website and platform. This means we are responsible for deciding how we hold and use personal information about you.

3. Legal Basis for Processing

We process your personal data on the following legal bases:

  • Consent: Where you have given us explicit consent to process your personal data for a specific purpose.
  • Contract: Where processing is necessary for the performance of a contract to which you are a party or to take steps at your request before entering into a contract.
  • Legitimate Interests: Where processing is necessary for the purposes of the legitimate interests pursued by us or by a third party, except where such interests are overridden by your interests or fundamental rights and freedoms.
  • Legal Obligation: Where processing is necessary for compliance with a legal obligation to which we are subject.

4. Your Rights Under GDPR

Under the GDPR, you have the following rights regarding your personal data:

  • Right to Access: You have the right to request a copy of the personal data we hold about you.
  • Right to Rectification: You have the right to request that we correct any inaccurate or incomplete personal data we hold about you.
  • Right to Erasure: You have the right to request that we delete your personal data in certain circumstances.
  • Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data in certain circumstances.
  • Right to Data Portability: You have the right to request that we transfer your personal data to another organization or directly to you in certain circumstances.
  • Right to Object: You have the right to object to the processing of your personal data in certain circumstances.
  • Rights Related to Automated Decision Making: You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.

5. How We Protect Your Data

We have implemented appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

  • Encryption of personal data where appropriate
  • Regular testing, assessing, and evaluating the effectiveness of our security measures
  • Ensuring the ongoing confidentiality, integrity, availability, and resilience of our systems
  • Procedures for restoring access to personal data in a timely manner in the event of a physical or technical incident
  • Regular staff training on data protection and security

6. Data Transfers

We may transfer your personal data to countries outside the European Economic Area (EEA). When we do so, we ensure that appropriate safeguards are in place to protect your data, such as:

  • Transferring to countries that have been deemed to provide an adequate level of protection
  • Using specific contracts approved by the European Commission
  • Using providers that are part of the EU-US Privacy Shield (where applicable)

7. Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data, and whether we can achieve those purposes through other means, and the applicable legal requirements.

8. Data Protection Officer

We have appointed a Data Protection Officer (DPO) who is responsible for overseeing questions in relation to this GDPR Compliance statement and our privacy practices. If you have any questions about this statement or how we handle your personal data, please contact our DPO at dpo@mcpcore.xyz.

9. Complaints

If you have a complaint about our use of your personal data or response to your requests regarding your personal data, you have the right to lodge a complaint with a supervisory authority. In the EU, you can find the details of your local supervisory authority on the European Data Protection Board website.

However, we would appreciate the chance to deal with your concerns before you approach a supervisory authority, so please contact us in the first instance.

10. Changes to This Statement

We may update this GDPR Compliance statement from time to time. We will notify you of any changes by posting the new statement on this page and updating the "Last updated" date at the top.

11. Contact Us

If you have any questions about this GDPR Compliance statement, please contact us at privacy@mcpcore.xyz.