01Our commitment
KnoxProxy is committed to compliance with the EU General Data Protection Regulation (GDPR). We process personal data lawfully, fairly, and transparently. This page describes our GDPR compliance measures in addition to our Privacy Policy.
02Legal basis for processing
We process personal data under the following legal bases:
- Contract performance -- to provide the Services you have subscribed to
- Legitimate interest -- for fraud prevention, network security, and service improvement
- Legal obligation -- for KYC/AML compliance, tax records, and law enforcement requests
- Consent -- for optional analytics and marketing communications
03Data subject rights
Under GDPR, you have the right to:
- Access your personal data (Art. 15)
- Rectify inaccurate data (Art. 16)
- Erase your data, subject to legal retention (Art. 17)
- Restrict processing (Art. 18)
- Data portability (Art. 20)
- Object to processing (Art. 21)
- Withdraw consent (Art. 7)
04International data transfers
KnoxProxy is based in the USA. Data transfers from the EU/EEA are protected by Standard Contractual Clauses (SCCs) with all sub-processors. We evaluate each sub-processor for adequate data protection measures.
05Data processing agreement
Enterprise customers can request a Data Processing Agreement (DPA) that meets GDPR requirements. Contact legal@knoxproxy.com to receive and execute a DPA.
06Breach notification
In the event of a personal data breach, we will: notify the relevant supervisory authority within 72 hours; notify affected data subjects without undue delay if the breach poses a high risk to their rights; document the breach and remediation measures in our incident log.