Chikoh

GDPR Compliance

Last updated: January 15, 2025

Sidekick Intelligence LLC (DBA Chikoh) is committed to protecting your personal data and respecting your privacy. This page outlines how we comply with the General Data Protection Regulation (GDPR).

1. Our GDPR Commitment

We are committed to ensuring the security and protection of the personal information that we process, and to provide a compliant and consistent approach to data protection. We have implemented appropriate technical and organizational measures to ensure that we meet GDPR requirements.

2. Lawful Basis for Processing

We process personal data under the following lawful bases:

  • Consent: You have given clear consent for us to process your personal data for specific purposes
  • Contract: Processing is necessary for the performance of our services to you
  • Legal obligation: Processing is necessary for compliance with legal obligations
  • Legitimate interests: Processing is necessary for our legitimate interests, provided these are not overridden by your rights

3. Your Rights Under GDPR

As a data subject, you have the following rights:

3.1 Right to Access

You have the right to obtain confirmation that your personal data is being processed and access to your personal data and certain information about how it is processed.

3.2 Right to Rectification

You have the right to have inaccurate personal data corrected or completed if it is incomplete.

3.3 Right to Erasure ("Right to be Forgotten")

You have the right to request the deletion of your personal data in certain circumstances.

3.4 Right to Restrict Processing

You have the right to request the restriction of processing of your personal data in certain circumstances.

3.5 Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format.

3.6 Right to Object

You have the right to object to the processing of your personal data in certain circumstances, particularly for direct marketing purposes.

3.7 Rights Related to Automated Decision Making

You have the right not to be subject to decisions based solely on automated processing, including profiling, which produces legal effects concerning you.

4. Data Protection Measures

We have implemented the following measures to protect your personal data:

  • Encryption of data in transit and at rest
  • Regular security assessments and penetration testing
  • Access controls and authentication procedures
  • Employee training on data protection
  • Data minimization practices
  • Privacy by design principles in our development process

5. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including to satisfy any legal, accounting, or reporting requirements.

6. International Data Transfers

When we transfer personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses approved by the European Commission
  • Transfers to countries with adequate data protection laws
  • Other legally recognized transfer mechanisms

7. Data Breach Procedures

We have procedures in place to detect, report, and investigate personal data breaches. We will notify the relevant supervisory authority within 72 hours of becoming aware of a breach, where feasible, and will notify affected data subjects without undue delay where the breach is likely to result in a high risk to their rights and freedoms.

8. Data Protection Officer

We have appointed a Data Protection Officer (DPO) who is responsible for overseeing our data protection strategy and implementation to ensure compliance with GDPR requirements.

You can contact our DPO at:

  • Email: support@mail.chikoh.com
  • Mail: Data Protection Officer, Sidekick Intelligence LLC, 1021 E Lincolnway, Ste 8412, Cheyenne, WY 82001

9. Supervisory Authority

You have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the GDPR.

10. Updates to This Notice

We may update this GDPR Compliance notice from time to time. We will notify you of any material changes by posting the new notice on this page and updating the "Last updated" date.