Data Protection

GDPR and Compliance

Galaxy Node adheres to GDPR and maintains records of processing activities with appointed DPO

Security Measures

• Encryption at rest in transit with AES256 and TLS12plus
• Access controls with rolebased access and MFA for staff
• Network Security with firewalls IDSIPS and DDoS mitigation
• Physical Security in TierIII data centers with monitoring

Retention and Deletion

Personal data is retained only as needed and deleted within 30 days of account closure

Incident Response

Incident Response Team notifies stakeholders within 72hours of breach detection

International Transfers

Data transfers outside EEA use Standard Contractual Clauses or adequacy decisions

Contact

Data Protection inquiries can be sent to [email protected]