GDPR Compliance

1. Introduction

YAKA HOLDING is committed to ensuring full compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679. We take data protection seriously and implement appropriate measures to safeguard personal data.

2. Data Controller

YAKA HOLDING acts as the data controller for personal data collected through its website and services.

For any data protection inquiries, you may contact us at: info@yaka-holding.com

3. Principles of Data Processing

We adhere to the core GDPR principles:

• Lawfulness, Fairness, and Transparency
• Purpose Limitation
• Data Minimization
• Accuracy
• Storage Limitation
• Integrity and Confidentiality
• Accountability

4. Lawful Basis for Processing

We process personal data based on:

• User consent
• Performance of a contract
• Legal obligations
• Legitimate interests pursued by YAKA HOLDING

5. Data Subject Rights

Under GDPR, you have the following rights:

• Right of Access — Request copies of your personal data
• Right to Rectification — Request correction of inaccurate data
• Right to Erasure (“Right to be Forgotten”)
• Right to Restrict Processing
• Right to Data Portability
• Right to Object to processing
• Right to Withdraw Consent at any time

Requests can be made via: info@yaka-holding.com

6. Data Security Measures

YAKA HOLDING implements technical and organizational safeguards, including:

• Secure data storage systems
• Access control and authentication procedures
• Encryption where appropriate
• Regular monitoring and risk assessments

7. Data Retention

Personal data is retained only for as long as necessary to fulfill the purposes for which it was collected, including legal and regulatory requirements.

8. Data Sharing

We may share data with:

• Trusted service providers and partners
• Regulatory and legal authorities when required
• Professional advisors (legal, financial, compliance)

All third parties are required to comply with GDPR standards.

9. International Data Transfers

Where personal data is transferred outside the European Economic Area (EEA), appropriate safeguards are implemented, such as:

• Standard Contractual Clauses (SCCs)
• Adequacy decisions by the European Commission

10. Data Breach Procedures

In the event of a data breach, YAKA HOLDING will:

• Assess and contain the breach promptly
• Notify relevant supervisory authorities where required
• Inform affected individuals if there is a high risk to their rights and freedoms

11. Data Protection Officer (DPO)

If required under applicable law, YAKA HOLDING will appoint a Data Protection Officer (DPO) responsible for overseeing data protection strategy and compliance.

12. Supervisory Authority

You have the right to lodge a complaint with a data protection authority. In France, this is:

CNIL (Commission Nationale de l’Informatique et des Libertés)

Website: https://www.cnil.fr/

13. Updates to This Statement

YAKA HOLDING reserves the right to update this GDPR Compliance statement at any time. Updates will be published on this page.

14. Contact

For any GDPR-related questions or requests, please contact:

Email: info@yaka-holding.com
Address: 2 Grande Rue, 78720 Dampierre-en-Yvelines, France

Last Updated: April 2026