GPPR Data Protection

thecamsource.com

GDPR Data Protection Policy

Introduction

At TheCamSource.com (the “Website”), we are committed to protecting the privacy and personal data of our users in accordance with the General Data Protection Regulation (GDPR) (EU) 2016/679. This Data Protection Policy (“Policy”) explains how we collect, process, store, and protect your personal data when you visit or use our live cam directory services. It applies to all users accessing the Website from the European Economic Area (EEA) or any other jurisdiction where GDPR applies.

This Policy is incorporated by reference into our main Privacy Policy, which provides additional details on our data practices. By using the Website, you consent to the practices described herein. We act as the data controller for the personal data we process. If you have any questions, please contact us at [email protected].

Last updated: November 03, 2025.

Data Controller

We process your personal data only when we have a lawful basis under GDPR Article 6. Our primary bases include:

Consent: For marketing emails and non-essential cookies (you can withdraw consent at any time). Contract: To provide account services and fulfill registration requirements. Legitimate Interests: For geo-customization, analytics (e.g., Google Analytics), and site security, balanced against your rights. Legal Obligation: For compliance with laws like 18 U.S.C. § 2257.

We do not process sensitive data (e.g., special categories under Article 9) without explicit consent.

Types of Personal Data We Collect

We collect minimal personal data necessary for our services:

  • Contact Information: Email address (required for registration).

  • Technical Data: IP address (anonymized for analytics), browser type, device info, and usage patterns (e.g., pages visited).

  • Account Data: Preferences and login details (stored securely via cookies).

  • Third-Party Data: Aggregated insights from partners via APIs (e.g., model particulars), without storing user-specific identifiers.

We do not collect financial data, health information, or other sensitive details directly. Webcam model data is sourced from third-party APIs and used solely for directory listings.

Purposes of Data Processing

Your data is processed for the following purposes:

  • To register and manage your account.
  • To personalize content (e.g., geo-based model recommendations).
  • To provide support, updates, and promotional offers (opt-out available).
  • To analyze site usage via Google Analytics for improvements.
  • To ensure compliance, security, and fraud prevention (e.g., blocking restricted content by region).

Processing is limited to what is necessary and proportionate.

Data Sharing and Disclosure

We do not sell your personal data. Sharing occurs only:

  • With trusted service providers (e.g., Google for analytics, email platforms) under strict data processing agreements (GDPR Article 28).
  • For legal reasons (e.g., subpoenas) or to protect rights/safety.
  • Anonymized aggregate data for demographic insights (no individual identification).

No data is shared with advertisers beyond non-personal summaries.

Data Retention

Account data (e.g., email): Retained as long as your account is active; deleted upon request or after 2 years of inactivity. Technical logs (e.g., IP): Used transiently (not archived) and deleted within 30 days. Analytics data: Anonymized and retained for up to 26 months per Google Analytics settings.

We securely delete or anonymize data when no longer needed (GDPR Article 5(1)(e)).

International Data Transfers

As a global service, data may be transferred outside the EEA (e.g., to U.S. servers). We ensure adequacy via:

  • Standard Contractual Clauses (SCCs) with processors.
  • Google Analytics’ EU-U.S. Data Privacy Framework certification.

Your rights remain protected regardless of location.

Your GDPR Rights

Under GDPR Chapter III, you have the following rights regarding your data:

  • Access: Request a copy of your data (Article 15).
  • Rectification: Correct inaccurate data (Article 16).
  • Erasure (“Right to be Forgotten”): Delete your data (Article 17); email [email protected].
  • Restriction: Limit processing during disputes (Article 18).
  • Portability: Receive data in a structured format (Article 20).
  • Objection: Oppose processing based on legitimate interests or for marketing (Article 21).
  • Withdraw Consent: At any time, without affecting prior processing (Article 7).

To exercise these rights, submit a request via our Contact Us form or email [email protected]. We respond within one month (extendable if complex). Verification may be required to prevent unauthorized access.

Security Measures

We implement appropriate technical and organizational measures (GDPR Article 32), including:

  • SSL encryption for all transmissions.
  • Access controls and regular audits.
  • IP anonymization in analytics.
  • Secure cookie storage for sessions.

In case of a data breach, we notify affected users and authorities within 72 hours (Article 33/34).

Changes to This Policy

We may update this Policy to reflect legal changes or operational needs. Significant updates will be notified via email or site banner. Continued use constitutes acceptance.

Complaints

If unsatisfied with our response to a GDPR request, contact our DPO first. You may also lodge a complaint with your local supervisory authority (e.g., via EDPB directory).

Contact Us

For GDPR matters, email [email protected] or use our Contact Us form. We’re here to help ensure your data is handled transparently and securely.