X

MEGIC GDPR COMPLIANCE ADDENDUM

Last Updated: November 4, 2025

This General Data Protection Regulation (GDPR) Compliance Addendum ("Addendum") supplements the Megic Privacy Policy and Terms of Use and applies to users located in the European Economic Area (EEA), United Kingdom (UK), and Switzerland. This Addendum outlines how Deucetek LLC ("Company," "we," "us," or "our") processes personal data in accordance with the GDPR and equivalent legislation.

1. DATA CONTROLLER

Deucetek LLC, located at 135 Technology Parkway, Norcross, GA 30092, USA, acts as the data controller for personal data collected through the Megic App and Website. For GDPR-related inquiries, please contact our Data Protection Officer at support@megic.cloud.

2. LEGAL BASIS FOR PROCESSING

We process your personal data on the following legal grounds:

2.1 Consent

When you register for an account or opt-in to certain features, we process your data based on your explicit consent. You have the right to withdraw this consent at any time.

2.2 Contractual Necessity

We process personal data necessary to fulfill our contractual obligations to you when you use our Service, as outlined in our Terms of Use.

2.3 Legitimate Interests

We process data based on our legitimate interests, including:

  • Improving and personalizing the Service
  • Ensuring the security and proper functioning of the Service
  • Detecting and preventing fraud or abuse
  • Marketing our services to users who have shown interest
  • Analytics to better understand user behavior

2.4 Legal Obligations

We process data to comply with legal obligations applicable to our business.

3. CATEGORIES OF PERSONAL DATA PROCESSED

We collect and process the following categories of personal data:

  • Account Information: Username, email address, password (encrypted), profile information
  • Content Data: Videos, images, audio, comments, and other content you create or share
  • Usage Data: Information about how you interact with our Service, including viewing history, search queries, and features used
  • Device Information: IP address, device identifiers, browser type, operating system
  • Location Data: Approximate location based on IP address and, if permitted, precise location
  • Communication Data: Messages, feedback, and other communications with us or other users
  • Cookies and Similar Technologies: Data collected through cookies, web beacons, and similar technologies

4. DATA RETENTION

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including:

  • For the duration of your account plus a reasonable period thereafter
  • As required to comply with legal obligations
  • As necessary to resolve disputes or enforce our agreements

When personal data is no longer necessary for these purposes, we will securely delete or anonymize it.

5. DATA SUBJECT RIGHTS

Under the GDPR, you have the following rights regarding your personal data:

5.1 Right to Access

You have the right to request copies of your personal data that we process.

5.2 Right to Rectification

You have the right to request that we correct inaccurate or incomplete personal data.

5.3 Right to Erasure

You have the right to request the deletion of your personal data under certain conditions, such as when the data is no longer necessary for the purposes for which it was collected.

5.4 Right to Restrict Processing

You have the right to request that we restrict the processing of your personal data under certain circumstances.

5.5 Right to Data Portability

You have the right to request a copy of your personal data in a structured, commonly used, and machine-readable format and to have it transferred to another controller where technically feasible.

5.6 Right to Object

You have the right to object to the processing of your personal data based on our legitimate interests, including profiling, and for direct marketing purposes.

5.7 Rights Related to Automated Decision Making

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects or similarly significantly affects you.

5.8 Right to Withdraw Consent

Where we process your data based on consent, you have the right to withdraw that consent at any time.

To exercise any of these rights, please contact us at support@megic.cloud. We will respond to your request within one month, with the possibility of extending this period by two additional months if necessary, taking into account the complexity and number of requests.

6. INTERNATIONAL DATA TRANSFERS

As a US-based company, we transfer personal data outside the EEA, UK, and Switzerland. We ensure appropriate safeguards are in place for these transfers through:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Binding Corporate Rules (BCRs) where applicable
  • Adequacy decisions where available
  • Other lawful data transfer mechanisms recognized under GDPR

7. DATA SECURITY

We have implemented appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

  • Encryption of personal data
  • Regular testing and evaluation of technical and organizational measures
  • Ability to ensure ongoing confidentiality, integrity, availability, and resilience of processing systems and services
  • Procedures for regularly testing, assessing, and evaluating the effectiveness of technical and organizational measures
  • Measures to restore the availability of and access to personal data in a timely manner in the event of a physical or technical incident

8. DATA BREACH NOTIFICATION

In case of a personal data breach, we will notify the relevant supervisory authority without undue delay and, where feasible, not later than 72 hours after having become aware of it, unless the breach is unlikely to result in a risk to your rights and freedoms.

When the breach is likely to result in a high risk to your rights and freedoms, we will also notify you without undue delay.

9. DATA PROTECTION IMPACT ASSESSMENT

Where processing operations are likely to result in high risk to your rights and freedoms, we conduct Data Protection Impact Assessments (DPIAs) in accordance with GDPR requirements.

10. USE OF AUTOMATED DECISION-MAKING AND PROFILING

We may use automated decision-making and profiling for the following purposes:

Content recommendation and personalization Ad targeting (if applicable) Security and fraud prevention

When we use such technologies, we implement suitable safeguards, including:

Regular audits of algorithms for bias Human oversight of significant decisions Methods for you to request human intervention, express your point of view, and contest the decision

11. CHILDREN'S DATA

We do not knowingly collect or process personal data from children under 16 in the EEA, UK, or Switzerland without verifiable parental consent. If we learn that we have collected personal data from a child under 16 without verification of parental consent, we will take steps to delete that information as quickly as possible.

12. COOKIES AND SIMILAR TECHNOLOGIES

Our use of cookies and similar technologies is subject to the consent requirements of the ePrivacy Directive and GDPR. When you first visit our Website or download our App, you will be presented with a cookie banner to obtain your consent before non-essential cookies are placed. You can change your cookie preferences at any time.

13. COMPLAINTS

If you have concerns about our processing of your personal data, please contact us first at support@megic.cloud. You also have the right to lodge a complaint with a supervisory authority in the EEA member state, UK, or Switzerland where you reside, work, or where an alleged infringement of the GDPR has occurred.

14. CHANGES TO THIS ADDENDUM

We may update this GDPR Addendum from time to time. If we make material changes, we will notify you through the App, Website, or by email prior to the changes becoming effective. We encourage you to periodically review this Addendum.

15. CONTACT INFORMATION

For any questions or concerns regarding this GDPR Addendum or our data processing activities, please contact:

Deucetek, LLC
Attn: Data Protection Officer
135 Technology Parkway
Norcross, GA 30092 USA
Email: support@megic.cloud.