General Data Protection Regulation (GDPR)

At LyonRS AI, we align our data handling practices with internationally recognized data protection standards, including the General Data Protection Regulation (GDPR) and global best practices for privacy, security, and ethical AI training.

Lawful Basis for Data Processing

We process personal and project-related data under the following lawful bases:

• Contractual necessity (service delivery)
• Legitimate business interests
• Legal obligations
• Explicit consent where required

Data Subject Rights

In line with GDPR principles, individuals whose data we process have the right to:

• Access their personal data
• Request correction of inaccurate information
• Request deletion (“Right to be Forgotten”)
• Restrict or object to data processing
• Request data portability
• Withdraw consent at any time (where applicable)

Requests may be submitted via admin@lyonrs.ng.

Data Minimization & Purpose Limitation

LyonRS AI collects only the data necessary to deliver AI training, annotation, and evaluation services.
Data is used strictly for defined project purposes and not retained longer than required.

International Data Transfers

As a global AI services company operating from Nigeria, LyonRS AI may process data across borders.
Where international data transfers occur, we apply:

• Contractual safeguards
• Confidentiality agreements
• Access controls and encryption

to ensure data remains protected at all times.

Automated Decision-Making

LyonRS AI does not use automated decision-making processes that produce legal or significant effects on individuals without meaningful human involvement.

Breach Notification

In the unlikely event of a data breach, LyonRS AI will:

• Investigate immediately
• Contain the incident
• Notify affected clients promptly
• Comply with applicable legal reporting obligations

Regulatory Cooperation

We cooperate fully with lawful data protection authorities and regulatory bodies where required.

©️ 2025 LyonRS AI
A Brand of AfraOne Digital Ltd