Our Commitment to GDPR
We are committed to protecting the privacy and rights of EU residents in accordance with the General Data Protection Regulation (GDPR).
Your Rights Under GDPR
Right to Access (Article 15)
You can request a copy of all personal data we hold about you. We will respond within 30 days.
Right to Rectification (Article 16)
You can request correction of inaccurate personal data at any time through your account settings or by contacting us.
Right to Erasure (Article 17)
You can request deletion of your personal data ("right to be forgotten"). We will comply unless we have a legal obligation to retain it.
Right to Data Portability (Article 20)
You can request your data in a machine-readable format to transfer to another service.
Right to Object (Article 21)
You can object to processing of your data for direct marketing purposes at any time.
Right to Restrict Processing (Article 18)
You can request that we limit how we use your data in certain circumstances.
Legal Basis for Processing
We process your data based on:
- Contract: To provide our services to you
- Legitimate Interest: To improve our services and prevent fraud
- Consent: For marketing communications (you can opt out anytime)
- Legal Obligation: To comply with tax and legal requirements
Data Processing Locations
Your data may be processed in the United States. We use appropriate safeguards including Standard Contractual Clauses to protect international transfers.
Data Retention
We retain your data for as long as your account is active. After account deletion, we retain data for 30 days for recovery purposes, then permanently delete it (except where legal retention is required).
Sub-Processors
We use the following sub-processors:
- Hetzner: Cloud hosting (Germany)
- Chargebee: Payment processing
- Google: Analytics and email infrastructure
- Resend: Transactional email
Data Protection Officer
For GDPR-related inquiries, contact our Data Protection team at privacy@hitsnooze.io.
Exercising Your Rights
To exercise any of your GDPR rights:
- Email us at privacy@hitsnooze.io
- Use our contact form
- Access settings in your account dashboard
We will respond to all requests within 30 days.
Complaints
If you're not satisfied with our response, you have the right to lodge a complaint with your local Data Protection Authority.