GDPR Compliance
π‘οΈ Your Privacy Rights Under GDPR
The General Data Protection Regulation (GDPR) gives you specific rights regarding your personal data. At Text Extractor Pro, we are committed to upholding these rights and ensuring full compliance with EU data protection laws.
1. Our Commitment to GDPR
Text Extractor Pro is fully committed to GDPR compliance. We have implemented comprehensive data protection measures and processes to ensure your personal data is processed lawfully, fairly, and transparently.
ποΈ Legal Basis for Processing
We process your personal data based on the following lawful grounds under GDPR Article 6: Consent for analytics and marketing, Contract performance for service delivery, and Legitimate interests for service improvement.
2. Your GDPR Rights
Under GDPR, you have the following rights regarding your personal data:
π Right to Access
You have the right to request a copy of all personal data we hold about you, including how it's being processed and who it's shared with.
βοΈ Right to Rectification
You can request that we correct any inaccurate or incomplete personal data we have about you.
ποΈ Right to Erasure
Also known as the "right to be forgotten," you can request that we delete your personal data under certain circumstances.
βΈοΈ Right to Restrict Processing
You can request that we limit how we process your personal data in certain situations, such as during a dispute.
π¦ Right to Data Portability
You have the right to receive your personal data in a structured, machine-readable format to transfer to another service.
β Right to Object
You can object to processing based on legitimate interests, including for direct marketing and analytics purposes.
3. Data We Collect
For transparency, here's an overview of the personal data we collect and process:
| Data Category | Examples | Legal Basis | Retention Period |
|---|---|---|---|
| Account Data | Email address, user ID | Contract performance | Until account deletion |
| Usage Data | Feature usage, request counts | Legitimate interests | 12 months |
| Technical Data | IP address, browser type | Legitimate interests | 90 days |
| Payment Data | Billing information (via Paddle) | Contract performance | Per Paddle's policy |
4. How to Exercise Your Rights
You can exercise your GDPR rights by contacting us through the following methods. We will respond to your request within 30 days as required by law.
π Submit a GDPR Request
Use this form to exercise your GDPR rights. We'll process your request and respond within 30 days.
5. Request Processing Timeline
Here's what happens when you submit a GDPR request:
Request Received
We acknowledge receipt of your request within 24 hours and begin verification.
Identity Verification
We verify your identity to protect against fraudulent requests (2-3 business days).
Request Processing
We process your request and gather the relevant data or take requested action.
Response Delivered
We provide our response within 30 days of your initial request (as required by GDPR).
6. Data Protection Officer
π§ Contact Our Data Protection Officer
Our Data Protection Officer oversees GDPR compliance and handles privacy concerns. You can contact them directly for any GDPR-related questions or complaints.
Email: dpo@textextractorpro.com
Response Time: Within 48 hours
7. Data Transfers
7.1 International Transfers
When we transfer your data outside the EU, we ensure adequate protection through:
- Adequacy Decisions: Transfers to countries deemed adequate by the EU Commission
- Standard Contractual Clauses: EU-approved contracts for data protection
- Certification Schemes: Providers with recognized data protection certifications
7.2 Third-Party Processors
Our main data processors and their GDPR compliance status:
- Google (Firebase): EU-US Data Privacy Framework participant
- Paddle: GDPR-compliant payment processor with EU operations
- AI Service Providers: Contracts include GDPR compliance requirements
8. Data Breach Procedures
8.1 Notification Timeline
In the event of a data breach affecting personal data:
- Within 72 hours: We notify the relevant supervisory authority
- Without undue delay: We notify affected individuals if high risk
- Immediate action: We contain the breach and assess impact
8.2 Your Rights During a Breach
If your data is affected by a breach, you have the right to:
- Be informed about the nature and scope of the breach
- Receive information about measures taken to address the breach
- Get advice on steps you can take to protect yourself
- Lodge a complaint with supervisory authorities
9. Supervisory Authority
You have the right to lodge a complaint with a supervisory authority if you believe we have not handled your personal data in accordance with GDPR. You can contact:
- Your local EU supervisory authority (where you reside)
- The supervisory authority where our main establishment is located
- The authority where the alleged infringement occurred
10. Contact Information
For any GDPR-related questions or to exercise your rights:
- GDPR Requests: gdpr@textextractorpro.com
- Data Protection Officer: dpo@textextractorpro.com
- General Privacy: privacy@textextractorpro.com
- Physical Address: Useful Develops, City Towers, Ajman, UAE - Office 813
GDPR Compliance Officer: Useful Develops Legal Team
Last Compliance Review: January 2025
Next Review: July 2025