GDPR Compliance

General Data Protection Regulation

Our Commitment to GDPR

ShortKit is committed to protecting your privacy and ensuring compliance with the General Data Protection Regulation (GDPR). This page outlines your rights under GDPR and how we protect your personal data.

Your Rights Under GDPR

1. Right to Information

You have the right to know how your personal data is collected, used, and processed. This information is detailed in our Privacy Policy.

2. Right of Access

You can request access to all personal data we hold about you. We will provide this information within 30 days of your request.

3. Right to Rectification

You can request correction of inaccurate or incomplete personal data. You can also update most information directly in your account settings.

4. Right to Erasure (Right to be Forgotten)

You can request deletion of your personal data. We will comply unless we have legitimate reasons to retain the data (such as legal obligations).

5. Right to Restrict Processing

You can request that we limit how we use your personal data in certain circumstances, such as while we verify its accuracy.

6. Right to Data Portability

You can request a copy of your personal data in a structured, commonly used, and machine-readable format for transfer to another service.

7. Right to Object

You can object to certain types of processing, including direct marketing and processing based on legitimate interests.

Legal Basis for Processing

We process your personal data based on:

  • Consent: When you explicitly agree to processing for specific purposes
  • Contract: To provide our services as agreed in our Terms of Service
  • Legitimate Interest: To improve our services and ensure security
  • Legal Obligation: To comply with applicable laws and regulations

Data Protection Measures

We implement appropriate technical and organizational measures including:

  • Encryption of personal data in transit and at rest
  • Regular security assessments and audits
  • Access controls and staff training
  • Data minimization and purpose limitation
  • Regular data protection impact assessments

International Data Transfers

When we transfer your data outside the EU/EEA, we ensure adequate protection through:

  • European Commission adequacy decisions
  • Standard Contractual Clauses
  • Binding Corporate Rules
  • Other appropriate safeguards

How to Exercise Your Rights

To exercise any of your GDPR rights, please contact us at:

Email: [email protected]
Subject: GDPR Request - [Your Request Type]
Include: Your account email and specific details about your request

We will respond to your request within 30 days. In complex cases, we may extend this period by up to 60 additional days, and we will inform you of any such extension.

Data Protection Officer

For questions about data protection or to exercise your rights, you can contact our Data Protection Officer at:

Email: support[@]shortkit.io

Supervisory Authority

If you believe we have not addressed your concerns adequately, you have the right to lodge a complaint with your local data protection supervisory authority.

Updates to This Policy

We may update this GDPR compliance page to reflect changes in our practices or applicable law. We will notify you of significant changes through email or our service.