GDPR Compliance
How we protect your rights under GDPR
How we protect your rights under GDPR
TinyTap Analytics is committed to full compliance with the General Data Protection Regulation (GDPR). We've designed our service to be privacy-first by default, giving you control over your data.
You can request a copy of all personal data we hold about you. We'll provide this within 30 days in a commonly used format.
You can update or correct your personal data at any time through your account settings or by contacting us.
You can request deletion of your personal data. We'll delete it within 30 days, except where we have a legal obligation to retain it.
You can export your data in JSON format through your account dashboard or API.
You can object to processing of your data for marketing purposes or legitimate interests.
You can request that we limit how we process your data in certain circumstances.
All data encrypted in transit (TLS 1.3) and at rest (AES-256)
Role-based access with multi-factor authentication
We only collect data necessary for our service
Configurable retention periods with automatic deletion
We store and process data within the EU. If we need to transfer data outside the EU, we ensure adequate safeguards:
In the event of a data breach affecting your personal data, we will notify you and the relevant supervisory authority within 72 hours, as required by GDPR.
To exercise any of your GDPR rights, you can:
We'll respond to your request within 30 days. If we need more time, we'll let you know and explain why.
You have the right to lodge a complaint with your local data protection authority if you believe we've violated your GDPR rights.
For GDPR-related inquiries, contact our Data Protection Officer:
Email: dpo@tinytapanalytics.com