GDPR Compliance

Your privacy rights under the General Data Protection Regulation (GDPR) and how we protect your personal information at GratitudeGen.

Our GDPR Commitment

GratitudeGen is committed to protecting the privacy and personal data of all users, especially those in the European Union. We comply with all GDPR requirements and go beyond minimum standards to ensure your data is secure and your rights are respected.

256-bit

Encryption Standard

< 72 hours

Breach Notification

100%

EU Data Residency

Your Data Protection Rights

Right to Access: You can request a copy of all personal data we hold about you. Request Data Export
Right to Rectification: You can correct any inaccurate or incomplete personal information. Update Information
Right to Erasure: You can request deletion of your personal data under certain conditions. Delete Account
Right to Restrict Processing: You can limit how we process your personal data in specific situations. Restrict Processing
Right to Data Portability: You can receive your data in a structured, machine-readable format. Export Data
Right to Object: You can object to processing of your data for marketing or profiling. Object to Processing

Lawful Basis for Processing

Under GDPR, we must have a lawful basis for processing your personal data. Here are the legal grounds we rely on:

Consent: Processing based on your explicit consent for wellness tracking and personalized features.
Contract: Processing necessary to provide our platform services and fulfill our agreement with you.
Legal Obligation: Processing required to comply with legal requirements.
Legitimate Interest: Processing for platform improvement and fraud prevention.

How We Process Your Data

Data We Collect

Personal identifiers (e.g., name, email)
Platform usage data and preferences
Health and wellness check-in data
Payment and billing information (if applicable)

Data Protection Measures

End-to-end encryption
EU-based data centers
Regular security audits
Ongoing staff privacy training

Data Protection Contact

Data Protection Officer (DPO)

Email: dpo@gratitudegen.com
Phone: +1 (555) 123-4569
Response Time: Within 30 days

Supervisory Authority

If you're not satisfied with our response, you may contact your local data protection authority:

EU: Your national Data Protection Authority (DPA)
UK: Information Commissioner's Office (ICO)

Exercise Your Rights