CG
ChatGen

GDPR Compliance

Last updated: December 2024

General Data Protection Regulation (GDPR)

ChatGenerator is committed to protecting your privacy and complying with the General Data Protection Regulation (GDPR). This page outlines how we handle personal data in accordance with GDPR requirements.

Your Rights Under GDPR

As a data subject, you have the following rights:

  • Right to Information: Be informed about how your data is processed
  • Right of Access: Access your personal data we hold
  • Right to Rectification: Correct inaccurate personal data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restrict Processing: Limit how we process your data
  • Right to Data Portability: Receive your data in a portable format
  • Right to Object: Object to processing of your personal data
  • Right to Withdraw Consent: Withdraw consent at any time

Legal Basis for Processing

We process personal data based on the following legal grounds:

  • Consent: When you explicitly agree to data processing
  • Contract: To fulfill our service agreement with you
  • Legal Obligation: To comply with legal requirements
  • Legitimate Interest: For our business operations and improvements

Data We Collect

We collect and process the following types of personal data:

  • Account information (email, username)
  • Usage data and analytics
  • Payment information (processed by third-party providers)
  • Communication records (support tickets, emails)
  • Technical data (IP address, browser information)

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected:

  • Account data: Until account deletion or 3 years of inactivity
  • Usage analytics: 2 years from collection
  • Support communications: 3 years from last contact
  • Payment records: 7 years for tax and legal compliance

Data Transfers

When we transfer personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place:

  • Standard Contractual Clauses (SCCs)
  • Adequacy decisions by the European Commission
  • Binding Corporate Rules (BCRs)
  • Certification schemes

Data Security

We implement appropriate technical and organizational measures to protect your personal data:

  • Encryption in transit and at rest
  • Access controls and authentication
  • Regular security assessments
  • Staff training on data protection
  • Incident response procedures

Exercising Your Rights

To exercise any of your GDPR rights, please contact us using the following methods:

  • Email: gdpr@chatgenerator.chat
  • Subject line: "GDPR Request - [Type of Request]"
  • Include: Your full name, email address, and specific request details

We will respond to your request within 30 days (or 60 days for complex requests).

Data Protection Officer

Our Data Protection Officer (DPO) can be contacted for any data protection concerns:

Email: dpo@chatgenerator.chat

Complaints

If you believe we have not handled your personal data in accordance with GDPR, you have the right to lodge a complaint with your local supervisory authority.

You can also contact us directly to resolve any concerns: privacy@chatgenerator.chat

Updates to This Policy

We may update this GDPR compliance statement from time to time. We will notify you of any material changes via email or through our website.