EU/EEA Privacy Disclosures (GDPR)
Supplemental notice for EU/EEA data subjects under GDPR.
Overview
This section supplements our global Privacy Notice for EU/EEA data subjects under the GDPR.
Controller & roles
For most processing related to your account, we act as a controller. For processing done on your instructions (e.g., via certain integrations), we may act as a processor as described in the DPA.
Lawful bases (GDPR)
- Performance of a contract (provide the Services)
- Legitimate interests (security, fraud prevention, improvement)
- Compliance with legal obligations
- Consent (where obtained)
- Vital interests (rare, emergency situations)
Your GDPR rights
Access, rectification, erasure, restriction, portability, objection, and the right not to be subject to solely automated decisions with legal or similarly significant effects.
How to exercise rights
Use the Privacy request channels in our help center. We may request additional information to verify your identity and to locate data across systems.
International transfers
Transfers outside the EEA rely on safeguards such as SCCs and supplemental measures. See our DPA and technical measures annex for details.
DPO & contacts
If a Data Protection Officer (DPO) is appointed, contact details will be provided in the Privacy channels. Otherwise, contact us via the Privacy request form.
Cookies & consent
We use essential cookies and seek consent for non‑essential cookies where required. Manage preferences via the banner or settings. See our Cookies Policy for details.
Complaints & authorities
You can lodge a complaint with your local supervisory authority in the EEA. Contact details are available on national authority websites.
Contact (EU/EEA)
Use the contact form for privacy inquiries. Include your country of residence for proper routing.