← Back to Home

GDPR Compliance

Last updated: December 24, 2024

🇪🇺 EU Data Protection

HookSnap is committed to protecting your privacy and complying with GDPR requirements.

What is GDPR?

The General Data Protection Regulation (GDPR) is a European Union regulation that protects the personal data and privacy of EU citizens. It gives you control over your personal data and how it's used.

Your Rights Under GDPR

As a user, you have the following rights:

1. Right to Access

You can request a copy of all personal data we hold about you. We will provide this within 30 days of your request.

2. Right to Rectification

You can request that we correct any inaccurate or incomplete personal data we hold about you.

3. Right to Erasure ("Right to be Forgotten")

You can request that we delete all personal data we hold about you. We will comply unless we have a legal obligation to retain it.

4. Right to Data Portability

You can request your data in a machine-readable format (JSON) so you can transfer it to another service.

5. Right to Restrict Processing

You can request that we limit how we use your personal data while we verify its accuracy or address a complaint.

6. Right to Object

You can object to the processing of your data for direct marketing purposes. We will immediately stop processing.

7. Right to Withdraw Consent

You can withdraw consent for data processing at any time. This won't affect the lawfulness of processing before withdrawal.

Data We Collect

  • Account Data: Email address (required for account creation)
  • Content Data: Drafts and hooks you create
  • Usage Data: How you interact with our service (with your consent)
  • Technical Data: Browser type, device information (for functionality)

Legal Basis for Processing

We process your data based on:

  • Contract: To provide our service to you
  • Consent: For analytics and marketing (opt-in)
  • Legitimate Interest: To improve our service and prevent fraud
  • Legal Obligation: To comply with applicable laws

Data Storage & Security

  • Your data is stored on secure servers with encryption at rest and in transit
  • We use Supabase, which maintains SOC 2 Type II compliance
  • Data is primarily stored in the EU region
  • We implement regular security audits and updates

Data Retention

  • Account data: Retained while your account is active
  • Content (drafts): Retained until you delete them or your account
  • Analytics data: Anonymized and retained for 26 months
  • Billing records: Retained for 7 years (legal requirement)

International Transfers

When we transfer data outside the EU, we ensure appropriate safeguards:

  • Standard Contractual Clauses (SCCs) with service providers
  • Adequacy decisions where applicable
  • Data Processing Agreements with all sub-processors

How to Exercise Your Rights

To exercise any of these rights, you can:

  1. Email us at privacy@hooksnap.co
  2. Use the data export/delete features in your dashboard
  3. Contact us through our contact form

We will respond to all requests within 30 days.

Data Protection Officer

For GDPR-related inquiries, contact our Data Protection Officer:

Email: dpo@hooksnap.co

Supervisory Authority

If you're not satisfied with how we handle your request, you have the right to lodge a complaint with your local data protection authority.