GDPR compliance and rasa.io
The General Data Protection Regulation (GDPR) is a comprehensive data privacy regulation that governs how organizations handle the personal data of individuals within the European Union (EU). At rasa.io, we are committed to maintaining GDPR compliance in all aspects of our operations.
How rasa.io complies with GDPR
- Lawfulness, fairness, and transparency — we process personal data lawfully and transparently, ensuring individuals understand how their data is used.
- Purpose limitation — we collect personal data only for specified, legitimate purposes and don't use it for anything incompatible with those purposes.
- Data minimization — we collect only the data necessary for the purposes it's being processed for.
- Accuracy — we take reasonable steps to keep personal data accurate and up-to-date.
- Storage limitation — we store personal data only as long as necessary and have processes for secure deletion or anonymization when data is no longer needed.
- Integrity and confidentiality — we implement appropriate technical and organizational measures to protect personal data against unauthorized access, loss, or damage.
- Accountability — we maintain policies, procedures, and documentation to demonstrate our adherence to GDPR requirements.
Data retention
Your personal data is retained only as long as necessary to provide contracted services and comply with legal obligations. Usage data is generally retained for a shorter period unless required for security or legal purposes.
Your rights
You have the right to access, update, or delete the information we hold about you. For questions about your data or GDPR compliance, contact support@rasa.io.