GDPR & Data Subject Rights

Last updated: January 2025

Overview

Docuzina is committed to compliance with the General Data Protection Regulation (GDPR) for EU and UK residents, and with applicable data protection laws in other regions. This page explains your rights and how to exercise them.

Legal Basis for Processing

Contract performance: Processing necessary to provide the service you signed up for.
Legitimate interests: Security, fraud prevention, and service improvement.
Legal obligation: Compliance with applicable laws.
Consent: Analytics and marketing, where required.

Your Rights

Right of Access

Request a copy of the personal data we hold about you.

Right to Rectification

Request correction of inaccurate or incomplete personal data.

Right to Erasure

Request deletion of your personal data ("right to be forgotten") where there is no overriding legal basis to retain it.

Right to Restrict Processing

Request that we limit how we use your data in certain circumstances.

Right to Data Portability

Receive your personal data in a structured, machine-readable format.

Right to Object

Object to processing based on legitimate interests or for direct marketing.

How to Exercise Your Rights

Submit a request to [email protected]. We will respond within 30 days. We may need to verify your identity before processing your request.

Data Transfers

If we transfer personal data outside the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs).

Complaints

If you believe we have not handled your data properly, you have the right to lodge a complaint with your local data protection authority.