Privacy Policy & GDPR

Transparency and data ownership are fundamental to Graphoid. We ensure strict adherence to EU Data Protection Regulations globally.

Effective Date: March 28, 2026

Welcome to the Graphoid Privacy Policy. We process your data carefully, safely, and in full compliance with the General Data Protection Regulation (GDPR) and other global privacy laws.

1. Data Ownership & Sovereignty

You strictly own all entity and customer data stored on the Graphoid platform. We are classified as a Data Processor under GDPR guidelines. You determine what data is retained, for how long, and when it is purged through our platform governance tools.

2. Rights of the Data Subject

If you or your customers are EU residents, you have the right to:

  • Right to Erasure: Delete personal data via automated workflows in Graphoid.
  • Right to Data Portability: Export activity logs and CRM footprints securely to standard formats (CSV, JSON).
  • Right to Restrict Processing: Pause localized processing operations through administrative panels.

3. Sub-Processors & Data Transfer

We use certified, enterprise-grade sub-processors to power Graphoid's cloud infrastructure. Customer data does not transfer across availability zones without explicitly configured consent. For rigorous needs, we provide EU-only cloud storage and On-Premise (air-gapped) implementations.

4. Data Minimization Controls

Our platform incorporates AI and logic rules to actively strip Personally Identifiable Information (PII) from long-term metric reporting, ensuring we only store what is materially necessary for active engagement.

5. Contact Data Protection Officer (DPO)

If you require GDPR audits or need assistance invoking data subject requests via our API, please reach out to our dedicated Data Protection Officer at compliance@securespherelabs.com.