Legal

GDPR Compliance

General Data Protection Regulation Information

Our Commitment to GDPR

waitlistTest is committed to protecting the privacy and security of your personal data in accordance with the General Data Protection Regulation (GDPR). This page explains how we comply with GDPR and your rights under this regulation.

Your Rights Under GDPR

As a data subject, you have the following rights:

  • Right to Access: Request copies of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your data ("right to be forgotten")
  • Right to Restrict Processing: Request limitation of how we use your data
  • Right to Data Portability: Request transfer of your data to another service
  • Right to Object: Object to certain types of processing
  • Rights Related to Automated Decision-Making: Opt out of automated decisions

How We Process Your Data

We process your personal data based on the following legal grounds:

  • Contract: To provide our services to you
  • Consent: For marketing communications (with your explicit consent)
  • Legitimate Interests: To improve our services and prevent fraud
  • Legal Obligations: To comply with applicable laws

Data Protection Measures

We implement comprehensive security measures:

  • End-to-end encryption for data in transit
  • Encrypted databases for data at rest
  • Regular security audits and penetration testing
  • Staff training on data protection
  • Limited access to personal data on a need-to-know basis
  • Incident response procedures for data breaches

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting requirements. When you delete your account, we will delete or anonymize your data within 30 days.

International Data Transfers

Our servers are located in the United States. When we transfer data outside the EU/EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.

Data Processing for Waitlist Creators

When you use waitlistTest to collect signups, you act as a data controller for the information you collect. We act as a data processor. You are responsible for:

  • Obtaining proper consent from your subscribers
  • Providing clear privacy notices
  • Responding to data subject requests
  • Using the data only for legitimate purposes

Data Protection Officer

For any questions about our GDPR compliance or to exercise your rights, please contact our Data Protection Officer at dpo@waitlisttest.com.

Exercise Your Rights

To exercise any of your GDPR rights, you can:

  • Access your account settings to update or export your data
  • Contact us at gdpr@waitlisttest.com with your request
  • Use the data export feature in your dashboard

Need to Exercise Your Rights?

We respond to all GDPR requests within 30 days. Click below to submit a request.

Complaints

If you believe we are not complying with GDPR, you have the right to lodge a complaint with your local data protection authority. However, we encourage you to contact us first so we can address your concerns.