At Inkscribe AI, we are committed to ensuring that your personal data is handled with the utmost care and in full compliance with the General Data Protection Regulation (GDPR). This GDPR Policy outlines how we comply with GDPR requirements for users in the European Union (EU) and European Economic Area (EEA) and the rights that users have under this regulation.

1. Legal Basis for Processing Personal Data

Under the GDPR, Inkscribe AI processes personal data based on the following lawful grounds:

1.1. Consent
Inkscribe AI will process your personal data when you have given clear consent for us to do so. This consent is obtained when you sign up for our services, subscribe to newsletters, or provide explicit agreement during other interactions.

1.2. Contractual Necessity
Processing is necessary for the performance of a contract to which you are a party, such as when you use our services and we need to process your personal data to fulfill our obligations under the service agreement.

1.3. Legal Obligation
In some cases, we may need to process your data to comply with legal obligations, such as financial regulations, fraud prevention, or complying with court orders.

1.4. Legitimate Interest
We may process your data to pursue our legitimate business interests, provided those interests are not overridden by your rights and freedoms. This includes improving our services, maintaining security, and preventing misuse of the platform.

2. Data We Collect Under GDPR

As part of GDPR compliance, we collect and process personal data from users in the EU/EEA in the following categories:

2.1. Personal Identification Data

  • Name
  • Email address
  • Contact details
  • Payment information (processed through secure third-party gateways)

2.2. Technical Data

  • IP address
  • Browser information
  • Device and usage data

2.3. Document Data

  • Uploaded files, documents, and their contents

3. Your Rights Under GDPR

Under the GDPR, users located in the EU/EEA have the following rights regarding their personal data:

3.1. Right to Access
You have the right to request access to the personal data we hold about you, including details of how and why we process it.

3.2. Right to Rectification
You have the right to request corrections to inaccurate or incomplete personal data.

3.3. Right to Erasure (Right to Be Forgotten)
You have the right to request that we delete your personal data where there is no compelling reason for us to continue processing it. You can request erasure by contacting us at privacy@inkscribeai.com.

3.4. Right to Restrict Processing
You have the right to request that we restrict the processing of your personal data if you contest the accuracy of the data, if processing is unlawful, or if you object to us processing your data for legitimate interests.

3.5. Right to Data Portability
You have the right to request a copy of the personal data you have provided to us in a structured, commonly used, and machine-readable format. You may also request that we transfer your data to another data controller where feasible.

3.6. Right to Object
You have the right to object to our processing of your data based on legitimate interests, including direct marketing. If you object, we will stop processing your personal data unless we have compelling legitimate grounds for continuing the processing.

3.7. Right to Withdraw Consent
If you have provided consent to the processing of your personal data, you have the right to withdraw that consent at any time by contacting us at privacy@inkscribeai.com.

4. Data Transfers Outside the EU/EEA

Inkscribe AI may transfer your personal data to countries outside the EU/EEA, including to third-party service providers located in non-EU countries. In such cases, we ensure that adequate safeguards are in place to protect your data, such as standard contractual clauses approved by the European Commission or ensuring that the receiving party is certified under the EU-U.S. Privacy Shield Framework.

5. Data Security and Protection

We take the security of your personal data seriously. Inkscribe AI has implemented the following security measures to comply with GDPR and protect your data:

5.1. Encryption
All personal data is encrypted both in transit and at rest using advanced encryption methods.

5.2. Access Controls
Access to personal data is restricted to authorized personnel who need the data to perform their duties. Data access is role-based, and regular audits are conducted to ensure compliance.

5.3. Breach Notification
In the unlikely event of a data breach that affects your personal data, Inkscribe AI will notify the relevant supervisory authority within 72 hours and inform you if the breach poses a high risk to your rights and freedoms.

6. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law. You may request the deletion of your personal data at any time by contacting us at legal@inkscribe.ai.

7. Supervisory Authority

If you believe that your data has been processed in violation of GDPR, you have the right to lodge a complaint with your national data protection authority.

8. Changes to This GDPR Policy

We may update this GDPR Policy periodically. Any changes will be communicated via email or through a prominent notice on our website. We encourage you to review this page regularly to stay informed of updates.

Contact Us

If you have any questions or concerns regarding this GDPR Policy, your data rights, or how we handle your personal data, please contact us at:
Email: legal@inkscribe.ai

Discover a smarter way to process and manage documents with AI.

Important Links