Data Protection

GDPR Compliance Policy

1. Purpose

This policy outlines how Photofy protects personal data in compliance with GDPR.

2. Data Protection Principles

We ensure all data is:

Processed lawfully, fairly, and transparently
Collected for specific, legitimate purposes
Limited to what is necessary
Accurate and up-to-date
Stored securely and only as long as needed

3. Roles

Photofy acts as Data Controller for user accounts and Data Processor for uploaded images.

4. Security Measures

Encrypted data transfer (TLS)
Role-based access control
Automated data deletion for uploaded files

5. Data Breach Response

Any breach will be reported within 72 hours to the appropriate authorities and affected users.

Questions about data protection?

We're here to help. Contact us for any questions about how we protect your data.