GDPR Compliance

Last updated: January 21, 2024

Overview

At LaunchOrg, we are committed to protecting the personal data of our users and their subscribers in accordance with the General Data Protection Regulation (GDPR). This policy outlines how we collect, process, and protect data for users within the European Economic Area (EEA).

Data We Collect

We collect and process the following types of personal data:

  • Email addresses of subscribers
  • Timestamps of form submissions
  • IP addresses (for security and analytics purposes)
  • User account information (for our platform users)
  • Analytics data related to landing page performance

Legal Basis for Processing

We process personal data under the following legal bases:

  • Consent: When subscribers submit their email addresses through landing pages
  • Contract: When users create an account and use our services
  • Legitimate Interests: For analytics and service improvement

Data Subject Rights

Under GDPR, individuals have the following rights:

  • Right to access their personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected:

  • Email subscriber data: Until unsubscribed or deletion request
  • User account data: Until account deletion
  • Analytics data: Maximum of 26 months

Data Security

We implement appropriate technical and organizational measures to ensure data security, including:

  • Encryption of data in transit and at rest
  • Regular security assessments
  • Access controls and authentication
  • Regular backups and disaster recovery procedures

International Data Transfers

When we transfer personal data outside the EEA, we ensure appropriate safeguards are in place through:

  • Standard contractual clauses
  • Adequacy decisions by the European Commission
  • Other legally approved transfer mechanisms

Data Protection Officer

For any GDPR-related inquiries or to exercise your rights, contact our Data Protection Officer at: privacy@launchorg.net

Compliance for Platform Users

If you use our platform to collect email addresses, you are considered a data controller for your subscribers' data. You must:

  • Obtain valid consent from subscribers
  • Provide privacy information to subscribers
  • Handle data subject requests from your subscribers
  • Have a valid legal basis for processing personal data
  • Maintain records of processing activities

Updates to This Policy

We may update this GDPR policy to reflect changes in our practices or legal requirements. We will notify users of any material changes through our platform or via email.