GDPR Compliance
Last updated: August 3, 2025
1. Lawful Basis
We only process data when we have a lawful basis, such as:
- Operational necessity to perform a file conversion
- Legal obligation (e.g., fraud prevention)
2. User Rights
You have the right to:
- Access your personal data
- Rectify inaccurate data
- Erase your data (“Right to be forgotten”)
- Restrict or object to processing
3. Data Security
We use industry-standard encryption and security best practices. Data is stored securely and access is limited.
4. Data Retention
- Files: Deleted within 30 minutes
5. Data Processors
All third-party processors (e.g., hosting) are GDPR-compliant and located in the EU or in jurisdictions with equivalent protection.
6. Breach Notification
In case of a data breach, we will notify users and regulators within 72 hours as required.
7. Contact
To exercise your rights or ask GDPR-related questions, contact: gdpr@crushpdf.com