GDPR Compliance

Last updated: March 23, 2024

1. Introduction

The General Data Protection Regulation (GDPR) is a comprehensive data protection law that came into effect in the European Union (EU) on May 25, 2018. This page explains how Midget Custom complies with GDPR requirements and protects your data protection rights.

2. Your Rights Under GDPR

As a user of our service, you have the following rights under GDPR:

  • Right to Access: You can request a copy of your personal data
  • Right to Rectification: You can correct inaccurate data
  • Right to Erasure: You can request deletion of your data
  • Right to Restrict Processing: You can limit how we use your data
  • Right to Data Portability: You can receive your data in a structured format
  • Right to Object: You can object to certain data processing
  • Right to Withdraw Consent: You can withdraw consent at any time

3. Data Processing

We process your data for the following purposes:

  • Providing our URL shortening service
  • Generating analytics for your shortened links
  • Improving our service and user experience
  • Ensuring security and preventing abuse
  • Communicating with you about our service

4. Data Storage and Transfer

We use Supabase for data storage, which provides appropriate safeguards for international data transfers. All data is encrypted in transit and at rest.

5. Data Retention

We retain your data only for as long as necessary to provide our service:

  • Shortened URLs: Indefinitely (unless deleted by you)
  • Analytics data: 12 months
  • User preferences: Until you update or delete them

6. Exercising Your Rights

To exercise your GDPR rights, you can:

  • Contact us at [email protected]
  • Use our data request form (coming soon)
  • Submit a request through our API

We will respond to your request within 30 days.

7. Data Protection Officer

We have appointed a Data Protection Officer (DPO) to oversee our GDPR compliance. You can contact our DPO at:

[email protected]

8. Updates to This Policy

We may update this GDPR Compliance page from time to time to reflect changes in our practices or legal requirements. We will notify you of any significant changes.

9. Contact Us

If you have any questions about our GDPR compliance or data protection practices, please contact us at:

[email protected]