GDPR Compliance
Temp Postal is fully compliant with the General Data Protection Regulation (GDPR). Learn about your rights, how we protect your data, and how to exercise your privacy rights.
Our Commitment to GDPR Compliance
The General Data Protection Regulation (GDPR) is a comprehensive data protection law that gives EU residents control over their personal data. At Temp Postal, we've implemented robust systems and processes to ensure full compliance with GDPR requirements.
We believe privacy is a fundamental right, and GDPR compliance isn't just a legal requirement for us—it's a cornerstone of our commitment to protecting your privacy worldwide.
Your GDPR Rights
Under GDPR, you have comprehensive rights over your personal data. Here's how you can exercise them.
Right to Access
Request a copy of all personal data we hold about you
Response Time: Within 30 days
Right to Rectification
Correct any inaccurate or incomplete personal data
Response Time: Immediate
Right to Erasure
Request deletion of your personal data ('right to be forgotten')
Response Time: Within 30 days
Right to Restrict Processing
Limit how we process your personal data
Response Time: Within 30 days
Right to Data Portability
Receive your data in a structured, machine-readable format
Response Time: Within 30 days
Right to Object
Object to processing of your personal data for specific purposes
Response Time: Review within 30 days
Data We Process
Transparency is key to GDPR compliance. Here's exactly what data we collect, why, and how long we keep it.
Account Information
Data Types
- Email address
- Password (hashed)
- Account preferences
- Subscription status
Purpose
Service provision and account management
Retention
Until account deletion
Lawful Basis
Contract performance
Usage Data
Data Types
- Temporary emails generated
- Service interactions
- API usage metrics
- Feature usage
Purpose
Service improvement and analytics
Retention
24 months
Lawful Basis
Legitimate interests
Technical Data
Data Types
- IP address (anonymized)
- Browser information
- Device type
- Session data
Purpose
Security and performance optimization
Retention
12 months
Lawful Basis
Legitimate interests
Communication Data
Data Types
- Support messages
- Feedback submissions
- Newsletter preferences
Purpose
Customer support and communication
Retention
36 months
Lawful Basis
Consent / Legitimate interests
How We Protect Your Data
We implement comprehensive technical and organizational measures to ensure data security.
Technical Safeguards
- • End-to-end encryption for all data transmission (TLS 1.3)
- • AES-256 encryption for data at rest
- • Regular security audits and penetration testing
- • Multi-factor authentication for administrative access
- • Automated threat detection and incident response
- • Data pseudonymization and anonymization techniques
Organizational Measures
- • Designated Data Protection Officer (DPO)
- • Privacy by Design and by Default principles
- • Regular staff training on GDPR compliance
- • Data Processing Impact Assessments (DPIAs)
- • Vendor due diligence and data processing agreements
- • Incident response and breach notification procedures
International Data Transfers
EU/EEA Data
Data from EU/EEA users is processed and stored within the EU/EEA region with full GDPR protection.
Adequacy Decisions
When transferring to countries with adequacy decisions, your data receives equivalent protection.
Standard Contractual Clauses
For other countries, we use Standard Contractual Clauses to ensure appropriate data protection.
Exercise Your Rights
Ready to exercise your GDPR rights? Contact our Data Protection Officer or use our automated tools to manage your privacy preferences.
Email DPO
Contact our Data Protection Officer directly
Account Deletion
Permanently delete your account and data
Response Time: We respond to all GDPR requests within 30 days. For urgent matters, contact us directly at privacy@temppostal.com