GDPR

Data protection transparency for authentication, billing, and activity logs.

This page describes how the platform supports lawful processing, transparency, and accountability for account, billing, and galley-export activity.

Purpose limitation

Data is processed to provide authentication, subscription control, notifications, file export governance, and support visibility.

The system stores only the account, billing, reset, and activity information required to operate the platform and investigate issues.

Users may request access, correction, or deletion according to the deployment operator’s policy and legal obligations.

Passwords are hashed, sessions are signed, reset links are time-limited, and administrative actions are logged.

Privacy or data-rights questions should be routed through the compliance contact listed on the contact page.