GDPR Compliance
For our users in the European Economic Area (EEA), United Kingdom, and Switzerland.
Our Commitment
Loopsie is committed to GDPR compliance. We process personal data lawfully, fairly, and transparently. This page supplements our Privacy Policy with specific information for EEA users.
Data Controller
Loopsie LLC acts as the data controller for personal data collected through our services. For data processing inquiries, contact our Data Protection Officer at dpo@goloopsie.com.
Legal Basis for Processing
We process your data under the following legal bases:
- Contract performance: Processing necessary to provide our services
- Legitimate interests: Improving our services, fraud prevention, security
- Legal obligation: Compliance with tax, accounting, and regulatory requirements
- Consent: Marketing communications (where applicable)
Your GDPR Rights
Under GDPR, you have the right to:
- Access: Request a copy of your personal data
- Rectification: Correct inaccurate or incomplete data
- Erasure: Request deletion of your data ("right to be forgotten")
- Restriction: Limit how we process your data
- Portability: Receive your data in a machine-readable format
- Objection: Object to processing based on legitimate interests
- Withdraw consent: Remove previously given consent at any time
To exercise any right, email privacy@goloopsie.com. We respond within 30 days.
International Transfers
Data transferred outside the EEA is protected by Standard Contractual Clauses (SCCs) approved by the European Commission. Our primary data processors (Google Cloud, Stripe) maintain their own GDPR compliance programs and appropriate safeguards.
Data Retention
We retain personal data only as long as necessary for the purposes outlined in our Privacy Policy. Account data is deleted within 30 days of account closure. Financial records are retained for 7 years as required by law.
Sub-processors
We use the following sub-processors:
| Provider | Purpose | Location |
|---|---|---|
| Google Cloud | Infrastructure | US/EU |
| Stripe | Payments | US/EU |
| SendGrid | US | |
| Intercom | Support | US |
Supervisory Authority
You have the right to lodge a complaint with your local data protection authority. For a list of EEA supervisory authorities, visit the European Data Protection Board.
Contact
Data Protection Officer: dpo@goloopsie.com