Skip to main content

GDPR & Data Protection

How Azulado is designed to protect your rights under the General Data Protection Regulation.

Hosted in EU
Designed for GDPR
Data Sovereignty

Overview

As a privacy-first application designed to help users understand digital sovereignty, we are committed to strong data protection practices. Azulado is built around the principle of Privacy by Default and is designed with GDPR requirements in mind.

Data Controller

Entity: Impact Science .dev

CVR/VAT: DK 44217449

Contact: privacy@azulado.eu

DPO: dpo@azulado.eu

Your Rights

Azulado is designed to support your rights under GDPR. Most of these can be exercised directly through the application.

Right to Access (Article 15)

You have the right to obtain confirmation of whether we process your personal data and access to that data.

Right to Rectification (Article 16)

You have the right to have inaccurate personal data corrected and incomplete data completed.

Right to Erasure (Article 17)

Also known as the "right to be forgotten," you can request deletion of your personal data.

Right to Data Portability (Article 20)

You can export your data in a structured, machine-readable format.

Export Your Data

Download a machine-readable copy of all your stored data.

Export My Data →

Delete Your Data

Permanently delete your account and all associated data.

Delete My Account →

Data Retention

We retain your personal data only as long as necessary for the purposes outlined in our Privacy Policy:

  • Account data: Retained while your account is active, deleted within 30 days of account deletion
  • Usage statistics: Anonymized after 90 days
  • Community contributions: Retained for platform integrity but can be anonymized upon request

Data Processing Activities

1. Local Processing (Default)

By default, 100% of your browsing analysis stays on your device.

Category Purpose Retention
Analysis Cache Determine site sovereignty Until manual clear
Statistics Display browsing trends Until manual clear
Gamification Passport stamps & badges Until manual clear

2. Server-Side Processing (Opt-In)

Only active if you explicitly enable features like Blind Sync or Community Rankings.

  • Blind Sync: Encrypted data synchronization (Legal Basis: Consent)
  • Community Rankings: Anonymized score benchmarking (Legal Basis: Consent)

Sub-Processors

We use EU-based infrastructure and service providers. See our Privacy Policy for full details.

Provider Service Location Data Processed
Hetzner Online GmbH Infrastructure hosting Germany All application data
Brevo (Sendinblue) Transactional email Paris, France Email addresses, names
Mollie B.V. Payment processing Amsterdam, Netherlands Billing info, org names
Mistral AI LLM analysis Paris, France Company data (no PII)

For more detailed information, please review our full Privacy Policy or contact our Data Protection Officer at dpo@azulado.eu.