GDPR Compliance

Your data, your rights

Arth AI is fully committed to GDPR compliance. We've built our platform with privacy by design and respect your data protection rights.

Our Commitment to GDPR

The General Data Protection Regulation (GDPR) is a comprehensive data protection law that gives individuals control over their personal data. At Arth AI, we embrace these principles and have implemented robust measures to ensure compliance.

Data Processing Agreements with all sub-processors
Privacy Impact Assessments for new features
Data minimization principles
Purpose limitation for all data collection
Storage limitation and data retention policies
Technical and organizational security measures
Regular staff training on data protection
Documented data breach procedures

Your Rights Under GDPR

As a data subject, you have the following rights regarding your personal data

Right of Access

You can request a copy of all personal data we hold about you.

Right to Rectification

You can request correction of any inaccurate personal data.

Right to Erasure

You can request deletion of your personal data (right to be forgotten).

Right to Restrict Processing

You can request we limit how we use your data.

Right to Data Portability

You can request your data in a portable, machine-readable format.

Right to Object

You can object to certain types of processing, including marketing.

How We Process Your Data

Legal Basis for Processing

We process personal data under the following legal bases:

  • Contract: Processing necessary to provide our services to you
  • Consent: Where you have given explicit consent for specific processing
  • Legitimate Interest: Processing necessary for our legitimate business interests
  • Legal Obligation: Processing required by law

Data We Collect

  • Account Information: Name, email, company details for service provision
  • Usage Data: How you interact with our platform for improvement
  • Chatbot Data: Conversation data you choose to process through our platform

International Data Transfers

When we transfer data outside the EEA, we ensure appropriate safeguards are in place:

  • Standard Contractual Clauses (SCCs)
  • Adequacy decisions where applicable
  • Additional technical and organizational measures

Exercise Your Rights

You can exercise any of your GDPR rights by contacting our Data Protection team. We will respond to your request within 30 days.

For account-related requests, you can also manage many settings directly in your dashboard under Settings > Privacy.

Data Protection Officer:
dpo@arthai.com

Privacy Team:
privacy@arthai.com

Data Processing Agreement

If you need a Data Processing Agreement (DPA) for your compliance requirements, our standard DPA is available for all customers.

Related Policies

Privacy PolicyTerms of ServiceCookie PolicySecurity