GDPR Compliance
MarketFlow is built for GDPR from the ground up โ not bolted on as an afterthought.
Data Stays in the EU
EU customer data is stored exclusively in our Frankfurt, Germany data centre. It never leaves the EU.
Data Isolation
Each customer's data is completely isolated. No shared databases, no cross-contamination.
Data Processing Agreement
We provide a full DPA. You are the data controller, we are the data processor acting on your instructions.
Right to Erasure
Your customers' data can be deleted on request. Full deletion propagated across all systems within 72 hours.
Data Portability
Export all data in standard formats (CSV, JSON). No lock-in, no fees for data export.
Transparency
We clearly document what data is collected, why, and how long it's retained. No surprises.
Security Standards
TLS 1.3 in transit, AES-256 at rest, regular security audits, and strict access controls.
DPO Available
We have a designated Data Protection Officer available for compliance questions.
Need a Data Processing Agreement?
All Growth and Scale plan customers get a signed DPA. Contact us to request yours.
View DPA Templategdpr@marketflow.io