Data Protection

GDPR Compliance

AskAd.ai is fully committed to GDPR compliance. We protect the privacy and rights of all individuals whose data we process.

How we comply

We have implemented comprehensive measures to ensure full compliance with the General Data Protection Regulation (GDPR).

  • We process personal data only for specified, legitimate purposes
  • Data minimization: we only collect what is necessary to provide our services
  • We maintain records of all data processing activities
  • Data Protection Impact Assessments for high-risk processing
  • We have appointed a Data Protection Officer (DPO)
  • 72-hour breach notification to supervisory authorities
  • Privacy by design and by default in all product development

Our role as a data processor

When you use AskAd.ai to manage your marketing data, you act as the data controller and AskAd.ai acts as the data processor.

We process your data only according to your instructions and for the purposes of providing our services. We do not use customer data for our own marketing or sell it to third parties.

All sub-processors we use are GDPR-compliant and covered by appropriate data processing agreements. A full list of sub-processors is available upon request.

Your data subject rights

Under the GDPR, you have the following rights regarding your personal data.

Right to Access

Request a copy of all personal data we hold about you. We respond within 30 days.

Right to Rectification

Request correction of any inaccurate or incomplete personal data.

Right to Erasure

Request deletion of your personal data (right to be forgotten).

Right to Data Portability

Receive your data in a structured, machine-readable format.

Right to Restrict Processing

Request limitation of processing under certain circumstances.

Right to Object

Object to processing based on legitimate interests or direct marketing.

Data Processing Agreement

We offer a Data Processing Agreement (DPA) to all customers. Our DPA includes Standard Contractual Clauses (SCCs) for international data transfers and covers all requirements of GDPR Article 28.

DPA includes:

  • Standard Contractual Clauses (SCCs)
  • Sub-processor list and notification process
  • Security measures documentation
  • Data breach notification procedures
  • Data deletion and return obligations

Privacy requests

To exercise your data subject rights, request a DPA, or ask questions about our GDPR compliance, contact our Data Protection Officer.

DPO: dpo@askad.ai

Contact DPO