Legal · EU Compliance
GDPR
Compliant by design.
across all operations
honored in full
maximum window
01: Data Controller
Who controls
your data
Folner acts as the data controller for all personal information collected through our website and products. Contact: privacy@folner.com.
We process data lawfully under Articles 6 and 9 of the GDPR. Every processing activity has a documented legal basis. We maintain a full Record of Processing Activities as required by Art. 30.
Legal basis
for processing
Contractual necessity for service delivery. Legitimate interests for product improvement. Consent for optional communications. We never rely on consent for core operations because you should not have to consent to receive the service you signed up for.
Your GDPR
rights
Access (Art. 15), Rectification (Art. 16), Erasure (Art. 17), Restriction (Art. 18), Portability (Art. 20), Objection (Art. 21). Submit all requests to privacy@folner.com. We respond within 30 days.
International
transfers
Data is stored on servers in the EU and USA. US transfers are governed by Standard Contractual Clauses (SCCs). We do not transfer data to countries without adequate protection as defined by EU adequacy decisions.
Data Processing
Agreement
Enterprise customers requiring a Data Processing Agreement can request one at privacy@folner.com. We sign DPAs within 5 business days. Our standard DPA covers sub-processor obligations and breach notification procedures.
06: Exercise Your Rights
Built for
your control
Questions about
GDPR?
Our privacy team responds within 5 business days. We treat every inquiry seriously.
Contact our privacy team