Yes, Mataee is fully compliant with the General Data Protection Regulation (GDPR). Protecting your personal and professional data is at the core of our commitments.
European hosting
All your data is hosted in Europe. No data transfers are made outside the European Union, ensuring maximum legal protection.
Data encryption
Your data is protected by encryption in transit (TLS/HTTPS protocol for all communications) and encryption at rest on hosting servers. Passwords are hashed with algorithms that comply with CNIL recommendations.
User rights
Mataee respects all the rights provided by the GDPR:
- Right to portability: export all your data at any time in CSV format from the Reports section.
- Right to erasure: delete your account and personal data directly from the settings. An anonymization process ensures the effective removal of your information.
- Right of access: view the personal data we hold about you at any time.
- Right to rectification: edit your personal information from your profile.
Minimal data collection
We apply the principle of data minimization: we only collect information strictly necessary for the operation of the service. No superfluous data is requested or stored.
Audit log
An audit log records sensitive actions performed on your organization (invitations, role changes, deletions), ensuring traceability compliant with GDPR requirements.
Subprocessors
We work with a limited number of subprocessors, all GDPR compliant:
- Mollie (Netherlands): payment processing
- Brevo (France): transactional email delivery
All of our practices are detailed in our privacy policy.