Last updated: April 25, 2026

GDPR Statement

1. Overview

The General Data Protection Regulation (GDPR) is a regulation of the European Union that governs the collection, processing, and storage of personal data of EU residents. Fixvis is committed to complying with GDPR requirements.

2. Lawful Basis for Processing

We process personal data under the following lawful bases:

  • Contract performance: Processing necessary to provide the Services you've requested
  • Legitimate interests: Processing for fraud prevention, security, and service improvement
  • Consent: Where you have given explicit consent for specific processing activities
  • Legal obligation: Where processing is required by applicable law

3. Data We Collect

We collect and process the following categories of personal data:

  • Account data: Name, email address, company name
  • Technical data: IP address, browser type, device information
  • Usage data: Features used, reports generated, interactions
  • Customer data: Domain names and keyword data submitted for scanning

4. Your Rights Under GDPR

If you are an EU resident, you have the following rights:

  • Right of access: Request a copy of your personal data
  • Right to rectification: Request correction of inaccurate data
  • Right to erasure: Request deletion of your data ("right to be forgotten")
  • Right to restriction: Request limited processing of your data
  • Right to portability: Receive your data in a structured, commonly used format
  • Right to object: Object to processing based on legitimate interests
  • Right to withdraw consent: Withdraw consent where processing is based on consent

To exercise any of these rights, contact us at privacy@fixvis.ai.

5. International Data Transfers

Fixvis stores and processes data in the United States. When we transfer personal data outside the EEA, we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission.

6. Data Security

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including encryption in transit, access controls, and regular security assessments.

7. Data Breach Notification

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and inform affected individuals without undue delay.

8. Data Protection Officer

Our Data Protection Officer can be reached at dpo@fixvis.ai.

9. Contact

For GDPR-related inquiries, contact us at:

privacy@fixvis.ai