Looking for founder tools - Lean Canvas, Traction Roadmap, or Customer Forces? Check out our new LEANFoundry site.

LEANSTACK GDPR Compliance

Does GDPR apply to me?

If you're based in the EU, or do business in the EU, then yes, the GDPR regulations apply to you.  If you have any EU personal data in your LEANSTACK account, such as name, email address, or any other personally identifiable information then the GDPR applies.  You are a Controller of personal data under the GDPR so you need to enter into GDPR-compliant data processing agreements with any online services and third-party vendors you rely on, including us.  This is where the Data Processing Addendum (or Agreement), comes in.

Data Processing Addendum

Processing EU personal data must be governed by a GDPR compliant contract.  We provide a standard Data Processing Addendum (DPA) that extend GDPR privacy principles, rights and obligations whenever personal data may be processed.

See our DPA online here.

Sub-processors

LEANSTACK uses third-party sub-processors, such as cloud hosting providers and error tracking software, to provide our services.  We enter into GDPR-compliant data processing agreements with each sub-processor, and require the same of them.

See our list of sub-processors.