European Economic Area

GDPR — your privacy rights

Effective date: May 2, 2026 · Last updated: May 2, 2026

This page summarizes how Ctoons addresses common requests from users in the EEA under the General Data Protection Regulation (GDPR). It is not legal advice. Our full Privacy Policy remains the primary document.

1. Who this applies to

  • Individuals located in the European Economic Area (EEA) when their personal data is processed in scope of the GDPR.

2. Legal bases

  • Performance of a contract (providing the Services you request).
  • Legitimate interests (security, fraud prevention, product improvement), balanced against your rights.
  • Legal obligations.
  • Consent where required (e.g., certain cookies or optional analytics).

3. Your rights

  • Access to your personal data.
  • Rectification of inaccurate data.
  • Erasure ("right to be forgotten") where applicable.
  • Restriction of processing in certain cases.
  • Data portability where technically feasible.
  • Object to processing based on legitimate interests or for direct marketing.
  • Lodge a complaint with your local supervisory authority.

4. How to exercise rights

  • Email hello@ctoons.app with subject line "GDPR request" and enough detail to verify your identity and locate your data.
  • We will respond within the timeframe required by applicable law (typically within one month).

5. International transfers

  • Where data is transferred outside the EEA, we use appropriate safeguards (e.g., contractual clauses) where required.

6. Related