How do you comply with GDPR and other regulations?

OtterlyAI takes data protection and privacy very seriously. Our platform is built to comply with GDPR (General Data Protection Regulation), CCPA (California Consumer Privacy Act), and other major data protection laws.

🔒 Data Collection and Processing

• Minimal data collection: We only collect the data necessary to provide our services, such as account details and usage analytics.
• Customer-owned data: Any data you upload or monitor through Otterly.AI remains your property. We process it solely to deliver our services.
• No selling of data: We never sell or share your data with third parties for advertising or unrelated purposes.
  
  

🌍 GDPR Compliance

• Lawful basis for processing: All data processing is based on legitimate business needs or explicit user consent.
• Right to access and delete: You can request access, correction, or deletion of your personal data at any time.
• Data portability: Upon request, we can provide you with a copy of your data in a structured, commonly used format.
• EU data handling: For EU customers, data is processed in accordance with GDPR requirements, and we work with GDPR-compliant hosting providers.
  
  

📜 CCPA and Other Regulations

• Transparency: We disclose what data we collect and how it’s used.
• Opt-out rights: You can opt out of data collection for analytics or marketing at any time.
• Do Not Sell: We honor "Do Not Sell My Personal Information" requests as required by CCPA.
  
  

🛡️ Security and Storage

• Encryption: All data is encrypted at rest and in transit.
• Access control: Strict internal access controls ensure only authorized personnel can handle sensitive information.
• Regular audits: We conduct periodic security and compliance reviews.
  
  

📬 Contact for Privacy Requests

You can reach our Data Protection Officer at privacy@otterly.ai for:

• GDPR data access or deletion requests
• CCPA opt-out requests
• Questions about our privacy or compliance practices