GDPR Policy

Effective Date: February 24, 2025 | Last Updated: February 24, 2025

1. Introduction

This GDPR Policy explains how ReconcileIQ ("Service", "we", "our", or "us") handles data in compliance with the General Data Protection Regulation (GDPR) for users in the European Economic Area (EEA). This policy details our commitment to protecting the privacy and rights of data subjects under the GDPR.

2. GDPR Compliance Framework

2.1 Roles and Responsibilities

Under the GDPR framework:

2.2 GDPR Core Principles

We adhere to the following GDPR principles:

3. Data Processing Agreement (DPA)

This section constitutes a Data Processing Agreement (DPA) between ReconcileIQ (Data Processor) and the user (Data Controller), as required under Article 28 of the GDPR.

3.1 Processing Details

3.2 Processor Obligations

As a Data Processor, ReconcileIQ:

4. Data Subject Rights

Under the GDPR, data subjects have specific rights regarding their personal data. However, due to the nature of ReconcileIQ's processing:

If you have GDPR-related inquiries, including exercising data subject rights, please contact us. Note that because data is immediately deleted, we may not hold any personal data to rectify or erase.

5. Records of Processing Activities

In accordance with Article 30 of the GDPR, we maintain records of our processing activities:

5.1 Data Categories

Encrypted financial transaction records and metadata necessary for reconciliation.

5.2 Processing Details

6. Data Breach Notification

In the unlikely event of a data breach during the short processing window:

7. International Data Transfers

ReconcileIQ processes all data on servers located within the European Economic Area (EEA) or in countries that provide adequate data protection as defined by the European Commission. We do not transfer personal data to third countries or international organizations outside of these regions.

8. Contact Information

For GDPR-related inquiries, please contact us at: [email protected]

Return to Homepage