Effective Date: March 1, 2025
FreeReadText is committed to compliance with the General Data Protection Regulation (GDPR). This page explains how we handle your personal data in accordance with EU data protection law.
FreeReadText is the data controller responsible for your personal data. If you have questions about how your data is processed, you can contact us at support@freereadtext.com.
We process your personal data based on the following legal grounds:
As a data subject in the European Economic Area (EEA), you have the following rights:
You have the right to request a copy of the personal data we hold about you, along with information about how it is processed.
You have the right to request correction of any inaccurate or incomplete personal data we hold about you.
You have the right to request the deletion of your personal data when it is no longer necessary for the purpose it was collected, or when you withdraw consent.
You have the right to request restriction of processing of your personal data under certain circumstances, such as when you contest the accuracy of the data.
You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit it to another controller.
You have the right to object to the processing of your personal data based on legitimate interests or for direct marketing purposes.
Where processing is based on consent, you have the right to withdraw your consent at any time. Withdrawal does not affect the lawfulness of processing carried out before the withdrawal.
For a detailed overview of the types of data we collect and how we use them, please refer to our Privacy Policy.
In summary, we collect account information (name, email), usage data (character counts, conversion history), technical data (IP address, browser information), and payment data (processed through third-party providers).
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected or to comply with legal requirements. Account data is retained while your account remains active. Upon account deletion or request for erasure, personal data will be removed within 30 days, except where retention is required by law.
Your data may be transferred to and processed in countries outside the EEA. When such transfers occur, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission, to protect your data in accordance with GDPR requirements.
We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk of processing your personal data. These measures include encryption, access controls, and regular security assessments.
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach. If the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly.
We use the following categories of third-party data processors:
All third-party processors are required to comply with GDPR and process data only on our instructions.
If you believe that our processing of your personal data violates GDPR, you have the right to lodge a complaint with your local data protection supervisory authority.
To exercise any of your rights under GDPR, please contact us at the email address below. We will respond to your request within 30 days. In certain cases, we may need to verify your identity before processing your request.
For any GDPR-related inquiries or to exercise your data protection rights: