GDPR Compliance
Built in the EU, for the EU. Your data stays in European data centers with full GDPR compliance.
Plain English: You own your data. You can access, correct, export, or delete it at any time. We store everything in the EU and never share it without your consent.
Commitment to Privacy
Oran is built with GDPR compliance as a foundation, not an afterthought. Our data centers are in the EU, our sub-processors are GDPR-compliant, and we offer a comprehensive DPA to every customer.
Your Rights
As an Oran user or a contact within our intelligence systems, you have the following rights:
- Right to Access: Know what data we hold about you.
- Right to Rectification: Request corrections to inaccurate data.
- Right to Erasure: Request that your data be permanently deleted.
- Right to Portability: Receive a copy of your data in a portable format.
Data Processing Agreement (DPA)
We offer a comprehensive DPA that outlines our role as a Data Processor and yours as a Data Controller. This agreement defines the technical and organizational measures we take to keep your data safe.
Sub-processors
We work with a limited number of high-tier sub-processors (like Supabase and AWS) to provide our services. Each is vetted for GDPR compliance and SOC2 certification.
Subject Access Requests
If you wish to exercise your rights under GDPR, please submit a request to our Data Protection Officer at dpo@getoran.com.