GDPR
Last updated June 1, 2026
Tacto is committed to supporting our customers' compliance with the EU General Data Protection Regulation (GDPR) and equivalent laws. This page summarizes our approach.
Roles
For the personal data in the guides and recordings you create, you are the data controller and Tacto acts as a data processor, processing that data on your instructions. For your account and billing information, Tacto is the controller.
Your rights
If your personal data is processed by Tacto, you have the right to access, rectify, erase, restrict, and port it, and to object to certain processing. Submit a request to privacy@tacto.fyiand we will respond within the time required by law.
Data processing terms
We offer a Data Processing Addendum (DPA) that reflects the GDPR's Article 28 requirements, including confidentiality, security, sub-processor obligations, and assistance with data-subject requests. Contact us to put a DPA in place.
International transfers
Where personal data is transferred outside the EEA, we rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses.
Security and breach notification
We maintain technical and organizational measures to protect personal data (see Security) and will notify affected customers of a personal-data breach without undue delay, as required.
Contact
For GDPR requests or a DPA, email privacy@tacto.fyi.