At OfniMail, privacy isn't a feature—it's the foundation of our architecture. We are fully committed to complying with the General Data Protection Regulation.
For the purposes of the GDPR, OfniMail acts as a Data Processor on behalf of our customers (the Data Controllers). We process data only according to the written instructions provided via our API and DPA.
We use a limited number of third-party sub-processors to provide our services. Each has been audited for GDPR compliance.
We provide the tools necessary for our customers to fulfill data subject requests seamlessly through our API and Dashboard.
Know exactly what personal data we process and how it is used.
Request the correction of inaccurate or incomplete personal data.
Also known as the 'right to be forgotten'—request data deletion.
Request a copy of your data in a structured, machine-readable format.
Request that we limit the way we use your personal information.
Object to the processing of data for marketing or research purposes.
We offer a standard DPA that incorporates the European Commission’s Standard Contractual Clauses (SCCs) to meet the adequacy and security requirements for our customers.
Directly contact our DPO for any compliance concerns.