GDPR rights

Depending on your location and relationship with Certenticat, you may have the right to access, rectify, erase, restrict, or port personal data, and to object to certain processing.

Where processing is based on consent, you may withdraw that consent. Withdrawal does not affect processing that happened before withdrawal or processing required for legal, security, contractual, or legitimate operational reasons.

Some requests can be limited where data is required for security, fraud prevention, legal claims, tax or accounting obligations, audit logs, support history, or contract performance.

Blockchain records are public network data and may not be erasable by Certenticat. Where possible, Certenticat can address data it controls, such as account records, product metadata stored by Certenticat, and customer workspace data.

Before acting on a rights request, Certenticat may need to verify your identity, account ownership, role, workspace relationship, or authority to act for a customer organization.

Requests involving customer workspaces may require coordination with the customer organization that controls the relevant data.

Contact privacy@certenticat.com with the right you want to exercise, the email address or workspace involved, and enough context to locate the relevant records.

You may also have the right to lodge a complaint with a data protection authority in the EU or in your local jurisdiction.