GDPR Compliance

EaseReply is committed to compliance with the General Data Protection Regulation (GDPR) for all users in the European Economic Area (EEA) and UK.

Your rights under GDPR

• Right to access — request a copy of your data
• Right to rectification — correct inaccurate data
• Right to erasure — delete your account and all data
• Right to restriction — limit how we use your data
• Right to portability — export your data in JSON/CSV
• Right to object — opt out of certain processing
• Right not to be subject to automated decision-making

Data Processing Agreement

If you process EU personal data through EaseReply, you can request a signed Data Processing Agreement (DPA) by emailing privacy@hostizzy.com. Our DPA covers standard contractual clauses for international data transfers.

Where we store data

Data is stored in Supabase (primary region: Asia Pacific). We implement appropriate technical and organizational measures to protect data in transit (TLS) and at rest (AES-256 encryption).

Lawful basis for processing

• Contract — to deliver the EaseReply service
• Legitimate interest — product analytics, security monitoring
• Consent — marketing emails (opt-in only)
• Legal obligation — tax records, compliance requests

Exercising your rights

Email privacy@hostizzy.com with "GDPR Request" in the subject. We respond within 30 days. You can also lodge a complaint with your local Data Protection Authority.

Data Protection Officer

Contact our DPO at dpo@hostizzy.com.