Back to Home

GDPR Compliance

Last updated: August 1, 2025

Formethica is committed to protecting your privacy and complying with the General Data Protection Regulation (GDPR).

Our Commitment to GDPR

The General Data Protection Regulation (GDPR) is a comprehensive data protection law that came into effect on May 25, 2018. At Formethica, we take data protection seriously and have implemented measures to ensure compliance with GDPR requirements.

Data Protection by Design

We implement privacy considerations into our systems and processes from the ground up.

User Rights

We respect and facilitate all GDPR rights including access, rectification, and erasure.

Data Security

We use industry-standard security measures to protect personal data from unauthorized access.

Transparent Processing

We provide clear information about how we collect, use, and process personal data.

Your Rights Under GDPR

As a data subject under GDPR, you have several rights regarding your personal data:

Right to Information

You have the right to know what personal data we collect, how we use it, and who we share it with.

Right of Access

You can request a copy of the personal data we hold about you.

Right to Rectification

You can ask us to correct any inaccurate or incomplete personal data.

Right to Erasure ("Right to be Forgotten")

You can request that we delete your personal data under certain circumstances.

Right to Restrict Processing

You can ask us to limit how we use your personal data in certain situations.

Right to Data Portability

You can request your personal data in a structured, machine-readable format.

Right to Object

You can object to certain types of processing, including direct marketing.

Legal Basis for Processing

We process personal data based on the following legal grounds:

  • Contract: Processing necessary for the performance of our service agreement with you
  • Legitimate Interest: Processing for our legitimate business interests, such as improving our service
  • Consent: Processing based on your explicit consent, which you can withdraw at any time
  • Legal Obligation: Processing required to comply with legal requirements

Data Transfers

When we transfer personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place:

  • • Adequacy decisions by the European Commission
  • • Standard Contractual Clauses (SCCs)
  • • Binding Corporate Rules (BCRs)
  • • Certification schemes and codes of conduct

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected:

  • • Account data: Retained while your account is active
  • • Form data: Retained according to your settings and legal requirements
  • • Analytics data: Typically retained for 26 months
  • • Support communications: Retained for 3 years

Data Protection Officer

We have appointed a Data Protection Officer (DPO) to oversee our data protection activities. You can contact our DPO with any questions or concerns about data protection:

Email: theabhirupkumar@gmail.com

Address: Kolkata, West Bengal, India

Exercising Your Rights

To exercise any of your GDPR rights, please contact us using the information below. We will respond to your request within one month.

Contact Us

For any GDPR-related requests or questions, please reach out to us:

Email Privacy TeamContact Form

Supervisory Authority

If you believe we have not handled your personal data in accordance with GDPR, you have the right to lodge a complaint with your local supervisory authority. You can find contact information for EU supervisory authorities on the European Data Protection Board website.