GDPR & your rights

This page summarises how the EU General Data Protection Regulation (“GDPR”) applies to Speechion users and how you can exercise your rights. It is for information only and does not replace legal advice. Our full Privacy Policy contains more detail on processing activities.

We process personal data lawfully, fairly, and in a transparent manner; for specified, explicit, legitimate purposes; limited to what is adequate and relevant; kept accurate and up to date where needed; stored no longer than necessary; and protected with appropriate security. These principles follow Articles 5 and 6 GDPR.

Subject to conditions and exemptions in the GDPR, you may have the following rights in relation to personal data we process as controller:

• Right of access (Art. 15) — obtain confirmation whether we process your data and receive a copy of it.
• Right to rectification (Art. 16) — correct inaccurate data or complete incomplete data.
• Right to erasure (“right to be forgotten”) (Art. 17) — request deletion where grounds apply.
• Right to restriction of processing (Art. 18) — request limitation of processing in certain cases.
• Right to data portability (Art. 20) — receive your data in a structured, commonly used, machine-readable format where processing is based on consent or contract and is automated.
• Right to object (Art. 21) — object to processing based on legitimate interests or for direct marketing.
• Rights related to automated decision-making (Art. 22) — where applicable, rights regarding solely automated decisions with legal or similarly significant effects.
• Withdraw consent — where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of processing before withdrawal.

Send a request to the contact address published on our website or in the app. We may need to verify your identity before responding. We will answer within one month as a rule, extendable by two further months where necessary (Art. 12–13 GDPR).

You have the right to lodge a complaint with a supervisory authority in your habitual residence, place of work, or place of an alleged infringement (Art. 77 GDPR), in particular in the EU member state where you live.

Where we are required to appoint a Data Protection Officer (DPO), their contact details will be published on our website. If no DPO is listed, direct privacy requests to the contact in our Privacy Policy.

If personal data is transferred outside the European Economic Area, we ensure appropriate safeguards under Chapter V GDPR (e.g. adequacy decisions or Standard Contractual Clauses).

We may update this page when our practices or the law change. Check the “Last updated” date above and review the Privacy Policy for the latest information on processing.