serps.io

GDPR & Data Processing Agreement

serps.io is committed to protecting your personal data in compliance with the General Data Protection Regulation (GDPR). This page outlines our data processing practices and your rights.

Our Commitment to GDPR

As a data processor, serps.io handles personal data on behalf of our customers in accordance with GDPR requirements. We implement appropriate technical and organizational measures to ensure data protection by design and by default.

Data We Process

In providing our SEO and search intelligence services, we process:

  • Account information — name, email address, and billing details provided during registration
  • Usage data — search queries, keyword tracking configurations, and platform interactions
  • Technical data — IP addresses, browser type, and device information collected through cookies and analytics

Your Rights Under GDPR

If you are located in the European Economic Area (EEA), you have the following rights regarding your personal data:

  • Right of access — request a copy of the personal data we hold about you
  • Right to rectification — request correction of inaccurate or incomplete data
  • Right to erasure — request deletion of your personal data
  • Right to restrict processing — request limitation of how we use your data
  • Right to data portability — receive your data in a structured, machine-readable format
  • Right to object — object to processing based on legitimate interests

Data Processing Agreement

For customers who require a formal Data Processing Agreement (DPA), we offer a standard DPA that covers the requirements of GDPR Article 28. Our DPA includes:

  • Details of data processing activities and purposes
  • Technical and organizational security measures
  • Sub-processor management and notification obligations
  • Data breach notification procedures
  • Data return and deletion provisions

To request a signed DPA, please contact us at privacy@serps.io.

International Data Transfers

When personal data is transferred outside the EEA, we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission.

Sub-Processors

We use a limited number of sub-processors to deliver our services. We maintain a list of current sub-processors and notify customers of any changes. All sub-processors are bound by data processing agreements that meet GDPR standards.

Data Protection Officer

For any GDPR-related inquiries, data subject requests, or to exercise your rights, please contact us at privacy@serps.io.