GDPR Compliance
Because SahuSphere processes files exclusively via your browser (Client-Side), we act neither as a Data Controller nor a Data Processor for the files you manipulate using our tools. This makes our core utility suite inherently compliant with the GDPR's strictest privacy mandates.
1. Our Commitment to EU Privacy Laws
SahuSphere is fully committed to compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679. We believe that digital privacy is a fundamental human right. Our entire platform is engineered around the principle of "Data Minimization"—meaning we don't collect data we don't absolutely need.
2. Data Processing Roles
Under GDPR definitions, a Data Controller determines the purposes of processing personal data, and a Data Processor processes that data on behalf of the controller.
Regarding your files (Images, PDFs, Text): Because our tools execute via JavaScript locally on your device, your files are never transmitted to our servers. Therefore, SahuSphere acts as neither a Data Controller nor a Data Processor regarding your media and documents. You retain full control and processing responsibility over your files.
3. Lawful Basis for Processing
When we do act as a Data Controller (such as when you submit a support ticket), we process your data based on:
- Consent: You explicitly consent to us receiving your email address when you voluntarily fill out our Contact Form.
- Legitimate Interests: We log anonymized IP addresses temporarily to secure our infrastructure against DDoS attacks and abuse.
4. Your Rights as a Data Subject
If you reside in the European Economic Area (EEA), you possess robust rights regarding your personal data. SahuSphere fully honors these rights:
- Right of Access: You may request a copy of the personal data we hold about you (e.g., previous support emails).
- Right to Rectification: You may request we correct inaccurate personal data.
- Right to Erasure: You may request that we delete your personal data ("Right to be Forgotten").
- Right to Restrict Processing: You may request a pause on processing your data.
- Right to Data Portability: You may request your data be transferred to another organization.
To exercise any of these rights, please email us directly at privacy@sahusphere.com.
5. International Data Transfers
SahuSphere is a globally accessible tool. The minimal operational data we do collect (such as anonymous analytics or email inquiries) may be stored on secure servers located outside the EEA. In such cases, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs), to protect your data in transit.
6. Breach Notification
In the highly unlikely event of a data breach that compromises user contact information, SahuSphere adheres to the GDPR mandate to report the breach to the relevant supervisory authority within 72 hours, and to notify affected individuals without undue delay.
7. Data Protection Officer (DPO) Contact
If you have specific legal questions regarding our GDPR compliance, client-side processing architecture, or wish to file a formal request regarding your data, please contact our privacy compliance team:
Email: privacy@sahusphere.com