Yes, Clientify fully complies with the General Data Protection Regulation (GDPR), applying appropriate technical and organizational measures, internal privacy policies, data processing agreements, and transparency and accountability mechanisms.

Clientify has appointed a Data Protection Officer with the AEPD (www.aepd.es): [email protected].

Clientify's customers act as data controllers with respect to the personal data they manage through the platform (contacts, leads…), while Clientify acts as the data processor (Art. 28 GDPR). The obligations of both parties are governed by the DPA available on the platform.

Clientify acts as data controller for its own users' data (registration, billing, support) as set out in its Privacy Policy.

Available at: clientify.com/politicas-de-privacidad.

Clientify has appointed a DPO with the AEPD. Contact: [email protected].

Clientify's servers are located in Europe. Data is hosted within the European continent to comply with GDPR requirements. Clientify's registered office is in Almería, Spain.

While Clientify maintains data centers in Europe, we cannot guarantee that data will remain exclusively within the EU. Clientify uses subprocessors based in the US (with SCCs in place) and has employees in various countries who may access your data to provide support. Data is not stored outside the EU.

Clientify has a comprehensive governance structure certified under ISO 27001. Detailed technical and organizational measures are described in the Annex of our DPA.

Yes. The DPA, pre-signed on behalf of the relevant Clientify entity, is available in the privacy section of our website.

We are unable to sign individual DPAs given our global customer base. Instead, we invite you to review and sign our standard DPA, which complies with GDPR best practices, including specific requirements for the UK and Switzerland. Available here.

Yes. Clientify engages subprocessors for certain functionalities. The full list, including their identity, location, and transfer mechanisms, is available in our Privacy Policy.

Since the European Commission's adequacy decision (July 2023), data flows securely from the EU to US companies certified under the EU-U.S. Data Privacy Framework. For other transfers, Clientify applies Standard Contractual Clauses (SCCs) and conducts the relevant Transfer Impact Assessments (TIA).

Clientify works with subprocessors certified under the EU-U.S. Data Privacy Framework where applicable, ensuring a level of data protection equivalent to that of the EU.

Full details are available in our Cookie Notice.

When using features such as Chatbot, Web Forms, or the Web Visitors add-on, certain cookies are used. More information is available in our Cookie Policy.

Go to Company Settings → My Account → Notifications. For help, contact our support team.

Clientify is not designed to process special categories of personal data (Art. 9 GDPR: health data, ideology, religion, sexual orientation, biometrics…). It is suitable for general or professional personal data.

A) Direct request: email [email protected] or [email protected] requesting erasure (Art. 17 GDPR).

B) From the platform: the account administrator can request cancellation from the settings panel.

Go to Settings → Users and teams. Deleting a user immediately revokes their access. To erase their personal data, write to [email protected].

Data is retained for a maximum of 90 days after closure for technical and security reasons. After that period, it is permanently and securely deleted in accordance with Art. 5.1(e) GDPR. Certain billing data may be retained in a blocked state for the applicable legal periods (5–6 years) solely for legal compliance.