Skip to content
Batimo
English Türkçe فارسی العربية

GDPR Compliance

1. Data Controller

For the purposes of the General Data Protection Regulation (GDPR), BaTimo acts as a Data Controller for account and billing data, and as a Data Processor for customer message data processed on behalf of business users.

2. Legal Basis for Processing

We process personal data under the following legal bases:

  • Performance of a contract (to provide our services).
  • Legitimate interests (platform security, service improvement).
  • Legal obligations (compliance with UK and EU laws).
  • Consent (for marketing communications or optional cookies).

3. Your GDPR Rights

If you are located in the European Economic Area (EEA), you have the right to:

  • Access your personal data.
  • Rectify inaccurate data.
  • Request erasure (“right to be forgotten”).
  • Restrict or object to processing.
  • Request data portability.
  • Withdraw consent at any time.

Requests can be submitted via: support@batimo.ai

4. Data Retention

We retain personal data only for as long as necessary to fulfill contractual and legal obligations, unless a longer retention period is required by law.

5. International Data Transfers

Where personal data is transferred outside the United Kingdom or European Economic Area, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or equivalent legal mechanisms.

6. Data Security

We implement technical and organizational measures to protect personal data, including encryption, access controls, and regular security reviews.

7. Data Processing Agreement (DPA)

Business users who require a Data Processing Agreement may request one by contacting support@batimo.ai.