GDPR Compliance

Last updated: June 29, 2026

GoldGigger is operated from the Czech Republic and is subject to the EU General Data Protection Regulation 2016/679 ("GDPR"). This page summarizes how we comply and how you and your recipients can exercise their rights.

Controller

Jiří Vacek, Stará Chodovská 9, 357 35 Chodov, Czech Republic, IČO 08507473 is the controller of personal data relating to GoldGigger accounts. For data of recipients you contact through the Service, you are the controller and we act as your processor.

Lawful basis

• Service provision: contract performance (Art. 6(1)(b)).
• Outreach to your prospects: your legitimate interest as sender (Art. 6(1)(f)), subject to your obligation to inform recipients and honor objections.
• Security & fraud prevention: legitimate interest (Art. 6(1)(f)).

Your responsibilities as sender

• Only contact businesses for which you have a lawful basis (e.g., legitimate interest in B2B outreach to a relevant professional role).
• Include sender identity and a clear opt-out in every email.
• Honor opt-out and erasure requests promptly and stop further contact.
• Respect any national rules stricter than GDPR (e.g., prior consent regimes).

Data subject rights

Anyone whose data we process has the right to access, rectify, erase, restrict, and port their data, and to object to processing. They may also complain to a supervisory authority — in the Czech Republic, Úřad pro ochranu osobních údajů (uoou.cz).

Subprocessors

We work with a small set of infrastructure, AI, and search providers. A list is available on request to privacy@goldgigger.app.

Data Processing Agreement

If you require a Data Processing Agreement (DPA) for your use of GoldGigger, contact privacy@goldgigger.app and we will provide one.