Data Protection

Legal

Last updated: July 23, 2025

Our Commitment to Data Protection

TagExtractor takes data protection seriously. As a platform originally developed in English but serving users globally, we comply with international data protection standards and regulations.

Security Measures

Data Encryption

  • • TLS 1.3 for data in transit
  • • AES-256 for data at rest
  • • End-to-end encryption for sensitive data

Access Controls

  • • Role-based access control
  • • Multi-factor authentication
  • • Regular access reviews

Infrastructure Security

  • • Regular security audits
  • • Automated threat detection
  • • Secure cloud infrastructure

Data Minimization

  • • Collect only necessary data
  • • Automatic data purging
  • • Purpose limitation

Regulatory Compliance

Global Privacy Regulations

GDPR (EU)

General Data Protection Regulation compliance for European users

CCPA (California)

California Consumer Privacy Act compliance for California residents

PIPEDA (Canada)

Personal Information Protection and Electronic Documents Act compliance

Other Jurisdictions

We adapt our practices to comply with local privacy laws

Data Processing Principles

Content Processing

  • Temporary Processing: Content is processed only for tag generation
  • No Permanent Storage: Original content is not stored unless explicitly consented
  • Purpose Limitation: Data is used only for the specified purpose
  • Automatic Deletion: Processing data is automatically deleted after completion

User Data

  • Consent-Based: We process data only with your consent
  • Minimal Collection: We collect only what's necessary
  • Transparent Processing: You know what data we use and why
  • User Control: You can access, correct, or delete your data

Your Rights

Under applicable data protection laws, you have the right to:

Access Rights

  • • View your personal data
  • • Download your data
  • • Understand how we use it

Control Rights

  • • Correct inaccurate data
  • • Delete your data
  • • Restrict processing

Portability Rights

  • • Export your data
  • • Transfer to other services
  • • Machine-readable format

Objection Rights

  • • Object to processing
  • • Withdraw consent
  • • Opt-out of communications

Incident Response

In the unlikely event of a data breach, we have procedures in place to:

  • Detect and contain the breach immediately
  • Assess the impact on user data
  • Notify affected users within 72 hours
  • Report to relevant authorities as required
  • Implement additional security measures

Contact Our Data Protection Team

For data protection inquiries, please contact:

Email: dpo@tagextractor.com

Data Protection Officer: Available for privacy concerns

Response Time: Within 30 days

Emergency Contact: security@tagextractor.com