Privacy & Compliance
GDPR & DPDP Compliance
How Antei supports core requirements under GDPR (EU) and DPDP (India) for lawful, transparent, and accountable data processing.
GDPR & DPDP Compliance
Antei enables customers to meet their obligations under global data protection laws, including:
- GDPR (General Data Protection Regulation – European Union)
- DPDP (Digital Personal Data Protection Act – India)
We do this by adhering to privacy-by-design principles, limiting data access, and ensuring transparency across the platform.
Legal Basis for Processing
We process customer data on the basis of:
- Contractual necessity — to deliver services as agreed
- Legitimate interest — to operate and improve the platform securely
- Consent — for user-authorized integrations (e.g., Gmail, Stripe)
Rights We Support
| Right | Description |
|---|---|
| Right to Access | View data stored or synced via Antei |
| Right to Rectification | Update mapped or imported data |
| Right to Erasure | Request removal of stored records (partial or full) |
| Right to Restrict Processing | Pause certain jobs or integrations temporarily |
| Right to Portability | Export structured data (CSV, JSON, PDF) |
| Right to Withdraw Consent | Revoke integration access at any time |
Regional Storage & Transfers
Antei operates on secure, globally distributed infrastructure:
- Hosted on Cloudflare, Railway, and Render
- Data encrypted at rest and in transit
- Processing restricted to specific regions unless explicitly allowed
- Details on request for enterprise audit and legal review
Data Processing Agreement (DPA)
A formal DPA is available for enterprise customers. It includes:
- Roles (Controller vs. Processor)
- Subprocessor transparency
- Retention, deletion, and breach protocols
To request a signed copy, email legal@antei.com.
Responding to Data Requests
If you’re a data subject whose data is synced to Antei:
- Contact the Antei customer (data controller)
- Antei will cooperate with the request as per our DPA