my.proposal
Security & compliance·3 min read

GDPR compliance

MyProposal is GDPR-compliant. Here's how we handle data subject requests and data processing.

MyProposal is fully GDPR-compliant. We act as a data processor on behalf of our users (the data controllers) for proposal and client data.

Data we process

  • Your account email and profile information.
  • Proposal content you create.
  • Your clients' names and email addresses (if you enter them).
  • Proposal view data (client IP addresses, timestamps).

Data subject requests

For right-to-erasure or right-to-access requests from your clients, email support@myproposal.app with "DSAR" in the subject. We respond within 30 days.

Data Processing Agreement (DPA)

A signed DPA is available on request for Studio and Agency plan users. Email legal@myproposal.app.

Note

As a data controller, you are responsible for having a lawful basis for processing your clients' data within MyProposal (typically legitimate interest or contract performance).

More in Security & compliance
How we protect your data
Encryption at rest and in transit, SOC 2-aligned infrastructure, and zero data selling.
4 min read
Two-factor authentication
Enable 2FA on your account to add a second layer of protection.
2 min read
Ready to win more deals?

Create, brand, send and e-sign proposals that close 40% faster.

Start free