GDPR Compliance

Deck Geniee is committed to compliance with the General Data Protection Regulation (GDPR) for users in the European Economic Area.

Legal basis for processing

We process personal data on the basis of contractual necessity (to provide the Service you signed up for) and legitimate interests (to improve the Service and prevent abuse).

Your rights under GDPR

As an EEA resident you have the right to:

• Access the personal data we hold about you
• Correct inaccurate data
• Request deletion of your data (right to be forgotten)
• Restrict or object to processing
• Data portability — receive your data in a machine-readable format
• Withdraw consent at any time (where processing is based on consent)

Data transfers

Your data is stored on Supabase infrastructure and processed on Vercel. Both providers have appropriate safeguards for international data transfers.

Data retention

We retain your data for as long as your account is active. Upon account deletion, personal data is removed within 30 days.

Exercise your rights

To exercise any of your rights, email hello@meetgeniee.com. We will respond within 30 days.