Global Data Protection Notice

Global Data Protection Notice

This notice summarizes MailStok's cross-region data protection approach for customers operating under different privacy regulations.

1. GDPR (EU/EEA)

For EU and EEA users, processing principles include lawfulness, fairness, transparency, data minimization, purpose limitation, and accountability. Rights handling follows GDPR timelines.

2. UK GDPR

For UK users, equivalent controls are applied under UK GDPR, including lawful processing, security safeguards, and rights response governance.

3. CPRA/CCPA (California)

California residents may request access, deletion, correction, and transparency details regarding personal information processing categories and disclosure practices.

4. LGPD (Brazil) and PIPEDA (Canada)

For Brazil and Canada, we align processing controls with transparency, purpose, necessity, and data-subject rights requirements in local legal frameworks.

5. International Transfer Controls

Where cross-border transfers occur, we use contractual, technical, and organizational safeguards designed for lawful and secure processing.

6. Contact and Requests

Data protection requests can be submitted through official support channels. Requests are reviewed according to applicable laws and documented response timelines.

Last updated: March 29, 2026