§.Legal & compliance
Your GDPR rights
Access, export, correction, deletion, and objection — where each right is surfaced in-app.
Updated 2026-04-13
PromptAssay supports GDPR Articles 15-22 through self-serve surfaces wherever possible and a support escalation path where automation would be unsafe.
| Right | Where |
|---|---|
| Access | Account settings → your data is visible across the app. For machine-readable access, request a data export. |
| Export / portability | Account settings → Danger zone → Export your data (ZIP, 1 per 24h). |
| Correction | Account settings → Profile for display name. Email requires support. |
| Deletion | Account settings → Danger zone → Delete account (soft-deletes, 30-day grace). |
| Objection | Account settings → Notifications for email preferences; cookie banner for non-essential cookies. |
| Restriction | Contact support with a written request. |
| Automated decision-making | Not applicable — PromptAssay doesn't make automated decisions about users. |
Support escalation
For anything not self-serve (restriction, complex correction, account recovery), email
support@promptassay.ai with proof of account ownership. We aim to respond within two business days and complete the action within 30 days as required by law.