CustomGPT.ai is now GDPR compliant

Your data's security has always been our mission. Now we're fully GDPR compliant, meeting the gold standard for data protection. Every AI agent built and deployed through our platform adheres to these rigorous privacy requirements.

Benefits for our customers

GDPR compliance

Ensure adherence to strict data protection standards in the EU, and foster trust among your users by demonstrating firm commitment to safeguarding their personal information.

Secure data handling

Rigorous measures to safeguard both your organization’s data and the information of your end-users.

Enhanced transparency

Our Trust Center provides clear visibility into how we manage and protect data—yours and your users.

Commitment to security

We are committed to continually evolve to safeguard your data and your users’ data, staying ahead of regulatory changes, and setting new benchmarks in privacy protection.

Securely ingest data from 100+ website and document sources

Everything you need to know

What is GDPR?

A law governing data collection, processing, storage, and use.

SOC 2 Type II

In addition to being GDPR compliant, we are also SOC 2 Type II certified.

Trust Center

Visit the Trust Center for an in comprehensive overview.

Testimonials

The achievement of SOC 2 Type 2 certification by CustomGPT.ai underscores their commitment to maintaining the highest standards of data security and operational excellence. This not only reinforces trust but also ensures compliance with industry best practices, making CustomGPT.ai a reliable and trusted supplier to esteemed organizations like ICTTF.

Paul C. Dwyer

President of the ICTTF International Cyber Threat Task Force

By using CustomGPT.ai, we can provide our members and customers with even more targeted support and significantly optimize our internal processes. We value the partnership-based cooperation and the high level of professionalism that CustomGPT.ai brings to every project.

Jonas Walther

AI Process Manager, GEMA

Start Building your AI with confidence

Have questions about the CustomGPT.ai API?

Yes, CustomGPT.ai is fully GDPR compliant. We prioritize the protection of user data, adhere to strict data security standards, and ensure transparency in how personal data is collected, processed, and stored.

The General Data Protection Regulation (GDPR) is a data privacy law enacted by the European Union to protect individuals’ personal data. It gives users more control over how their information is collected, used, and stored.

  • GDPR applies to any organization processing the personal data of EU residents, regardless of where the organization is based.
  • Compliance is essential for legal adherence, but it also builds trust by demonstrating a strong commitment to user privacy and data security.

From the moment you interact with CustomGPT.ai, we seek your explicit consent for data collection. We provide clear and straightforward information about what data is collected and why, ensuring you can make fully informed decisions.

We employ robust measures to ensure your data is secure:

  • Encryption protocols: SSL encryption for data in transit and 256-bit AES encryption for data at rest.
  • Data minimization: We only collect the information necessary to deliver and improve our services.
  • Strict security measures: Data is safeguarded against unauthorized access or leaks.

CustomGPT.ai has systems in place to detect data breaches quickly. If a breach occurs:

  1. We will promptly notify you and provide guidance on securing your data.
  2. Relevant authorities will be informed as required under GDPR.

You can submit a Data Subject Request (DSR) to access, modify, or request the deletion of your personal data. Simply fill out our Privacy Request Form and we will respond as soon as possible.

We collect and process:

  • User data: Email addresses, usage data, and communications during service use.
  • Tracking data: Cookies and activity data collected automatically for platform functionality and improvement.

Our processing is based on legal grounds such as user consent, contractual necessity, legal obligations, and legitimate interests like fraud prevention. For more details, please consult our Privacy Policy.

Yes, we work with trusted GDPR-compliant third-party providers for essential services, such as:

  • Hosting: Amazon Web Services (AWS)
  • Payments: Stripe
  • Productivity: Google Workspace
  • Platform services: Automattic (WordPress.com, Gravatar)

Data shared with these processors is limited to what is necessary for delivering their services, and they follow strict security protocols.

CustomGPT keeps your data until you decide what to do with it. You can use CustomGPT’s capabilities to delete your documents immediately after processing. If you choose to keep the documents to benefit from features like citations and links, they’ll stay with CustomGPT until you choose to remove them.

We use cookies and similar tracking technologies to enhance user experience and provide essential services. These include:

  • First-party cookies: Managed by us.
  • Third-party cookies: Used by providers like Stripe and Google Tag Manager.

Users can manage cookie preferences through the platform’s privacy settings or browser settings. Disabling cookies may impact platform functionality. For more details, consult our Cookie Policy.

No, CustomGPT.ai does not currently support data residency within the EU. Data residency in the EU is not a requirement for GDPR compliance.

GDPR compliance focuses on how personal data is handled, processed, and secured, regardless of where the data is physically stored. Data residency within the EU is not a strict requirement under GDPR.

If your organization requires data to be stored within the EU, you may need to find a local hosting provider (if one exists) or set up your own hosting solution. Please note that building your own solution can be a complex and time-consuming process.

If data residency is mandatory for your use case, consider exploring external hosting options or consulting with CustomGPT.ai support for potential workarounds or recommendations.

CustomGPT.ai adheres to GDPR regulations by implementing robust data protection practices, securing personal data, and providing transparency in how data is processed and stored.

For GDPR-related inquiries or data requests, please fill out our contact form and we will respond as soon as possible.

No, the data you share with CustomGPT remains private and is not used to teach or provide insight for others. We have stringent data handling practices in place to ensure your data’s security and confidentiality. In fact, the data from one bot within your account has no effect on other bots within even your own account. Each bot is its own data silo.

No, any data you interact with on CustomGPT is not used to enhance the learning of ChatGPT. It’s confined to your specific bot, ensuring your content remains local and private. For further information, you can review OpenAI’s data usage policies at: https://openai.com/policies/api-data-usage-policies

CustomGPT prioritizes data privacy. We ensure that your business data stays safe by storing it in isolated environments per bot and not using it for any other purposes, including model training. You can find more about our data privacy policies at https://customgpt.ai/security/

Yes, CustomGPT operates under a DPA. As for data collection, CustomGPT collects minimal user data required for service operation and improvement, in compliance with privacy laws and regulations. Detailed information can be found in our privacy policy: https://www.iubenda.com/privacy-policy/45263214

Yes – there is an option to immediately delete the original files after processing. This gives you added protection.

We take data protection seriously at CustomGPT. Our security measures include strong encryption, access controls, and a robust system architecture designed to prevent unauthorized access or data breaches. For an in-depth understanding of how we ensure data protection, please refer to our security principles at https://customgpt.ai/security/. We are committed to regularly updating and improving our security practices to protect your business data effectively.

Yes, CustomGPT is SOC 2 Type II compliant. See our trust center here.

Ready to start using custom AI the smart and secure way?