GDPR Compliance

Your data protection rights under the General Data Protection Regulation

Last Updated: January 15, 2025

Our Commitment to Your Privacy

HermesCloud AI is committed to protecting your personal data and respecting your privacy rights. We comply with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

This page explains your rights under GDPR and how to exercise them. For detailed information about how we collect and use your data, please see our Privacy Policy.

Your GDPR Rights

Under GDPR, you have the following rights regarding your personal data

Right to Access

You have the right to request copies of your personal data

Right to Rectification

You have the right to request correction of inaccurate data

Right to Erasure

You have the right to request deletion of your data

Right to Restrict Processing

You have the right to request that we limit how we use your data

Right to Data Portability

You have the right to receive your data in a structured format

Right to Object

You have the right to object to our processing of your data

Data We Collect

Transparency about the personal data we process

Account Information

  • Name
  • Email address
  • Password (encrypted)
  • Profile information

Usage Data

  • AI agent interactions
  • Workflow configurations
  • API usage statistics
  • Performance metrics

Technical Data

  • IP address
  • Browser type
  • Device information
  • Cookies

Payment Information

  • Billing address
  • Payment method (via Stripe)
  • Transaction history

Legal Basis for Processing

We process your data based on the following legal grounds

Consent

We process your data with your explicit consent for marketing communications and optional features

Contract

We process your data to fulfill our contractual obligations when you use our services

Legal Obligation

We process your data to comply with legal requirements such as tax and accounting obligations

Legitimate Interest

We process your data for fraud prevention, security, and service improvement

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in our Privacy Policy, unless a longer retention period is required or permitted by law.

Account Data

Retained while your account is active, deleted within 30 days of account closure

Usage Data

Retained for 12 months for analytics and service improvement

Financial Records

Retained for 7 years to comply with tax and accounting obligations

International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA). We ensure that such transfers comply with GDPR requirements through:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Transfers to countries deemed to have adequate data protection by the EU
  • Appropriate safeguards such as encryption and pseudonymization

How to Exercise Your Rights

To exercise any of your GDPR rights, please contact our Data Protection Officer:

Email: dpo@hermescloud.ai

Mail: HermesCloud AI, Data Protection Officer, 548 Market St #35410, San Francisco, CA 94104

We will respond to your request within 30 days. In some cases, we may extend this period by an additional 60 days if necessary, and we will inform you of any such extension.

Right to Lodge a Complaint

If you believe that we have not complied with GDPR or other data protection laws, you have the right to lodge a complaint with a supervisory authority, particularly in the EU member state where you reside, work, or where the alleged infringement occurred.

You can find contact details for EU supervisory authorities at: European Data Protection Board

Related Documents

Privacy Policy

Data Processing Agreement

Cookie Policy