1. Our Commitment
BuiltUp Technologies LTD is committed to compliance with the General Data Protection Regulation (GDPR), which applies to the processing of personal data of individuals within the European Economic Area (EEA) and the UK. We prioritize the privacy and security of our users' data and have implemented measures to ensure we meet all GDPR requirements.
2. Your Rights Under GDPR
As a data subject, you have the following rights regarding your personal data:
Right to Access
Request copies of your personal data.
Right to Rectification
Correct inaccurate or incomplete data.
Right to Erasure
Request deletion of data ('Right to be Forgotten').
Right to Portability
Receive your data in a structured format (JSON/CSV).
To exercise these rights, please email privacy@builtup.io.
3. Data Controller vs. Processor
For the personal data of our direct customers (contractors), BuiltUp acts as the Data Controller.
For data related to your clients (homeowners) that you upload to our platform, you are the Data Controller, and BuiltUp acts as the Data Processor. We process this data solely on your behalf and in accordance with your instructions.
4. Subprocessors
We use the following third-party subprocessors to provide our services. We have Data Processing Agreements (DPAs) in place with each of them.
| Subprocessor | Purpose | Location |
|---|---|---|
| AWS | Infrastructure Hosting | US / EU |
| Stripe | Payment Processing | US / Global |
| OpenAI | AI Features | US |
| Brevo | Transactional Email | EU (France) |
5. International Data Transfers
Data may be transferred to servers located in the United States. For transfers from the EEA/UK to the US, we rely on the EU-US Data Privacy Framework and Standard Contractual Clauses (SCCs) to ensure your data remains protected.
7. Data Protection Officer (DPO)
If you have questions about our GDPR compliance or wish to exercise your rights, please contact our DPO: