General Data Protection Regulation
How we comply with EU data protection requirements
Last updated: November 14, 2025
GDPR Overview
The General Data Protection Regulation (GDPR) is a regulation in EU law on data protection and privacy in the European Union and the European Economic Area. Arioron Forms is fully committed to GDPR compliance and protecting your personal data.
Your Rights Under GDPR
You have the right to:
- Access - Request copies of your personal data
- Rectification - Request correction of inaccurate data
- Erasure - Request deletion of your personal data
- Restrict Processing - Request limitation of data processing
- Data Portability - Request transfer of your data
- Object - Object to processing of your personal data
- Withdraw Consent - Withdraw consent at any time
What Data We Collect
| Data Type | Purpose | Legal Basis |
|---|---|---|
| Name & Email | Account creation and authentication | Contractual necessity |
| Form Responses | Service provision | Contractual necessity |
| Usage Data | Service improvement | Legitimate interest |
| Cookies | Authentication & preferences | Consent |
Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes outlined in our Privacy Policy:
- Account Data: Retained while your account is active
- Form Responses: Retained until deleted by form creator or respondent
- Logs: Retained for 90 days for security purposes
- Backups: Retained for 30 days, then permanently deleted
International Data Transfers
Your data may be transferred to and processed in countries outside the European Economic Area (EEA). We ensure adequate safeguards are in place, including:
- Standard Contractual Clauses approved by the European Commission
- Adequacy decisions by the European Commission
- Appropriate technical and organizational security measures
Data Security Measures
Technical Measures
- End-to-end encryption
- Secure HTTPS connections
- Regular security audits
- Encrypted backups
Organizational Measures
- Access control policies
- Employee training
- Data processing agreements
- Incident response plan
Data Protection Officer
For any GDPR-related inquiries, you can contact our Data Protection Officer:
Email: dpo@arioron.com
Address: Arioron International, Data Protection Office
Response Time: Within 30 days of request
Exercising Your Rights
To exercise any of your GDPR rights, you can:
- Self-Service: Log into your account and use our data management tools
- Email Request: Contact us at privacy@arioron.com
- Written Request: Send a letter to our registered office
We will respond to your request within 30 days. In complex cases, we may extend this period by two additional months, and we will inform you of any such extension.
Supervisory Authority
If you believe we have not adequately addressed your concerns, you have the right to lodge a complaint with your local data protection supervisory authority. In the EU, you can find your local authority at:
European Data Protection Board - Member Authorities
Automated Decision-Making
We do not use automated decision-making or profiling that produces legal effects or similarly significantly affects you without human intervention.
Updates to This Policy
We may update this GDPR compliance page from time to time. We will notify you of any material changes by posting the new version on this page and updating the "Last updated" date.
Contact Us
For any questions about our GDPR compliance or to exercise your rights, please contact us:
- Email: privacy@arioron.com
- GDPR Inquiries: gdpr@arioron.com
- General Support: support@arioron.com
Need to Exercise Your Rights?
We're committed to protecting your privacy and making it easy to control your data.