KillSub
GDPR Compliance Center

GDPR Compliance

Your data rights under the General Data Protection Regulation and how to exercise them with KillSub.

Right to Access

See what data we have

Right to Rectify

Correct your data

Right to Erase

Delete your data

Data Portability

Export your data

What is GDPR?

The General Data Protection Regulation (GDPR) is a comprehensive data protection law that came into effect in May 2018. It gives EU residents control over their personal data and how it's processed by organizations.

Enhanced Rights

Stronger control over personal data

Transparency

Clear information about data processing

Accountability

Organizations must prove compliance

Right to Access (Article 15)

You have the right to know what personal data we process about you, how we use it, and who we share it with.

What you can request:

  • • Confirmation that we process your personal data
  • • A copy of your personal data in a readable format
  • • Information about how we use your data
  • • Details about who we share your data with
  • • How long we keep your data
  • • Information about your other GDPR rights

How to request: Email us at johnmessoa@gmail.com with "Data Access Request" in the subject line. We'll respond within 30 days.

Right to Rectification (Article 16)

You can ask us to correct inaccurate or incomplete personal data we hold about you.

Examples of rectification:

  • • Correcting your email address
  • • Updating your name
  • • Fixing incorrect transaction categorization
  • • Completing missing information

Our response:

  • • We'll verify the correction request
  • • Update your data if the request is valid
  • • Notify any third parties if necessary
  • • Confirm the changes with you

Right to Erasure (Article 17)

Also known as the "right to be forgotten," you can request deletion of your personal data under certain circumstances.

When you can request erasure:

  • • The data is no longer necessary for the original purpose
  • • You withdraw consent and there's no other legal basis
  • • You object to processing and there are no overriding legitimate grounds
  • • Your data has been unlawfully processed
  • • Erasure is required for compliance with legal obligations

Important Note:

We may not be able to delete all data immediately if we have a legal obligation to retain it (e.g., financial records for tax purposes). We'll explain any limitations in our response.

Right to Data Portability (Article 20)

You can request a copy of your data in a structured, machine-readable format, or ask us to transfer it directly to another service provider.

What we can export:

  • • Your account information
  • • Subscription data and preferences
  • • Transaction categorizations you've made
  • • Dashboard settings and customizations

Export formats:

  • • JSON (structured data)
  • • CSV (spreadsheet format)
  • • XML (machine-readable)
  • • PDF (human-readable report)

Other GDPR Rights

Right to Restrict Processing

You can ask us to limit how we use your data in certain situations, such as when you contest the accuracy of the data.

Right to Object

You can object to processing based on legitimate interests, direct marketing, or processing for research purposes.

Automated Decision-Making

You have rights regarding automated decision-making, including profiling. Our AI analysis is designed to assist, not replace human judgment.

Right to Complain

You can lodge a complaint with your local data protection authority if you believe we've violated your rights.

Response Timeframes

Request TypeResponse TimeExtension Possible
Data Access Request30 days+60 days (complex cases)
Data Rectification30 days+60 days (complex cases)
Data Erasure30 days+60 days (complex cases)
Data Portability30 days+60 days (large datasets)

Our Commitment: We aim to respond to most requests within 5-10 business days. If we need more time, we'll let you know why and when you can expect a full response.

Exercise Your Rights

Ready to exercise your GDPR rights? Here's how to get started:

Email Us

Send your request to:

johnmessoa@gmail.com

Include "GDPR Request" in the subject line

What to Include

  • • Your full name and email address
  • • Specific right you want to exercise
  • • Any relevant details or context
  • • Proof of identity (if requested)

Free of Charge: Exercising your GDPR rights is completely free. We may only charge a reasonable fee for manifestly unfounded or excessive requests.