Privacy Requests
Exercise your data protection rights under GDPR (EEA/UK).
Your rights
If you are located in the European Economic Area (EEA) or United Kingdom (UK), you have the following rights regarding your personal data:
- Access the personal data we hold about you
- Correct inaccurate or incomplete data
- Request deletion of your personal data
- Restrict processing of your data
- Object to processing based on legitimate interests
- Request data portability (for data provided under consent or contract)
How to make a request
Email us from your registered address
Send your request to marcus@getsortio.com from the email address linked to your Sortio account.
What to expect
Identity verification
We may request additional information to verify your identity before processing your request.
Response timeframe
We will respond within one month of receiving your request. In complex cases, this may be extended by up to two additional months, and we will notify you of any such extension.
Data deletion propagation
Where applicable, deletions are propagated to our processors as outlined in our Sub-processors page.
Data portability
For data portability requests, we will provide your data in a commonly used, machine-readable format (typically JSON). This applies to data you provided to us under consent or as part of our contract with you.
Withdrawing consent
Where we process your data based on consent (such as optional diagnostics or marketing communications), you can withdraw your consent at any time by contacting us at marcus@getsortio.com or adjusting your settings in the app under Settings ▸ Privacy.
Lodge a complaint
If you believe we have not adequately addressed your privacy concerns, you have the right to lodge a complaint with your local data protection supervisory authority in the EEA or the Information Commissioner's Office (ICO) in the UK.