GDPR Information

Governing Entity:
The General Data Protection Regulation (GDPR) is a comprehensive data protection law that applies to all organizations processing the personal data of individuals in the European Union (EU) and European Economic Area (EEA). Outscraper is committed to complying with the GDPR in its operations. This page outlines our approach to data protection.

1. Our Roles Under the GDPR

The GDPR distinguishes between two main roles: “Data Controller” and “Data Processor.” İletişim acts in both capacities depending on the context .

  • Outscraper as a Data Controller When we collect and use personal data for our own business purposes—such as managing your user account, processing payments, and providing customer support—Outscraper acts as a Data Controller. We process this data based on our legitimate interest in running our business, fulfilling our contractual obligations to you, and/or with your consent where required .

  • Outscraper as a Data Processor When you use our services to scrape, collect, or process data that contains personal information, you are the Data Controller for that data. In this scenario, Outscraper acts as a Data Processor, acting on your instructions. It is your responsibility to ensure you have a lawful basis (such as consent or legitimate interest) for collecting and processing that data .

2. Lawful Basis for Processing (When Outscraper is a Controller)

We process personal data as a Controller based on the following lawful grounds under GDPR Article 6 :

  • Contract: To fulfill our service agreement with you.

  • Legitimate Interest: For activities essential to running our business, such as service improvement and security, provided these interests are not overridden by your rights.

  • Consent: For specific purposes where we have explicitly asked for and you have given your permission.

3. Data Subject Rights

Individuals located in the EU/EEA have rights regarding their personal data. When Outscraper acts as the Controller, you may exercise the following rights by contacting us at legal@outscraper.com:

  • Right of Access: To know what personal data we hold about you.

  • Right to Rectification: To correct inaccurate data.

  • Right to Erasure (“Right to be Forgotten”): To have your data deleted.

  • Right to Restriction of Processing: To temporarily or permanently stop the processing of your data.

  • Right to Data Portability: To receive your data in a structured, machine-readable format.

  • Right to Object: To object to certain types of processing.

We will respond to all legitimate requests within one month.

4. Data Security and Transfers

We implement appropriate technical and organizational measures to protect the personal data we process . Outscraper is based outside the EU. When international transfers of personal data occur, we ensure they are protected.

5. Your Responsibilities as a Customer (When Using Our Services)

When you use Outscraper to process data, you are likely acting as a Data Controller. You are responsible for:

  • Ensuring you have a lawful basis (e.g., consent, legitimate interest) for collecting and processing any personal data .

  • Respecting the data minimization principle by only collecting data necessary for your specified purpose .

  • Informing individuals that their data is being collected, if legally required .

  • Honoring Data Subject Access Requests (DSARs) from individuals related to the data you have collected .

6. Contact Us

For any questions regarding your personal data or this GDPR information, please contact us at: legal@outscraper.com.