🔒How We Protect Your Data

GDPR Compliance

Learn how QuickPoll handles your data and complies with GDPR regulations to ensure your information is safe and secure.

Our Commitment to Data Protection

At QuickPoll, we take data protection and privacy seriously. We are fully committed to complying with the General Data Protection Regulation (GDPR) and other applicable data protection laws. This page outlines our approach to data protection and provides information about how we process and store your personal data.

Data Storage and Security

European Data Storage: All poll data and personal information collected through our platform are stored exclusively in the European Union on Amazon Web Services (AWS) infrastructure. Our primary data centers are located in Frankfurt, Germany and Dublin, Ireland.

Data Security Measures: We implement industry-standard security measures to protect your data, including:

  • End-to-end encryption for all data in transit using TLS 1.3
  • Data at rest encryption using AES-256
  • Regular security audits and penetration testing
  • Strict access controls and authentication policies
  • Automated backup systems with point-in-time recovery
  • DDoS protection and network monitoring

Personal Data We Process

We collect and process the following types of personal data:

  • Account Information: Name, email address, password (encrypted), company/organization details
  • Usage Data: Information about how you use our service, including poll creation, responses, and analytics data
  • Technical Data: IP address, browser type, device information, cookies, and similar tracking technologies
  • Communication Data: Emails, support requests, and other communications you have with us

Legal Basis for Processing

We process your personal data on the following legal bases:

  • Contract Performance: Processing necessary to provide our services to you
  • Legitimate Interests: For our legitimate business interests, such as improving our service and security
  • Consent: Where you have given clear consent for specific processing activities
  • Legal Obligation: Where we need to comply with a legal obligation

Your Data Rights

Under the GDPR, you have several rights regarding your personal data:

  • Right to Access: You can request a copy of the personal data we hold about you
  • Right to Rectification: You can ask us to correct any inaccurate or incomplete data
  • Right to Erasure: You can request that we delete your personal data
  • Right to Restrict Processing: You can ask us to temporarily or permanently stop processing your data
  • Right to Data Portability: You can request a copy of your data in a machine-readable format
  • Right to Object: You can object to our processing of your personal data
  • Rights Related to Automated Decision Making: You have rights related to automated decision making and profiling

To exercise any of these rights, please contact us.

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

For account information, we retain your data for as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it for legal reasons.

For poll data, retention periods depend on your subscription plan and individual settings. You can delete poll data at any time through your account dashboard.

Data Processing Agreements

If you are a business customer using our services to process the personal data of others (such as when conducting polls with your customers or employees), we act as a data processor. In this case, we offer a Data Processing Agreement (DPA) that complies with GDPR requirements.

Cookies and Tracking

Our website uses cookies and similar tracking technologies. For detailed information about the cookies we use and how we use them, please see our Cookie Policy.

International Data Transfers

While we store all data in the EU, we may use third-party service providers that operate globally. In such cases, we ensure that appropriate safeguards are in place to protect your data, such as Standard Contractual Clauses approved by the European Commission.

Data Protection Officer

We have appointed a Data Protection Officer (DPO) who is responsible for overseeing questions in relation to this privacy notice and our GDPR compliance. If you have any questions about this notice or how we handle your personal information, please contact us.

Complaints

If you are not satisfied with our response to any request you make or if you believe our processing of your personal data is not in accordance with data protection law, you have the right to lodge a complaint with a supervisory authority.

Updates to our GDPR Policy

We may update this GDPR information from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any material changes through our website or direct communication.

Last updated: August 2025