Smartify ExpenseSign in

GDPR Compliance

Smartify Expense supports customers subject to the EU General Data Protection Regulation (GDPR) and similar regimes such as the UK GDPR and UAE PDPL.

Roles

For customer-uploaded data, our customers are the data controller and Smartify is the data processor. We process personal data only on documented instructions.

Data subject rights

  • Access, rectification, erasure, restriction, portability, and objection.
  • Admins can fulfil most rights from the admin console. We will assist with the rest within one calendar month.

International transfers

Where data leaves the EEA/UK we rely on the EU Standard Contractual Clauses (2021) and the UK Addendum, supplemented by technical and organisational measures.

Sub-processors

A current list is provided on request and at least 30 days' notice is given before adding a new sub-processor that handles personal data.

Data Protection Officer

Reach our DPO at dpo@smartify.sbs.