GDPR Compliance

Last updated: March 04, 2025

Introduction to GDPR

The General Data Protection Regulation (GDPR) is a major privacy law that outlines how organizations collect, store, and manage personal data within the European Union (EU) and the European Economic Area (EEA). It also governs how personal data is transferred beyond these regions to ensure consistent protection worldwide.

At BankStmtConverter, we take data privacy seriously. We are committed to protecting your personal information, being transparent about our data practices, and ensuring full compliance with GDPR. Our mission is to provide the highest level of security and privacy for all our users.

BankStmtConverter’s Commitment to GDPR Compliance

1. Lawfulness, Fairness, and Transparency

  • We process personal data lawfully, fairly, and transparently.
  • Our Privacy Policy and Terms of Service explain how we collect,use,and store personal data.
  • Users are informed of our data practices at every point of data collection.

2. Purpose Limitation

  • We collect personal data only for specific, explicit, and legitimate purposes.
  • Data is not processed in any way incompatible with these stated purposes.
  • For file conversion, data is used solely to provide the requested service.

3. Data Minimization

  • We collect only the information necessary to deliver our services.
  • Users can access and use core features with minimal personal data.
  • We do not ask for unnecessary information.

4. Accuracy

  • We ensure personal data remains accurate and up to date.
  • Users can review and update their account details at any time.
  • Inaccurate data is corrected or deleted promptly.

5. Storage Limitation

File Retention Policy

Free Users:converted files are stored temporarily and automatically removed after 30 minutes.

Paid Users: Files are retained based on the selected plan — Basic: 5 days, Starter: 30 days, Pro: 90 days, and Business: 365 days — for both monthly and yearly subscriptions, and remain available until deleted manually or upon account termination.

When an account is deleted, all associated files are permanently erased from our system.

6. Integrity and Confidentiality (Security)

  • We employ strong technical and organizational security measures, including encryption, secure storage, and restricted access.
  • Files are stored on AWS S3, ensuring encryption both at rest and in transit.
  • The data is encrypted, and no one can access it.
  • We regularly perform security assessments and system updates to maintain data integrity.

Your Rights Under GDPR

As an EU data subject, you have the following rights:

Access to Your Data
You can request a copy of the personal information we hold about you at any time.

Correction of Your Data
You can ask us to correct or update any personal information that is inaccurate or incomplete.

Deletion of Your Data
You can request the removal of your personal data in certain situations.

Limiting the Use of Your Data
You can ask us to restrict how we use your personal data in specific cases.

Transferring Your Data
You can request to receive your personal data or have it transferred to another organization, where technically possible.

Objecting to Data Use
You can object to the use or processing of your personal data in certain situations.

How to Manage Your Privacy Rights

To exercise your GDPR rights, please contact our Data Protection Officer (DPO) at:

Email: support@bankstmtconverter.com

We aim to respond to all valid requests within one month. In complex cases or where multiple requests are made, additional time may be required. You will be notified if any delay occurs.

Legal Reasons for Processing Your Data

We process personal data based on the following legal grounds:

  • Performance of a Contract: To deliver the file conversion services you request.
  • Legitimate Interests: To improve our services without overriding your rights.
  • Consent: For specific activities where explicit consent is given.
  • Legal Obligation:When required to comply with applicable laws or regulations.

How We Handle International Data Transfers

All data is mainly stored within the EEA. If data needs to be transferred outside the EEA, we use appropriate safeguards, such as working with service providers certified under the EU–US Data Privacy Framework or Standard Contractual Clauses (SCCs), and applying strong technical and organizational security measures to ensure a high level of protection.

Data Privacy Officer (DPO)

Our Data Protection Officer oversees compliance and manages GDPR-related inquiries. For questions or concerns regarding your data, contact:

Email: support@bankstmtconverter.com

Your Right to File a Complaint

If you believe your personal data has not been handled in accordance with GDPR, you have the right to file a complaint with your local data protection authority. However, we encourage you to contact us first so we can promptly address and resolve your concerns.

Updates to Our GDPR Policy

We may update this notice periodically to reflect changes in our data protection practices. Any updates will be posted on this page with an updated “Last Updated” date. We encourage you to check this page regularly to stay informed about how we protect your privacy and personal data.

Bankstmt converter
Capterra reviews GetApp reviews

Guide&Docs

CodePixel Solutions Private Limited © 2025 -

All rights reserved

Hosted in EU

Terms Privacy Policy Security