GDPR Alignment

Roles and responsibilities

For website and marketing, Twist Moon Flux is the data controller. For customer use of our platform, we act as a data processor and process personal data only on documented instructions from the controller.

Data subject rights

We support requests to access, rectify, erase, restrict, or port personal data, and to object to processing. Requests can be submitted via [email protected]. We verify identity before fulfilling requests.

Data Processing Addendum (DPA)

We offer a DPA that includes SCCs where applicable. Contact us to obtain and execute the DPA.

Subprocessors

We maintain a list of subprocessors used to deliver our services. We require appropriate safeguards and security commitments from each provider. Contact us for the current list.

International transfers

Where data is transferred outside the EEA/UK, we rely on SCCs and implement additional safeguards such as encryption and access controls.

Questions? Email [email protected].