EU Data Protection (GDPR) Compliance

Last updated: February 12, 2026

For users within the European Economic Area (EEA), OrgCharts complies with the General Data Protection Regulation (GDPR). We act as a Data Processor for the information uploaded by organizations and a Data Controller for our registered users' account data.

1. Legal Basis for Processing

Our legal basis for collecting and using the personal data described depends on the data concerned and the context in which we collect it. We typically process data where it is necessary for the performance of a contract with you, or where we have a legitimate interest that is not overridden by your data protection interests.

2. Your Data Protection Rights

Under GDPR, you have the following rights: The right to access your data, the right to rectification, the right to erasure ('right to be forgotten'), the right to restrict processing, the right to data portability, and the right to object. You can exercise these rights by contacting us.

3. International Data Transfers

Your information may be transferred to, and maintained on, computers located outside of your state or country where the data protection laws may differ. We ensure appropriate safeguards are in place for such transfers.