EU AI Act Compliant

GDPR Compliance

Last updated: March 31, 2026

Our commitment

AIGeneratedIt is fully compliant with the EU General Data Protection Regulation (GDPR) and the EU AI Act. We process the minimum data necessary to provide our detection service, retain it for the minimum time possible (24 hours), and apply cryptographic protections throughout.

Lawful basis for processing

We process submitted content under the lawful basis of legitimate interests (Art. 6(1)(f) GDPR) — specifically, the legitimate interest of providing the AI detection service requested by the user. No special category data is intentionally collected. Content is processed for detection purposes only and deleted within 24 hours.

Your data subject rights

Right of access

Request a copy of all personal data we hold about you.

Right to rectification

Correct inaccurate personal data we hold about you.

Right to erasure

Request deletion of your personal data ('right to be forgotten').

Right to restrict processing

Ask us to limit how we use your personal data.

Right to data portability

Receive your data in a machine-readable format.

Right to object

Object to our processing of your data at any time.

To exercise any right, email privacy@aigeneratedit.com. We respond within 30 days.

Data Protection Officer

Our Data Protection Officer can be reached at dpo@aigeneratedit.com. You also have the right to lodge a complaint with your national data protection authority.

Frequently Asked Questions

What are my GDPR data rights with AIGeneratedIt?

Under GDPR, you have the right to access, rectify, erase, restrict, and port your personal data, and to object to processing. Contact dpo@aigeneratedit.com to exercise any right — we respond within 30 days.

What is the lawful basis for processing my data?

AIGeneratedIt processes data under legitimate interests (Article 6(1)(f)). Processing your content to return a detection result is necessary for the service you have requested.

How do I request deletion of my data?

Email dpo@aigeneratedit.com with the subject "Erasure Request". Submitted files are already auto-deleted within 24 hours. A formal request is only needed if you have provided personal information directly (e.g., via a contact form or API key application).

Does AIGeneratedIt transfer data outside the EU?

Some detection APIs may process data outside the EEA. Where this occurs, transfers are covered by Standard Contractual Clauses (SCCs) under Article 46 of GDPR.

Who is the Data Protection Officer?

Our DPO is reachable at dpo@aigeneratedit.com. You also have the right to lodge a complaint with your national data protection authority (e.g. ICO, CNIL, or BfDI).