1. Our Commitment to GDPR
AI Humanizer API is committed to full compliance with the General Data Protection Regulation (GDPR). We have implemented comprehensive data protection measures to ensure that the personal data of individuals in the European Economic Area (EEA) is processed lawfully, fairly, and transparently.
2. Data Controller Information
AI Humanizer API acts as the data controller for personal data collected through our website and as a data processor for content submitted through our API. For GDPR inquiries, contact our Data Protection Officer at dpo@aihumanizerapi.com.
3. Legal Basis for Processing
We process personal data under the following legal bases: Contract Performance — processing necessary to provide our API services as agreed in our Terms of Service. Legitimate Interests — processing for fraud prevention, security, service improvement, and analytics. Consent — processing for marketing communications and non-essential cookies. Legal Obligation — processing required to comply with applicable laws.
4. Your Rights Under GDPR
As an EEA data subject, you have the following rights: Right of Access — request a copy of your personal data. Right to Rectification — correct inaccurate personal data. Right to Erasure — request deletion of your personal data (“right to be forgotten”). Right to Restrict Processing — limit how we use your data. Right to Data Portability — receive your data in a portable format. Right to Object — object to processing based on legitimate interests. Right to Withdraw Consent — withdraw consent at any time for consent-based processing. To exercise any of these rights, email us at privacy@aihumanizerapi.com. We will respond within 30 days.
5. Data Processing and Content Handling
Content submitted to our API is processed in real-time memory and is not persisted to disk after your request completes. We do not retain, log, or use your submitted content for model training or any other purpose beyond fulfilling your API request. This approach minimizes data exposure and aligns with GDPR’s data minimization principle.
6. International Data Transfers
We may transfer personal data outside the EEA to our infrastructure providers. Such transfers are protected by Standard Contractual Clauses (SCCs) approved by the European Commission and supplementary measures as required by the Schrems II decision. Our primary processing occurs within the EU where possible.
7. Data Processing Agreements
Enterprise customers who require a Data Processing Agreement (DPA) can request one by contacting legal@aihumanizerapi.com. Our DPA covers the scope and purpose of processing, security measures implemented, sub-processor management, breach notification procedures, and data subject rights assistance.
8. Data Breach Notification
In the event of a personal data breach, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, as required by GDPR Article 33. If the breach is likely to result in a high risk to your rights and freedoms, we will also notify affected individuals without undue delay.
9. Supervisory Authority
You have the right to lodge a complaint with a supervisory authority in the EU member state of your habitual residence, place of work, or place of the alleged infringement. For more information or to exercise your GDPR rights, contact us at privacy@aihumanizerapi.com or visit our Contact page.