Legal
GDPR Compliance
Last updated: March 30, 2026
GlideDM is committed to protecting the privacy of individuals in the European Economic Area (EEA), the United Kingdom (UK), and Switzerland in accordance with the General Data Protection Regulation (GDPR).
Data Controller
GlideDM acts as a data processor on behalf of our customers (the data controllers) for Instagram contact data. For account data, GlideDM acts as the data controller.
Data Processing Agreement
Enterprise and Business customers can request a Data Processing Agreement (DPA) by contacting legal@glidedm.com. Our DPA includes Standard Contractual Clauses (SCCs) for international data transfers.
Your Rights Under GDPR
If you are in the EEA/UK, you have the following rights:
- Right of Access (Art. 15) — Request a copy of all personal data we hold about you
- Right to Rectification (Art. 16) — Correct inaccurate or incomplete data
- Right to Erasure (Art. 17) — Request deletion of your personal data
- Right to Restriction (Art. 18) — Limit processing of your data
- Right to Data Portability (Art. 20) — Receive your data in a machine-readable format
- Right to Object (Art. 21) — Object to processing based on legitimate interest
- Right to Withdraw Consent (Art. 7) — Revoke consent at any time without affecting prior processing
How to Exercise Your Rights
Send your request to privacy@glidedm.com with:
- Your full name and email associated with your GlideDM account
- Which right you wish to exercise
- Any additional details to help us locate your data
We will respond within 30 days. Complex requests may take up to 60 days with notice.
Data Exports
You can export your data at any time from Settings → Account → Export Data in the GlideDM dashboard. The export includes your contacts, automations, message history, and account settings in JSON format.
Data Deletion
You can delete your account from Settings → Account → Delete Account. This initiates:
- Immediate deactivation of all automations
- Disconnection from Instagram API
- 30-day grace period (you can reactivate during this time)
- Permanent deletion of all data after 30 days
Sub-Processors
| Processor | Purpose | Location |
|---|---|---|
| Meta Platforms, Inc. | Instagram API (messaging) | United States |
| Vercel Inc. | Application hosting | United States |
| Stripe, Inc. | Payment processing | United States |
| Google LLC | Authentication (OAuth) | United States |
Supervisory Authority
If you believe your data protection rights have been violated, you have the right to lodge a complaint with your local Data Protection Authority (DPA).
Contact
Data Protection Officer: privacy@glidedm.com