EU/EEA & Swiss Privacy Notice

Effective: April 1, 2026 · Applies to: EU, EEA & Swiss residents · DPO Contact: privacy@guardarra.com

This Notice supplements our Privacy Policy and is provided pursuant to the EU General Data Protection Regulation (GDPR) (Regulation 2016/679).

1. Data Controller

GuardArra, LLC is the data controller for personal data processed through the GuardArra platform. For EU/EEA customers, we process data as both a controller (for account data) and a processor (for operational data your company submits). Contact: privacy@guardarra.com.

2. Legal Bases for Processing

Contract performance: Processing necessary to provide the GuardArra service you subscribed to
Legitimate interests: Security, fraud prevention, platform improvement, and analytics
Legal obligation: Compliance with applicable laws
Consent: For GPS location tracking and non-essential communications (withdrawable at any time)

3. International Data Transfers

GuardArra is based in the United States. When we transfer personal data from the EU/EEA to the US, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission. For customers who require it, we offer a signed Data Processing Agreement incorporating SCCs. Contact legal@guardarra.com.

4. Your GDPR Rights

Access (Art. 15): Request a copy of your personal data
Rectification (Art. 16): Correct inaccurate or incomplete data
Erasure (Art. 17): Request deletion (“right to be forgotten”)
Restriction (Art. 18): Restrict processing in certain circumstances
Portability (Art. 20): Receive your data in a machine-readable format
Object (Art. 21): Object to processing based on legitimate interests
Withdraw consent: Where processing is based on consent

5. Retention

We retain personal data for the duration of your subscription plus 30 days post-cancellation. Certain data may be retained longer for legal compliance.

6. Right to Lodge a Complaint

You have the right to lodge a complaint with your national supervisory authority. A list of EU data protection authorities is available at edpb.europa.eu.

7. How to Exercise Your Rights

Submit requests to privacy@guardarra.com. We respond within 30 days (extendable by 60 days for complex requests with notice).

8. Data Processing Agreement

EU/EEA customers acting as data controllers may request a signed DPA. See EU Data Processing Agreement.

← All Policies