Security & GDPR
Security-first data workflow
Last updated: 14 June 2026
Public form
The public form is for project context and optional small anonymized samples only. Samples should be limited to the minimum needed to understand structure, columns, errors and import blockers.
Private upload workspace
Complete customer files are exchanged only through an agreed private project workspace after scope, confidentiality, transfer method and processing terms are in place. The workspace is limited to the project and closed after delivery according to the agreed retention period.
Contract before production data
When ImportReady Data processes personal data on behalf of a customer, the work is governed by a Data Processing Agreement under GDPR Article 28, with documented customer instructions.
Access and deletion
Project files are handled with limited access, confidentiality, defined retention, secure deletion or return, and no secondary use. Customer data is not used for model training, resale, marketing lists or unrelated projects.
Analytics
The site is designed to work without Google Analytics. If visitor analytics are enabled, the preferred setup is Matomo configured for privacy-focused, cookieless analytics with IP anonymization and no advertising profiling.
Important note
This page describes the intended security workflow. Customer-specific contracts, Data Processing Agreements and security annexes control the actual project terms.