Skip to main content

Terms of Service

Last updated: February 2026

1. Acceptance of Terms

By accessing or using GDPR.Direct ("the Service"), you agree to be bound by these Terms of Service. If you do not agree to these terms, you must not use the Service. These terms apply to all visitors, users, and others who access the Service, whether through the website at gdpr.direct or the application at app.gdpr.direct.

2. Description of Service

GDPR.Direct is a compliance platform that helps businesses generate privacy policies, cookie policies, and other legal documents required under the General Data Protection Regulation (GDPR) and related data protection laws. The Service uses artificial intelligence to assist in document generation and customisation.

The documents generated by the Service are intended as a starting point for compliance and do not constitute legal advice. You are solely responsible for ensuring that any documents you use meet the specific requirements of your business and applicable regulations. We strongly recommend having generated documents reviewed by a qualified legal professional.

3. Account Registration and Security

To access certain features of the Service, you may be required to create an account using a valid email address. You are responsible for maintaining the confidentiality of your account credentials and for all activities that occur under your account. You must notify us immediately of any unauthorised use of your account.

4. Acceptable Use

You agree to use the Service only for lawful purposes and in accordance with these Terms. You must not:

  • Use the Service in any way that violates applicable laws or regulations
  • Attempt to gain unauthorised access to the Service, other accounts, or computer systems
  • Use automated tools, bots, or scrapers to access the Service without prior written consent
  • Interfere with or disrupt the integrity or performance of the Service
  • Use the Service to generate documents for fraudulent or deceptive purposes
  • Reproduce, distribute, or create derivative works of the Service itself

5. Payment and Billing

GDPR.Direct offers both free and paid tiers. Paid subscriptions are billed on a recurring monthly basis. All payments are processed securely through Stripe. Prices are displayed on the platform and are subject to change with reasonable notice.

You may cancel your subscription at any time. Cancellation takes effect at the end of the current billing period, and no refunds will be issued for partial periods. If payment fails, we may suspend access to paid features until the outstanding amount is settled.

6. Intellectual Property

The Service, including its design, source code, features, and underlying technology, is the property of GDPR.Direct and is protected by intellectual property laws. You may not copy, modify, reverse-engineer, or create derivative works based on the Service.

Documents generated through the Service are provided for your use. You retain the right to use and modify generated documents for your own business purposes. However, the templates, algorithms, and AI models used to generate those documents remain the exclusive property of the Service.

7. Third-Party Services

The Service may integrate with or link to third-party services, including payment processors and authentication providers. Your use of such third-party services is governed by their respective terms and privacy policies. GDPR.Direct is not responsible for the availability, accuracy, or practices of any third-party services.

8. Disclaimers

The Service is provided on an "as is" and "as available" basis without warranties of any kind, whether express or implied. We do not warrant that the Service will be uninterrupted, error-free, or free of harmful components.

GDPR.Direct does not provide legal advice. The documents and information provided through the Service are for informational purposes only and should not be relied upon as a substitute for professional legal counsel. Compliance with data protection laws depends on many factors specific to your organisation, and we make no guarantees regarding the legal sufficiency of any generated documents.

9. Limitation of Liability

To the maximum extent permitted by applicable law, GDPR.Direct and its operators shall not be liable for any indirect, incidental, special, consequential, or punitive damages, including but not limited to loss of profits, data, or business opportunities, arising from your use of or inability to use the Service.

Our total aggregate liability for any claims arising from or relating to these Terms or the Service shall not exceed the total amount you paid to us in the twelve (12) months preceding the claim, or one hundred euros (€100), whichever is greater.

10. Indemnification

You agree to indemnify and hold harmless GDPR.Direct, its operators, affiliates, and their respective officers, directors, and employees from any claims, damages, losses, or expenses (including reasonable legal fees) arising out of your use of the Service, your violation of these Terms, or your violation of any third-party rights.

11. Termination

We may suspend or terminate your access to the Service at any time, with or without cause, and with or without notice. Upon termination, your right to use the Service ceases immediately. You may request a copy of your data before account deletion by contacting us.

12. Changes to These Terms

We reserve the right to modify these Terms at any time. Material changes will be communicated through the Service or via email to registered users. Your continued use of the Service after such changes constitutes acceptance of the updated Terms.

13. Governing Law and Dispute Resolution

These Terms are governed by and construed in accordance with the laws of Spain. Any disputes arising from or relating to these Terms or the Service shall be submitted to the exclusive jurisdiction of the courts of Bilbao, Biscay, Spain.

14. General Provisions

If any provision of these Terms is found to be unenforceable, the remaining provisions shall continue in full force and effect. Our failure to enforce any right or provision shall not constitute a waiver of that right or provision. These Terms constitute the entire agreement between you and GDPR.Direct regarding the use of the Service.

GDPR.Direct is a product operated by AI Labs Group SL, a company registered in Spain with Tax ID B95988127 and registered address at Gran Via 1, Bilbao, 48001, Biscay, Spain.

15. Contact

If you have questions about these Terms, please contact us at legal@gdpr.direct.