Legal

GDPR Compliance

Site Structure is committed to meeting our obligations under the General Data Protection Regulation (GDPR).

Who is the data controller?

Site Structure is the data controller for personal data collected through the Service. For questions or to exercise your rights, contact us at privacy@siloscout.io.

Lawful basis for processing

We process personal data on the following legal bases:

  • Contract performance: to deliver the Service you signed up for, including running scans and managing your subscription.
  • Legitimate interests: to improve our product, prevent fraud, and communicate product updates where you would reasonably expect this.
  • Legal obligation: to comply with tax, accounting, and regulatory requirements.
  • Consent: for optional marketing emails. You can withdraw consent at any time via the unsubscribe link.

Data transfers outside the EEA

Some of our processors (Supabase, Vercel, Railway) may store or process data in the United States. Where we transfer data outside the EEA, we rely on the EU–US Data Privacy Framework and/or standard contractual clauses approved by the European Commission to ensure adequate protection.

Data Protection Officer

We are not currently required to appoint a DPO under GDPR Article 37. For all data protection matters, contact us at privacy@siloscout.io.

Supervisory authority

If you believe we have not handled your data lawfully, you have the right to lodge a complaint with a supervisory authority. In the UK, this is the Information Commissioner's Office (ICO): ico.org.uk.

Your rights under GDPR

Right of access

Request a copy of all personal data we hold about you.

Email privacy@siloscout.io →

Right to rectification

Ask us to correct any inaccurate or incomplete data we hold.

Email privacy@siloscout.io →

Right to erasure

Request deletion of your account and all associated personal data.

Account settings or email us →

Data portability

Receive your data in a machine-readable format (JSON) to transfer to another service.

Email privacy@siloscout.io →

Response time

We will respond to all GDPR requests within 30 days. Complex requests may take up to 90 days; we will notify you if this is the case. Requests are free of charge unless manifestly unfounded or excessive.