Skip to main content

GDPR Compliance

Last updated: February 1, 2026

Our Commitment to GDPR

AntiProxies is committed to GDPR compliance and helping our customers meet their data protection obligations. This page explains how we handle personal data and the measures we take to ensure compliance.

Our Role Under GDPR

As a Data Controller

For our own business operations (e.g., managing customer accounts, billing, support), AntiProxies acts as a data controller. We determine the purposes and means of processing your personal data.

Self-Hosted Databases

When you use our self-hosted databases, all data processing happens on your infrastructure. AntiProxies does not receive, process, or store any of your users' personal data (IP addresses, email addresses, etc.). You are the sole data controller and processor for lookups against the databases.

Data Processing Principles

We adhere to GDPR's data processing principles:

  • Lawfulness, Fairness, Transparency: We process data lawfully and transparently.
  • Purpose Limitation: We process data only for specified, legitimate purposes.
  • Data Minimization: We collect only the data necessary for our Services.
  • Accuracy: We take steps to ensure data accuracy.
  • Storage Limitation: We retain data only as long as necessary.
  • Integrity and Confidentiality: We implement appropriate security measures.

Legal Bases for Processing

We process personal data based on:

  • Contract: To provide Services you've subscribed to
  • Legitimate Interest: To improve and secure our Services
  • Legal Obligation: To comply with applicable laws
  • Consent: Where specifically obtained (e.g., marketing communications)

Your Rights Under GDPR

As a data subject, you have the following rights:

Right of Access

You can request a copy of the personal data we hold about you.

Right to Rectification

You can request correction of inaccurate personal data.

Right to Erasure

You can request deletion of your personal data in certain circumstances.

Right to Restrict Processing

You can request limitation of processing in certain circumstances.

Right to Data Portability

You can request your data in a structured, machine-readable format.

Right to Object

You can object to processing based on legitimate interests.

To exercise these rights, contact us at privacy@antiproxies.com. We respond to requests within 30 days.

International Data Transfers

When we transfer personal data outside the European Economic Area (EEA), we ensure adequate protection through:

  • EU Standard Contractual Clauses (SCCs)
  • Transfers to countries with adequacy decisions
  • Other legally approved mechanisms

Data Processing Agreement

We offer a Data Processing Agreement (DPA) to customers who need it for GDPR compliance. The DPA outlines our obligations as a data processor.

View our Data Processing Agreement

Security Measures

We implement appropriate technical and organizational measures:

  • Encryption of data in transit (TLS 1.3) and at rest (AES-256)
  • Access controls and authentication
  • Regular security assessments and penetration testing
  • Employee training on data protection
  • Incident response procedures

Sub-processors

We use carefully selected sub-processors to deliver our Services. A list of current sub-processors is available upon request. We notify customers before adding new sub-processors.

Data Breach Notification

In the event of a personal data breach, we will notify affected customers without undue delay (within 72 hours where feasible) and provide information necessary for you to fulfill your notification obligations.

Contact Our DPO

For GDPR-related inquiries, contact our Data Protection Officer:

Supervisory Authority

You have the right to lodge a complaint with a supervisory authority if you believe your rights have been violated.