GDPR

Updated on March 8, 2026. These policies are adapted from the Basecamp Open-Source Policies / CC BY 4.0

This page summarizes how SenseFolks applies GDPR principles when processing personal data.

Roles under GDPR

For account, billing, and operational data, Projckt acts as the data controller. For customer end-user data processed through the service, we act as a data processor under customer instructions.

Lawful bases we rely on

• Contract: to provide and operate the services you request.

• Legitimate interests: to secure, monitor, and improve the service.

• Consent: for optional communications and specific optional processing.

• Legal obligations: where retention or disclosure is required by law.

Your GDPR rights

You can request access, correction, deletion, restriction, portability, or objection where applicable. You can also lodge a complaint with your supervisory authority.

International transfers

Our primary infrastructure is in Europe. When data is processed outside the EEA/UK, we use appropriate safeguards, including contractual commitments with processors and subprocessors.

Our Data Processing Addendum is available here: GDPR DPA .

Contact for GDPR requests

For GDPR questions or rights requests, email [email protected] .