Orthy Back to Home

GDPR Compliance

Last updated: December 16, 2025

Commitment to GDPR

The General Data Protection Regulation (GDPR) is a regulation in EU law on data protection and privacy in the European Union and the European Economic Area. It also addresses the transfer of personal data outside the EU and EEA areas.

Orthy is committed to compliance with the GDPR. We have examined the GDPR requirements and have enhanced our internal processes and systems to ensure we meet these obligations.

Your Rights Under GDPR

Orthy undertakes to respect the confidentiality of your Personal Data and to guarantee you can exercise your rights.

You have the right under this Privacy Policy, and by law if you are within the EU, to:

  • Request access to your Personal Data. The right to access, update or delete the information we have on you.
  • Request correction of the Personal Data that we hold about you. You have the right to have any incomplete or inaccurate information we hold about you corrected.
  • Object to processing of your Personal Data. This right exists where we are relying on a legitimate interest as the legal basis for our processing.
  • Request erasure of your Personal Data. You have the right to ask us to delete or remove Personal Data when there is no good reason for us to continue processing it.
  • Request the transfer of your Personal Data. We will provide to you, or to a third-party you have chosen, your Personal Data in a structured, commonly used, machine-readable format.
  • Withdraw your consent. You have the right to withdraw your consent on using your Personal Data.

Data Processing Agreement (DPA)

If you are a customer of Orthy and processing personal data of EU citizens, you may need a Data Processing Agreement. Please consult your legal counsel. We provide a prepared DPA for our enterprise customers upon request.

Contact Our Data Protection Officer

If you have any questions about this GDPR policy, please contact our Data Protection Officer at dpo@orthy.io.