RepeatSender is committed to maintaining the highest standards of data protection and privacy. We comply with:

• GDPR (General Data Protection Regulation)
• CCPA (California Consumer Privacy Act)
• PIPEDA (Personal Information Protection and Electronic Documents Act)
• Australian Privacy Principles (APP)

Our compliance program ensures that all data is:

• Processed lawfully, fairly, and transparently
• Collected for specified, explicit, and legitimate purposes
• Adequate, relevant, and limited to what is necessary
• Accurate and kept up to date
• Stored securely and protected against unauthorized access

We maintain strict security standards and certifications:

• ISO 27001 certified
• SOC 2 Type II compliant
• PCI DSS Level 1 certified
• HIPAA compliant infrastructure

Our security measures include:

• End-to-end encryption for all data in transit and at rest
• Regular security audits and penetration testing
• Multi-factor authentication
• 24/7 security monitoring

We ensure compliance with major email marketing regulations:

• CAN-SPAM Act
• CASL (Canadian Anti-Spam Legislation)
• EU ePrivacy Directive
• Australian Spam Act

Our platform enforces:

• Mandatory unsubscribe links in all emails
• Clear sender identification
• Physical address requirements
• Proper handling of opt-outs

We provide comprehensive Data Processing Agreements (DPAs) that cover:

• Roles and responsibilities of data controller and processor
• Data transfer mechanisms
• Sub-processor management
• Data breach notification procedures
• Data retention and deletion policies