Skip to main content
If you sell or offer products or services to customers based in the EU, you must adhere to the General Data Protection Regulation (GDPR). Moreover, if your business operates in California, your services need to be compliant with the California Consumer Privacy Act (CCPA).
Here are key resources regarding security and data protection:

Voucherify commitment to data privacy and GDPR compliance

The General Data Protection Regulation (GDPR) is a European privacy law approved by the European Commission and it aims at strengthening, modernizing EU data protection law, and enhancing individual rights and freedoms, consistent with the European understanding of privacy as a fundamental human right. Voucherify is a GDPR-compliant data processor. To find the comprehensive security and data protection measures implemented at Voucherify, visit the legal section. Read the overview of GDPR requirements met at Voucherify.
Voucherify offers a Data Processing Addendum (DPA) for customers who collect data from individuals in the EU. The DPA provides contractual terms that meet GDPR requirements and reflect Voucherify’s data privacy and security commitments.
Voucherify uses trusted vendors and maintains signed data processing agreements with all partners that subprocess sensitive data. This vendor management approach ensures that customer data is stored and processed in secure, compliant environments.
The Voucherify Data Protection Officer (DPO) ensures all employees receive training on handling sensitive data and avoiding social engineering attacks. Access to the Voucherify platform is controlled by a managed and audited security policy.
Voucherify maintains updated Terms of Service and Privacy policy to remain fully compliant with GDPR. These documents describe what personal data Voucherify collects, the purpose of processing, and how long the data is stored.
Voucherify uses a Data Protection Impact Assessment (DPIA) process to identify and minimize data protection risks. Every change to the software or organizational procedures triggers a privacy review to mitigate potential consequences for clients.
Voucherify includes features to support data regulations regarding the right to portability, the right to be forgotten, and the right to rectification. You can manage these requirements through the dashboard or API.

Data Protection Officer

Voucherify works with clients to answer any questions and address any concerns regarding how their data is protected in compliance with the GDPR standards. If you have any questions, contact Voucherify compliance.

How to execute GDPR procedures in Voucherify?

Learn more about standard procedures in Voucherify related to GDPR regulations.
Submit a ticket through the support page. The Voucherify team will remove your account and all underlying data from the data center and third-party providers.
To remove a team member permanently, you can use one of the following methods:
  • Voucherify dashboard: The account owner can remove user data directly through the dashboard:
    1

    Locate the user

    Log in to the dashboard and go to Team settings > Team. Find the specific member you want to remove.
    2

    Delete the user

    Open the three-dot menu , select Delete, and confirm the action.
    3

    Permanent removal

    Once the user is deleted, click Remove permanently in the three-dot menu and confirm the action.
  • Contact support: The account owner can remove a team member by reaching out to Voucherify support.
The member data is removed permanently.
You can update or remove customer data using these options:
  • Dashboard Edit: An account admin can go to Customers, locate the specific customer profile, and edit the information.
Read Manage customers to learn more about customer management.
  • Contact support: The admin or the customer can contact Voucherify support directly, for example when you no longer have access to Voucherify dashboard. Customers must provide the necessary information to identify their organization and records. Voucherify will notify the organization administrator if a customer requests a manual update.
You can export your customer data as CSV or JSON files through two primary methods:
To delete customer data permanently, use one of these three methods:
  • Dashboard settings: Go to Team settings > Delete people data to delete data permanently.
    Read more about Team settings and deleting people data.
  • API endpoint: Use the Delete customer permanently API endpoint for automated permanent deletion.
  • Manual request: The account admin or customer can contact Voucherify support, for example when you no longer have access to Voucherify dashboard. If a customer makes this request, they must provide identification details. The organization administrator will be notified.
All data management actions described above are compliant with the GDPR.

Email subscriptions from Voucherify

You can manage communication you receive from Voucherify in My Profile > Email subscriptions.

California Consumer Privacy Act (CCPA)

Voucherify is fully compliant with California Consumer Privacy Act (CCPA). As a result, Voucherify:
  • Informs customers that their personal data is being collected by the Service Provider.
  • Informs customers whether their personal data is sold or disclosed and to whom.
  • Allows customers to reject the sale of their personal data.
  • Allows customers to access their personal data.
  • Allows customers to request deletion of any personal information about them.
  • Does not discriminate against customers who exercised their privacy rights.
If you have any questions regarding CCPA and Voucherify, contact Voucherify support.
Last modified on May 15, 2026