GDPR Compliance
Your data belongs to you. Deal TOP is 100% compliant with the General Data Protection Regulation (GDPR) and guarantees enterprise-grade security.
In summary: Your business data remains your exclusive property. It is hosted in Europe, encrypted end-to-end, and fully isolated from other user companies. Deal TOP never accesses it for commercial or marketing purposes.
European hosting
Your data is stored exclusively on servers located in the European Union (Frankfurt, Germany), compliant with GDPR standards.
End-to-end encryption
All communications are encrypted with HTTPS/TLS 1.3. Data at rest is encrypted with AES-256. Passwords are hashed with bcrypt.
Strict isolation
Each company has a fully isolated workspace thanks to Row Level Security technology. No company can see another's data.
Your property
You remain the sole owner of your business data. You can export, modify or delete it at any time.
Never resold
Deal TOP never resells your data to third parties. It is not used for marketing, profiling or advertising.
DPA on request
A GDPR data processing contract (Data Processing Agreement) is available free of charge on simple request to formalize our commitment.
π Who has access to your data?
No one but you. That is the fundamental principle of Deal TOP.
- Only users from your company see your data, based on the permissions you grant them (sales rep, manager, administrator).
- No other company can access your data. Isolation is technical (Row Level Security) and not based on simple trust.
- The Deal TOP team only accesses your business data upon explicit request from you (e.g., technical support). No automatic access exists.
- No third party (advertisers, partners, resellers) receives your data. It is neither sold nor shared.
π Hosting information
Deal TOP relies on recognized and certified infrastructure to guarantee the security and compliance of your data.
βοΈ Your GDPR rights
In accordance with Articles 15 to 22 of the GDPR, you have the following rights over your data. Each can be exercised free of charge and at any time.
Right of access
Obtain a complete copy of all your data stored in Deal TOP.
Right to rectification
Correct or update any inaccurate information directly from the application.
Right to erasure
Permanently delete your account and all associated data.
Right to data portability
Export all your data in a structured, reusable format (CSV, JSON).
Right to object
Object to the processing of your data for legitimate purposes.
Right to restriction of processing
Request the suspension of the processing of your data in certain cases.
π€ Our commitment as a data processor
By using Deal TOP, your company is the data controller of its data, and Deal TOP acts as a data processor within the meaning of Article 28 of the GDPR.
Our commitments:
- Process the data only on the documented instructions of the client
- Guarantee the confidentiality of persons authorized to process this data
- Implement all appropriate security measures (Article 32)
- Notify any data breach within 72 hours
- Assist the client in responding to requests from data subjects
- Delete or return all data at the end of the contract
- Make all information necessary for audits available
π¬ Frequently asked questions
Can Deal TOP see my client data?
No. Your data is encrypted and isolated. The Deal TOP team only accesses it upon explicit request from you (e.g., specific technical support). No automatic access or use for commercial purposes.
Can another company see my data?
Impossible. Isolation is enforced at the database level via Row Level Security. Technically, a user from another company cannot see, even by mistake, a single one of your rows.
Is my data stored in the United States?
No. All data is stored in Europe (Frankfurt, Germany). It does not transit to countries outside the EU, unless otherwise indicated and with the appropriate safeguards.
Can I obtain a signed DPA?
Yes. A GDPR-compliant Data Processing Agreement is available free of charge on simple request to our team. It formalizes our contractual commitments.
What happens if I delete my account?
All your data is permanently deleted within 30 days. Backups containing this data are automatically purged according to our retention cycle.
How can I export my data?
From the application, you can export your contacts, deals and history in CSV or JSON format at any time. For a full export, contact us.
Does Deal TOP use my data to train AI?
No. Your business data is never used to train artificial intelligence models, neither by Deal TOP nor by any third party.
Who is the DPO (Data Protection Officer)?
For any GDPR question, contact us at contact@dealtop.fr. We respond within 72 hours.
Need a DPA or additional information?
Our team provides the Data Processing Agreement free of charge, responds to your security audits and supports your compliance process. Write to us and we will reply within 72 hours.
π¬ Contact us