Your data, handled the way a privacy company should
The legal basis that lets us act for you, and the controls that keep your personal data safe while we do.
The mandate — why we can act for you
Data brokers only honour requests from the data subject or a documented authorized agent. During onboarding you sign a region-specific Letter of Authorization — GDPR/UK GDPR representation, a CCPA “authorized agent” designation, or the equivalent for Canada, Switzerland, Australia and New Zealand. We generate a versioned, immutable PDF mandate as evidence and can present it whenever a broker asks for proof of authority. You can revoke the mandate in writing at any time; doing so stops any requests still in progress.
Encryption of your data
Sensitive fields are encrypted at rest with AES-256-GCM. Identity documents (when a broker demands ID) are encrypted before they ever reach storage, kept in a separate restricted location, and deleted after a short retention window. Personal data never appears in logs or in URLs.
Access control
Every database row is protected by row-level security: you can only ever see your own profiles, requests and evidence. Our automated worker uses a separate, server-only credential and never runs in your browser.
Audit trail
Every status change writes an immutable event. Screenshots, sent emails and API responses are stored as evidence, hashed for integrity. Paid plans can export a full PDF evidence report per profile.
CAPTCHAs and ID checks
When a broker's opt-out form is protected by a reCAPTCHA or a Cloudflare Turnstile widget, our engine clears it automatically through a captcha-solving service so your request can be submitted without you. Identity checks and document uploads are never automated — those always become a clear task on your dashboard for you to complete yourself.
Ready to disappear from the brokers?
Run a free exposure scan and see how many brokers hold your data. No card required.
Start free scan