How Shelfshoot complies with the EU General Data Protection Regulation.
Last updated 3 June 2026
For account/billing data we are the controller; for your product content we act as your processor.
A Data Processing Agreement is available to all customers; request a signed copy via contact.
We use vetted sub-processors, each bound by data-protection terms; the list is in our Privacy Policy.
We host in the EU where available; transfers outside the EEA are covered by Standard Contractual Clauses.
We support all data-subject rights and assist you as processor for content you control.
Data is encrypted in transit, credentials encrypted, passwords hashed; we notify you of breaches without undue delay.
ITGo ApS, CVR DK43046772, Denmark. Questions about this policy: