Privacy and compliance

Built for GDPR, DPDP, CCPA, and global privacy expectations

FollowTo gives every user and organizer concrete controls: export your data, delete it permanently, and understand exactly what happens when a community is removed.

Frameworks we align with

GDPR (EU/UK)

Instant self-service erasure (Art. 17), access and portability (Art. 15 and 20).

DPDP Act 2023 (India)

Data principal rights, grievance contact, and inactive-account notice before erasure.

CCPA/CPRA (California)

Right to delete personal information via verified in-app controls.

LGPD (Brazil)

Elimination of personal data on request with documented retention exceptions.

Your controls on FollowTo

Download your data

Export account, registration, membership, and billing summary data as JSON from Settings.

Delete permanently

One-click erasure with password or email verification. No support ticket required.

Organizer cascade delete

Deleting a community removes events, attendee records, memberships, and related assets.

Deletion audit receipts

Enterprise organizers get a dashboard audit log with hashed receipts for deletions and retention purges.

Enterprise customers

Need a signed Data Processing Agreement (DPA), configurable attendee retention, a deletion audit log, or a security questionnaire? We provide Enterprise controls and priority privacy support.