Integromat and GDPR

July 19 09:04 2019 Print This Article

For Integromat, the protection not only of personal but of all data that flows through our platform is the top priority.

The General Data Protection Regulation (GDPR) is a Regulation of the European Parliament and of the Council of the EU on the protection of individuals with regard to the processing of personal data and on the free movement of such data. It was adopted in April of this year. It is binding for all member states and goes into effect on May 25th, 2018.

The purpose of this regulation is to protect citizens’ rights against unauthorized handling of their sensitive data and personal data. These rules respect the right to protection of citizens’ personal data, regardless of their nationality or residence.

Our goal is to provide services in accordance with the European GDPR and, at the same time, provide our customers with all the necessary tools so that they can easily comply with the requirements of this regulation.


  • According to the GDPR, a data controller is any entity, irrespective of its legal form, which determines the purpose and means of processing personal data and collects, processes and stores data for the purpose defined by it. A data controller is primarily responsible for the processing of personal data. The essential prerequisite is the existence of a proper legal basis for the processing of personal data that the data controller must have in order to process personal data at all. At the same time, personal data must be sufficiently secured.
  • A data processor is a natural or legal person, public authority, agency or any other body which processes personal data on behalf of the controller. What distinguishes data processor from data controller is that the data processor may perform only such processing operations with which the controller entrusted them or which result from the activity entrusted by the controller.
  • A user is a natural or legal person using Integromat.

Integromat and personal data

Integromat stores the following information, which can be considered as personal data.

  • Data collected upon registration – email, name, IP address
    Integromat is the data controller in respect of this data.
  • Login credentials to services
    In respect of this data, Integromat is the data processor and the user is the data controller.
  • Scenario execution data and data stored in Integromat internal data stores.
    In respect of this data, Integromat is the data processor and the user is the data controller.

Integromat features that allow you to manage personal data in accordance with GDPR

Scenario settings: Data is confidential

This is a key feature that allows you to process data in Integromat without leaving any record about the data in Integromat after the scenario run completes.


Deleting data stored in Integromat data stores

For deleting data, use the Delete a record function to delete a specific record, or the Delete all records function to delete all records from a specific data store.
More info

Integromat as data controller

Where is your data physically stored?

  • Your data is stored in a secure web hosting center in the Czech Republic, (EU member state since 2004) certified to internationally recognized ISO 9001 and ISO 27001 standards that define the requirements for the quality management system and the information security management system.

What personal data does Integromat collect?

  • Email
  • Name
  • IP address
  • History of access to the website

Integromat collects this personal data for the following purposes:

  • Login to Integromat
  • Possibility to reset passwords in the case of forgetting it
  • Informing users about executions of active scenarios
  • Informing users about business matters
  • Informing users and potential users about new features of Integromat


  • Information is gathered through a registration form.

Right of deletion or change

  • In the Profile section, you have the option to ask for deletion or to change your profile. In the event that it is our duty to keep a record of some of your personal information, for example, for accounting purposes, this information is retained. We will irrevocably remove all other information within 60 days of your request.

This article was originally posted here:

  Article "tagged" as:
view more articles

About Article Author


View More Articles
write a comment


No Comments Yet!

You can be the one to start a conversation.

Add a Comment