How GoPet AI collects, processes, and protects personal data for users in the European Union and EEA.
Effective Date: March 9, 2026 Β· Deux Alpha Tech Sdn. Bhd.
Deux Alpha Tech Sdn. Bhd., operating as GoPet AI, is the data controller responsible for your personal data. We are a Malaysian-registered company providing pet care business management software to businesses and their customers worldwide.
Company
Deux Alpha Tech Sdn. Bhd.
Platform
GoPet AI (gopetai.com)
Privacy contact
[email protected]Response time
Within 30 days of receiving your request
We collect only the data necessary to operate our platform. This includes:
Account data
Name, email address, phone number
Pet data
Pet names, breeds, ages, photos, care notes entered by pet business staff
Transaction data
Booking history, invoices, payment records (payment details processed by Stripe)
Usage data
Features accessed, session duration, interaction patterns (via PostHog analytics)
Communications
Support messages and emails sent to us
Technical data
IP address, device type, browser, error logs
Note: We do not collect special category data (health, biometric, racial/ethnic origin, etc.) and do not sell personal data to third parties.
Under GDPR Article 6, we process personal data only where we have a valid lawful basis. The table below maps each processing activity to its basis:
| Processing Activity | Lawful Basis |
|---|---|
| Creating and managing your account | Contract |
| Processing bookings and invoices | Contract |
| Sending service notifications and updates | Contract |
| Platform security and fraud prevention | Legitimate Interests |
| Analytics to improve platform performance | Legitimate Interests |
| Sending marketing emails and product updates | Consent |
| Retaining financial records | Legal Obligation |
Where we rely on Legitimate Interests, we have conducted a balancing test confirming that our interests do not override your fundamental rights. You can request a copy of this assessment by contacting us.
As an EU/EEA resident, you have the following rights. All requests are handled free of charge within 30 days.
Request a copy of all personal data we hold about you.
Ask us to correct inaccurate or incomplete data.
Request deletion of your data ("right to be forgotten") under certain conditions.
Receive your data in a structured, machine-readable format (JSON/CSV).
Object to processing based on legitimate interests or for direct marketing.
Ask us to limit processing while a dispute or objection is resolved.
Withdraw consent at any time for activities based on consent (e.g. marketing emails).
Request human review of any solely automated decision that significantly affects you.
GoPet AI operates globally. Your data may be processed in countries outside the EU/EEA, including the United States. We ensure all transfers comply with GDPR Chapter V using the following safeguards:
We rely on Standard Contractual Clauses (SCCs) as the legal mechanism for transferring data outside the EU/EEA. All transfers to third-party processors (AWS, Stripe, PostHog) are covered by EU Standard Contractual Clauses as approved by the European Commission under Decision 2021/914.
Key processors involved in handling EU user data:
Amazon Web Services (AWS)
Cloud infrastructure & storage
Stripe
Payment processing
Supabase
Database infrastructure
PostHog
Analytics
You can exercise any of your rights by following these steps:
Send your request to [email protected] with the subject line "GDPR Request β [Type]" (e.g. "GDPR Request β Erasure").
We'll ask you to confirm the email address associated with your account to verify your identity before processing the request.
We'll acknowledge your request promptly and fulfill it within 30 days. Complex requests may take up to 90 days β we'll notify you if this applies.
All data subject requests are free of charge. We only charge if requests are manifestly unfounded or excessive.
Our privacy team is here to help. Reach out directly and we'll respond within 2 business days.
If you're not satisfied with our response, you have the right to lodge a complaint with your local supervisory authority. EU residents can find their authority at edpb.europa.eu. UK residents can contact the ICO at ico.org.uk.