Gyazo GDPR Hub

This page is about your data privacy, portability, and security with Gyazo.

What is the GDPR?

The General Data Protection Regulation comes into effect on May 25, 2018 for people in the European Union. It is an update to EU data privacy, portability, and security rules which affects how web services handle personal data. Our GDPR related changes will be applied for people using Gyazo all over the world so everyone gets the same benefit.

What is Gyazo's approach to data privacy, portability, and security?

We have always thought of these points as fundamental features. For GDPR we are expanding on this by providing easier ways to manage your data, view your data, and understand how your data is processed. We have taken numerous measures to improve how we secure your data including updates to enhance our internal practices as well as anonymizing personal data as much as possible.

What can I do with my personal data?

Import

Easily upload screenshots, images, screen videos, and screen GIFs or add your account details by using our service normally.

Export

Get an export of all your personal data so you can view it or use it somewhere else. Contact us

Opt-out / Delete

Delete all your personal data, including your uploads, and cancel your account. Opt-out and delete your account.

What personal data is collected? What is it collected for?

We use your information to personalize your experience, to create analytical measurements, and to show more relevant ads. We do not track you on other websites, but our 3rd party advertisers may store cookies based on your use of other websites. Depending on how you use our service, any or all of the following data may be collected.

  • Username
  • Email address
  • Any content you add to the service such as screenshots, videos, GIFs, images, and text. This includes image metadata (e.g. application name, page title, and page URL)
  • A device identifier
  • A session identifier
  • Usage data
  • Payment details (if you upgrade to Pro or Teams)

How is my data collected and processed? Where is it processed?

Cookies are stored on your computer when you visit our website

We save cookies on your computer that store a session identifier when you visit any page. Our advertising partners may also store cookies with a unique identifier.

Payment data is stored by our payment processing partners Stripe and PayPal

When you upgrade to Gyazo Pro or Gyazo Teams, Stripe (for cards) or PayPal will collect your payment information and store it with strict security standards. See the next section for links with more information about their practices.

Other data types are stored on our servers
  • When you upload your first screenshot from a new device we store a device identifier.
  • When you sign up we collect your name and email address.
  • When you upload or view an image we collect your IP address for legal compliance purposes.
Where are Gyazo servers located? Where is data transferred?

As an international web service we collect, process, and transfer data around the world, including transfers to countries outside the EU such as the United States and Japan. We use industry standard encryption-in-transit and encryption-at-rest as well as other modern security practices and protections. We are researching and preparing for EU-US Privacy Shield certification and other measures related to safe transfer of data.

What if I do not agree to Gyazo's use of my data? Can I opt-out?

You can always opt-out by stopping your use of our services and deleting your account. You can also export your data first before deleting. Please see the section 'What can I do with my personal data?' on this page for details.

Currently we cannot provide our service without at least minimally collecting and processing certain basic types of personal data so in order to opt out you can delete your account.

What happens if there is a breach which affects my personal data?

Gyazo will provide a report within 72 hours to EU Data Protection Authorities, and notify affected users about the breach and what personal data is affected, to the extent possible.