GDPR & Data Protection
3 min read
Paak is designed from the ground up for EU data sovereignty. Your club's data never leaves Europe.
EU-only infrastructure
- Hosting: OVHcloud, France
- Authentication: Hanko, Germany
- Payments: Mollie, Netherlands
- Emails: Brevo, France
No data is transferred to the United States or any non-EU country.
Your rights as a club
- Data portability: Export your contacts, memberships and payments at any time (Paak Pro includes CSV/Excel export)
- Right to deletion: You can delete individual contacts or your entire organisation. Deletion is permanent and irreversible
- Data minimisation: Paak only collects the data necessary for club management. No tracking, no profiling, no advertising
FAQ
- Does Paak use cookies for tracking?
- No. Paak uses a single authentication cookie (session). There are no marketing or analytics cookies.
- Who is the data controller?
- Your club is the data controller for its members' data. Paak (Emmara SAS) acts as data processor. A Data Processing Agreement (DPA) is available on request.
- Can members request their data?
- Yes. Under GDPR, any member can request access to or deletion of their personal data. As a club administrator, you can fulfil these requests from the contact's profile page.