GrayLeads logo
GrayLeads
AboutContactBack to Home

Europe & GDPR Rights

Europe & GDPR Rights

Last updated: April 2, 2026

This page is written for users in the EU and EEA, and also helps German users understand the GDPR-related rights that apply to GrayLeads. It supplements the Privacy Policy and highlights the additional disclosures that are currently missing from the repository for a fully completed German launch.

1. Current controller details visible in the repository

The current repository identifies SoftwareForge as the operator of GrayLeads, with grayleads.com as the public site host and contact@softwareforge.agency as the available privacy contact. The repository does not publish a postal address, an authorised representative, a commercial register number, a VAT ID, or a named Data Protection Officer.

The public presentation supplied by the user now also includes the partnership label SoftwareForge x Atriona Digital, with partner websites at SoftwareForge and Atriona Digital. The repository still only provides one published privacy contact, so this page continues to use contact@softwareforge.agency for GDPR requests.

2. Your rights

  • Access the personal data GrayLeads holds about you.
  • Correct inaccurate or incomplete personal data.
  • Request deletion of personal data where retention is no longer necessary.
  • Restrict or object to certain processing activities.
  • Receive personal data in a portable format where applicable.
  • Withdraw consent where processing depends on consent.
  • Lodge a complaint with your local supervisory authority.

3. Germany-specific notes

  • German users can complain to the supervisory authority in the federal state that applies to their place of residence, work, or the controller's establishment.
  • The repository currently does not disclose enough operator information to complete a final German Impressum. See the dedicated Impressum page for the current disclosure status.
  • For device storage and similar technologies, Germany's TDDDG rules can apply alongside GDPR. GrayLeads currently uses essential localStorage and may encounter Google-controlled cookies only when Google services are used.

4. Legal bases

  • Contract performance to create accounts, provide workspace features, run searches, and deliver communications tools.
  • Legitimate interests to secure the platform, prevent abuse, administer subscriptions, and maintain product operations.
  • Legal obligations where records must be retained or disclosed.
  • Consent where optional storage or similar preferences require it.

5. Cookies and browser storage in Europe

The current codebase does not show a first-party analytics or advertising stack. Its own storage is mainly essential localStorage for authentication state, workspace context, and consent preference storage. Non-essential third-party cookies may still appear when a user connects Google OAuth or uses Google Maps features.

6. International transfers

GrayLeads uses providers such as OpenAI, Google Maps Platform, Google OAuth and Gmail APIs, Twilio, Brevo, Deployment-specific SMTP relay. Those providers may process data outside the EU or EEA, including in the United States. Transfers for European users may therefore depend on provider-side standard contractual clauses, adequacy decisions, or equivalent contractual safeguards available for the relevant service.

7. Automated decision-making

The current repository does not indicate that GrayLeads makes solely automated decisions with legal or similarly significant effects on users. Business approval, CRM actions, messaging, and administrative controls remain human-directed workflows.

8. How to exercise your rights

Send requests to contact@softwareforge.agency. Include enough information for GrayLeads to verify your identity and locate the relevant records.

If you need the operator details currently available for Germany-specific review, also check the Impressum page.