Data Privacy and GDPR Compliance



Suhep is built to help teams handle support data responsibly.

Data We Collect



From You (Account Holder):
  • Name, email, business name
  • Billing and activation details where applicable
  • Support content such as articles, tickets, replies, and settings


    • From Your Customers:
  • Name and email when submitting tickets
  • Support conversation content
  • IP address and basic device/browser information where needed for security and abuse prevention


    • Data Storage



  • Data is protected in transit with TLS
  • Access is limited to authorized application and operational paths
  • Business customers can request current processing, retention, and region details during onboarding


    • GDPR and Privacy Requests



    Suhep can support common privacy request workflows:
  • Right to Access — export account/customer support data where available
  • Right to Deletion — delete customer data where legally and operationally permitted
  • Data Portability — export data in practical formats where available
  • Consent — your support forms should include the consent and privacy language required for your business


    • Your Responsibilities



    As the data controller for your customers, you should:
  • Include privacy policy links on your support forms
  • Respond to customer data requests
  • Configure retention and access rules appropriate for your business


    • Data Processing Agreement



    Business customers can request a DPA. Contact support@suhep.com.