Q: GDPR
How are our clients data protected? Do you have processes set up for GDPR?
kadir_upcoach
Apr 14, 2025A: Hello Victoria, thanks for your question!
While we’re not yet fully GDPR-compliant, we’re actively working toward it and already meet many of the key requirements. For example, until now, client deletion required a manual request — but with an update going live this week, admins will be able to delete clients directly in a GDPR-compliant way.
We take data privacy very seriously. In addition to continuously improving our platform's security features, we also work with top-tier cloud providers to ensure secure infrastructure. Additionally, we’ve launched a publicly announced bug bounty program, where independent developers regularly test our system and report vulnerabilities — which we reward accordingly.
All of this reflects our strong commitment to protecting user data and aligning with international privacy standards. We’re proud to have earned the trust of our users over the years and will continue improving in this area.
Let me know if you have any other questions!
Victoria_ErimitaPLUSFor me GDPR is crucial since I'm reliable for being compliant in Europe :) But I love the look of Upcoach!
emre_upcoachThank you so much, Victoria! 💙
We really appreciate your kind words and totally understand how crucial GDPR compliance is - especially for coaches working in Europe.
While upcoach is not officially GDPR-certified yet, privacy is very important to us and we’re continuously working to align with GDPR standards as we grow.
Thanks again for pointing this out!
admin4179PLUSSame here, would like to use your platform, GDPR is mandatory for us. Otherwise I simply can’t sell to my clients.
Thanks a lot for your comment!
We completely understand — GDPR is a must for many businesses, and we take data protection very seriously.
While we’re not officially certified yet, our infrastructure is built with privacy in mind, and improving compliance is very much on our radar.
Appreciate you taking the time to share this — it really helps us move in the right direction.
siven111I am very dissapointed, that such crucial thing like GDPR is not implemented since the first Appsumo campaign. Sorry, but when we see your answer „we’re actively working toward it“ after more than 2 years /it was probably the same, but in different words), how can we believe it won't take another 2, 4, 6 years, or it won't take forever?
We’re genuinely sorry that it’s taken this long.
As with many startups, priorities sometimes shift based on what will have the most impact at a given time. But we’ve never taken GDPR lightly. In fact, we’re just about to release a key feature — full client deletion — which directly addresses the Right to be Forgotten under GDPR.
It's not the final step, but a real step forward.
alexsaramTotally agree with siven111