Data & Compliance

FIND THE CLONE is committed to complying with the EU General Data Protection Regulation (GDPR). We ensure all data processing is carried out lawfully, fairly, and transparently.

Contractual Performance

Processing is necessary to provide you with access to the Archive and its various dossier management tools.

Legitimate Interests

Improving our matching algorithms through the analysis of aggregated, anonymized olfactory data is a legitimate system interest.

If you are accessing the Archive from outside the host region, your data may be transferred across borders. We ensure such transfers are protected by standard contractual clauses or similar legal protections.

To request a full export of your personal archive or to request its deletion, please send a "SUBJECT ACCESS REQUEST" to compliance@findtheclone.com. We aim to fulfill all requests within 30 days.

The Archive's data security is monitored by the System Lead. For data-specific privacy inquiries, contact the DPO through the central compliance channel.

The Archive uses the following core infrastructure, which also maintains their own GDPR/data compliance standards:

• Database Hosting: Supabase / PostgreSQL (Data at Rest Encryption)
• Authentication: NextAuth.js / Auth.js
• Transactional Mail: Resend