Compliance · GDPR · May 2026 · updated 2026-05-22

GDPR + AI customer support.

GDPR applies whenever an EU resident interacts with your AI assistant. helpcode is designed so the GDPR-compliant path is the default — EU hosting, signed DPA, sub-processor transparency, no training on customer data, and self-service erasure.

Hosted in the EU (Frankfurt) No training on customer data Public DPA

In three points

.01

Lawful basis

Customer support typically relies on legitimate interest (art. 6.1.f) or contract performance. The lawful-basis register is part of the DPA pack.

.02

Data minimisation

helpcode only stores the conversation transcript and the citations. PII is redactable per-tenant at write time.

.03

Data subject rights

Articles 15-22 supported: access, rectification, erasure, portability, restriction.

Frequently asked questions

Are conversations considered personal data?

Yes — if they include names, emails, phone numbers or device IDs, they are. Treated as such by default.

Is the DPA included or extra?

Included. Standard DPA published on the website, pre-signed; custom changes via your account manager.

How is consent handled for the AI disclosure?

helpcode's widget and voice channels include a configurable, prominent AI disclosure. Pairs with the AI Act art. 50.

Last reviewed 2026-05-22 · Email legal

GDPR + AI customer support.

Lawful basis

Data minimisation

Data subject rights

Frequently asked questions

Other compliance topics