Reduct and GDPR
Updated over a week ago

Privacy and security are central to Reduct's approach to product development and how we think about our systems, and we continuously evaluate all of our practices to ensure your information is kept safe and secure.

To that end, we're happy to comply with Europe’s General Data Protection Regulation (GDPR) legislation, and to help Reduct customers do the same.

For more details regarding Reduct’s policies around customer data (for users on our Standard and Advanced plans), please review our current privacy policy. (Enterprise customers may be covered by different terms outlined in their agreement with us.)

What is GDPR?

The General Data Protection Regulation (GDPR) is a European law that came into effect on May 25, 2018. GDPR requires that organizations that process personal data comply with a range of specific rules and regulations. Additional information about GDPR is available on the European Commission’s website.

Data Processing Agreements

Reduct enters into Data Processing Agreements (DPAs) with customers upon request. Reduct's stock DPA includes standard contractual clauses ("Model Clauses") that are the mechanism for GDPR-compliant data transfer.

Please note that our DPA has been tailored to the way we provide our service, and as a result, changes to the legal language are only possible for qualified enterprise accounts. If this is something you would like to enquire about, please contact us at and a member of our team will be happy to discuss your needs.

Server location

A key part of GDPR compliance is understanding where your data is housed, and under what terms. Reduct's servers are located in the US and data is hosted and processed using US-based Google Cloud (GCP) servers. If you’d like a deeper understanding of how Reduct approaches security, you can read more at, or contact .

Ok, now what?

Reduct supports our customers’ privacy obligations by offering a Data Processing Addendum (DPA) that sets out the terms that apply when a customer’s personal data - or that of others represented in your footage stored on the Reduct platform - is processed by Reduct, including the appropriate technical and organizational measures implemented to protect such personal data.

If you are a business that requires a DPA in order for Reduct to act as a processor with respect to personal data that you store on the platform, please complete this form, and after a review, we will send you a DPA for signature at the email address you submit. You will be able to review the DPA before signing it.


If you have further questions, please reach out to

Did this answer your question?