How does Substack comply with Data Regulations?

Substack seeks to comply with applicable Data Regulations by providing public-facing policies and standard contractual clauses on our platform and in our agreements with Publishers. These policies and clauses can be found in our Privacy Policy, CCPA Policy, and Publisher Agreement (“Privacy Documents”).

For Publishers, who we consider to be Controllers (as defined under the GDPR), we have provided for Standard Contractual Clauses in our Publisher Agreement. These contractual clauses ensure appropriate data protection safeguards which can be used as a ground for data transfers from the EU (and the UK) to third countries. 

Under our Privacy Policy and CCPA policy, we set forth the (i) the categories of personal data we collect, (ii) the way we process personal data; and (ii) disclosures of your rights under applicable Data Regulations.

Was this article helpful?
1 out of 4 found this helpful

Articles in this section

Need more help?
Submit a request to our Support team and we'll be glad to help!