A Simple Guide to GDPR & Wicked Reports

This doc is for anyone responsible for managing customer data privacy or responding to GDPR-related inquiries for a business using Wicked Reports.

On this Page

• Introduction
• What is GDPR?

• Our Approach to Data Privacy at Wicked Reports

• Common GDPR Request

  • Requesting Data Deletion

  • Signing a GDPR Data Processing Agreement

  • Masking User Data

  • Enabling Cookie-less Tracking

• FAQ

Introduction

This guide explains how to handle GDPR-related data privacy requests as a Wicked Reports user. You’ll find a clear breakdown of the tools and processes available to help you comply with GDPR requirements - including how to access, delete, and safeguard customer data with confidence.

What is GDPR?

The General Data Protection Regulation (GDPR) is a European Union law that gives individuals more control over their personal data. At its core, GDPR encourages transparency, security, and respect for user privacy - values we actively support at Wicked Reports.

Here’s how GDPR defines responsible data handling:

• Transparency – Let people know what data you're collecting and why.

• Purpose Limitation – Use data only for the reasons you shared.

• Control – Make it easy for individuals to access, update, or delete their data.

• Security – Keep personal data safe from unauthorized access or misuse.

At Wicked Reports, these principles guide how we build and support our tools - not just to meet expectations, but to build trust with our customers and their audiences.

Our Approach to Data Privacy at Wicked Reports

We keep things simple: if you need to manage or remove customer data, or enhance your security, we’ve got your back. No complicated tools, no red tape -  just straightforward ways to handle things when privacy questions come up.

Key measures we take to protect personal data include:

• Encrypting and masking data stored on our servers

• Masking customer email addresses for accounts with “User” level permissions

• Offering data deletion upon request via support@wickedreports.com

• Automatically deleting all personal data within 45 days after account cancellation

• Providing cookie-less tracking options that avoid storing sensitive information

• Never marketing to or sharing customer data with third parties

Common GDPR Requests

Requesting Data Deletion

1. Email support@wickedreports.com

2. Include the email address to be removed

3. We will scrub all associated records.

Signing a GDPR Data Processing Agreement

1. Open our GDPR Data Processing Agreement

2. Complete and sign Page 2 and Page 10

3. Submit the document to support@wickedreports.com for countersigning

4. Wait 1-3 days for counter signature 

5. Retain the finalized copy for your records

Masking User Data

You can restrict visibility of contact emails by assigning users the "User" access level.

1. Go to Manage Users in Wicked Reports

2. Add or edit a user

3. Select User as the access level

More info: How to Manage Access Levels

Enabling Cookie-less Tracking

1. Contact Support

2. Receive CNAME Records from Support

3. Update Your DNS Settings

4. Update Your Tracking Code

5. Validate Tracking

More info: How to set up Cookieless Tracking

FAQ

Q: Is Wicked Reports GDPR certified?
A: There’s currently no official GDPR certification program recognized by the EU. While we’re not “certified,” we do offer tools and practices to support GDPR-related requests — and we’re happy to provide a signed Data Processing Agreement if you need one.

Q: How long does it take to process a deletion request?
A: Typically 3-5 days, although this can be expedited if absolutely necessary.

Q: Do you have an official report on the data that was deleted?
A: No. Once the task is completed, we will simply inform you. 

Q: Can I delete more than one contact at once?
A: Yes, you can send a list of emails to support@wickedreports.com.

Q: Do you offer cookie-less tracking?
A: Yes. Let support know if you'd like to enable it.

Q: What's your latest update on GDPR?
A: Read here.