FAQ
      Back to home
      1. Wicked Help Center
      2. 4. TROUBLESHOOTING
      3. FAQ

      A Simple Guide to GDPR & Wicked Reports

      This doc is for anyone responsible for managing customer data privacy or responding to GDPR-related inquiries for a business using Wicked Reports.

      On this Page

      Introduction

      This guide explains how to handle GDPR-related data privacy requests as a Wicked Reports user. You’ll find a clear breakdown of the tools and processes available to help you comply with GDPR requirements - including how to access, delete, and safeguard customer data with confidence.

      What is GDPR?

      The General Data Protection Regulation (GDPR) is a European Union law that gives individuals more control over their personal data. At its core, GDPR encourages transparency, security, and respect for user privacy - values we actively support at Wicked Reports.

      Here’s how GDPR defines responsible data handling:

      • Transparency – Let people know what data you're collecting and why.

      • Purpose Limitation – Use data only for the reasons you shared.

      • Control – Make it easy for individuals to access, update, or delete their data.

      • Security – Keep personal data safe from unauthorized access or misuse.

      At Wicked Reports, these principles guide how we build and support our tools - not just to meet expectations, but to build trust with our customers and their audiences.

      Our Approach to Data Privacy at Wicked Reports

      We keep things simple: if you need to manage or remove customer data, or enhance your security, we’ve got your back. No complicated tools, no red tape -  just straightforward ways to handle things when privacy questions come up.

      Key measures we take to protect personal data include:

      • Encrypting and masking data stored on our servers

      • Masking customer email addresses for accounts with “User” level permissions

      • Offering data deletion upon request via support@wickedreports.com

      • Automatically deleting all personal data within 45 days after account cancellation

      • Providing cookie-less tracking options that avoid storing sensitive information

      • Never marketing to or sharing customer data with third parties

      Is Wicked Reports GDPR certified?
      There’s no official “GDPR-certified” status issued by the EU. Instead, GDPR compliance depends on how data is handled - and that responsibility ultimately sits with the data controller (you, our customer). We support GDPR compliance through proper data practices, documentation, and we’re happy to provide a signed Data Processing Agreement if you need one.

      Should it be needed, we offer a GDPR Data Processing Agreement for your records. Learn more.

      Common GDPR Requests

      Requesting Data Deletion

      1. Email support@wickedreports.com

      2. Include the email address(es) to be removed
      3. We will delete all associated records within 3-5 business days after receiving your request

      Deletion is permanent and cannot be reversed.

      Signing a GDPR Data Processing Agreement

      If your business handles data from individuals in the EU, and that data is sent into Wicked Reports, then you may need a signed Data Processing Agreement (DPA) to support your GDPR compliance efforts. This agreement outlines how Wicked Reports processes data on your behalf and is available for clients who determine it’s relevant to their privacy obligations.

      1. Open our GDPR Data Processing Agreement

      2. Complete and sign Page 2 and Page 10

      3. Submit the document to support@wickedreports.com for countersigning

      4. Wait 1-3 days for counter signature 

      5. Retain the finalized copy for your records

      Masking User Data

      You can restrict visibility of contact emails by assigning users the "User" access level.

      1. Go to Manage Users in Wicked Reports

      2. Add or edit a user

      3. Select User as the access level

      More info: How to Manage Access Levels

      Enabling Cookie-less Tracking

      1. Contact Support

      2. Receive CNAME Records from Support

      3. Update Your DNS Settings

      4. Update Your Tracking Code

      5. Validate Tracking

      More info: How to set up Cookieless Tracking

      FAQ

      Q: Do you have an official report on the data that was deleted?
      A: No. Once the task is completed, we will simply inform you. 

      Q: Do you offer cookie-less tracking?
      A: Yes. Let support know if you'd like to enable it.

      Q: What's your latest update on GDPR?
      A:       Read here.