Last updated: February 15, 2026
At Exitus Legal, we are committed to protecting the privacy of our users. This Privacy Policy outlines how we collect, use, and safeguard your personal information when you use our website and services at exituslegal.com.
Account Information: When you register for Exitus Legal, we collect your name, email address, company name, and billing information necessary to provide our services.
Withdrawal Data: When consumers submit withdrawal forms through our widget on your website, we collect the form data (name, email, order number, reason) on your behalf. This data is processed as your data processor under GDPR Article 28.
Usage Data: We collect anonymized usage data including IP addresses, browser type, pages visited, and interaction patterns to improve our services.
We use the information we collect to:
Exitus Legal is fully compliant with the General Data Protection Regulation (GDPR). We act as a data processor on behalf of our merchant clients (data controllers) when processing consumer withdrawal requests. We process personal data only as instructed and maintain appropriate Data Processing Agreements (DPAs) with all clients.
You have the right to access, rectify, erase, restrict processing, data portability, and object to the processing of your personal data. To exercise these rights, contact us at privacy@exituslegal.com.
We implement industry-standard security measures including encryption in transit (TLS 1.3) and at rest, access controls, regular security audits, and secure data backups. All data is stored within the European Economic Area (EEA) to ensure compliance with EU data sovereignty requirements.
Withdrawal audit logs and PDF confirmations are retained for a minimum of 3 years in accordance with EU consumer protection record-keeping requirements. Account data is retained for the duration of the subscription and deleted within 30 days of account termination upon request.
We use Stripe for payment processing and may use third-party analytics services. These providers are GDPR compliant and process data under appropriate agreements. We do not sell or share personal data with third parties for marketing purposes.
We use essential cookies required for the functionality of our platform (session management, authentication). We may use analytics cookies with your consent. You can manage your cookie preferences through your browser settings.
We may update this Privacy Policy from time to time. We will notify you of any material changes via email or through our platform. Continued use of our services after such changes constitutes acceptance of the updated policy.
If you have questions about this Privacy Policy or our data practices, please contact us at info@exituslegal.com.