GDPR & Compliance FAQ

Yes. CaptiFi is fully GDPR compliant. We provide:

Clear consent collection at the point of data capture
Opt-in checkboxes for marketing communications
Full audit trail of all consent records
Data export capabilities
Right to erasure (deletion) support
Privacy policy integration on splash pages

Where is data stored?

Guest data is stored securely on EU-based servers with encryption at rest and in transit.

Who owns the data?

You do. CaptiFi processes data on your behalf, but you are the data controller. You can export or delete data at any time.

Can guests opt out?

Yes. Every marketing email includes an unsubscribe link. Guests can also request data deletion by contacting you directly.

Do I need a privacy policy?

Yes. You should have a privacy policy that covers your use of guest WiFi data. CaptiFi provides a template you can customise, and it's linked directly on your splash page.

The CaptiFi splash page uses minimal cookies required for the WiFi login to function. Marketing cookies (if any) are only set with consent.

Can I delete a guest's data?

Yes. From the dashboard, go to Guest Data, find the guest, and click Delete. This permanently removes all their data from CaptiFi.

No. CaptiFi does not sell or share guest data with any third parties. Data is only accessible to you (the venue owner) through your CaptiFi dashboard.

What about data breaches?

CaptiFi has security measures including encryption, access controls, and regular security audits. In the unlikely event of a breach, we will notify affected customers within 72 hours as required by GDPR.

GDPR & Compliance FAQ ​

Is CaptiFi GDPR compliant? ​

Where is data stored? ​

Who owns the data? ​

Can guests opt out? ​

Do I need a privacy policy? ​

What about cookie consent? ​

Can I delete a guest's data? ​

Do you share data with third parties? ​

What about data breaches? ​

Is CaptiFi GDPR compliant?