GridIron
Data Protection & GDPR Compliance
Data Protection & GDPR Compliance
We understand the importance of maintaining visitor privacy and complying with data protection regulations, including the General Data Protection Regulation (GDPR), UK GDPR, and other international privacy standards.
GridIron has been designed with privacy-conscious users and developers in mind.
No External Data Tracking
GridIron does not transmit, log, or share any data with third-party services. There is no use of tracking scripts, analytics, or external CDNs. Everything runs locally within your website, which greatly reduces the risk of unintentional data leaks or regulatory issues.
Privacy-Respecting Data Sources
CSV and XLSX files are either uploaded to your web server or referenced via direct URLs, but no telemetry or tracking is ever applied.
When Google Sheets is used as a data source, the data is fetched once by your server and then cached locally. This means:
- Your website visitors never connect to Google servers.
- No cookies or tracking data are introduced by the sheet itself.
- The cached version is stored securely on your web server and updated only when you choose.
Built for Compliance
Because all data processing occurs server-side, and there is no direct connection between your site visitors and any external data provider, GridIron offers a particularly clean solution for organizations that must:
- Minimise external data exposure
- Avoid third-party tracking or advertising
- Ensure compliance with privacy laws across multiple regions
This architecture also makes it easier to respond to data subject access requests or perform audits, as the data remains within your control at all times.
If your site’s overall data handling policies are up to scratch, GridIron won’t get in the way. On the contrary, it may help you meet your privacy obligations more easily.