GDPR compliance
Note
This section provides general information only and does not constitute legal advice. No responsibility or liability is assumed for how this information is used.Ocelot-Cloud includes features that can support GDPR-aligned operation. This page provides additional legal context for selected features, explaining their relevance from a data protection perspective. The information here is not comprehensive and does not cover all GDPR obligations.
User invites
The link generated for user invitation contains only a temporary token, not a password. The token is valid for a limited time, can only be used once, and is protected by HTTPS provided that a properly signed certificate is configured, which is required for secure operation. Transmitting such links, even over insecure channels, is considered GDPR-compliant. Administrators may distribute the link through the following channels:
- Signal (most secure)
- Email (most common)
- Telegram
- SMS