You may have just missed my post on DrawSplat’s Privacy and Compliance section a few minutes ago. That one covers the USA and Texas. This post is a quick update for GDPR, too, right after it (yes, I scheduled them to appear this way…I’m not actually writing this on June 1 at 4:00 AM Central time). It actually took about an hour to get here for GDPR on a Saturday morning.

Welcome, GDPR and Europe!

Realizing that there are many around the globe who may want to use DrawSplat, I thought it might be fun to make DrawSplat GDPR compliant. I have an extended family member who is studying at a university in Ireland (sigh, where was this when I was younger?), and it occurred to me, “This would be cool for her to have access to and share with her professors!”

So, here we go….

What’s Available Now

As you can see from the screenshot above, you can find quite a bit available under the Privacy and Terms drop down:

My favorite is the “Get all documents below” because that puts everything in one convenient place for review, either to view online or as a print job or PDF download. I hate having to flip between multiple pages of security garbage.

Now, let’s discuss GDPR. Wait, what’s this pop-up on DrawSplat? It must be GDPR:

Adding GDPR Compliance

As you might imagine, keeping track of GDPR compliance AND the USA can be a bit of a pain. I couldn’t do it without Gen AI, and wouldn’t even attempt any of this without it. However, adding GDPR compliance is child’s play with AI. I really am reminded of the Spellmonger stories with Minalin and irionite (a great series of books or audiobooks well worth the listen).

Plain-Language Explainer

GDPR compliance summary for DrawSplat^TM.

This page is for European and UK school administrators, IT leaders, and data protection officers (DPOs) deciding whether DrawSplat^TM fits their compliance obligations under the EU General Data Protection Regulation (Regulation (EU) 2016/679) and the UK GDPR. It is not legal advice — your DPO should map the items below against your specific deployment.

Headline: DrawSplat^TM is open-source educational software you deploy under your control. There is no DrawSplat SaaS that processes student data. Your school or district is the data controller; DrawSplat^TM ships the technical primitives (browser-only mode, data export, deletion, audit logs, role-based access) that you wire into your compliance posture.

You can read the entire GDPR compliance summary, of course.

Compliance Gaps

Curious about what’s not there or missing or inadequate? Well, that’s what the Compliance Gaps document is for:

Honest Compliance Posture

What DrawSplat^TM does NOT yet do — and why.

This page is the deliberate opposite of marketing. Every other compliance document on this site describes what’s in the product; this one lists what’s not, grouped by legal regime. We publish it so your DPO, district counsel, or procurement reviewer can decide quickly whether a gap is a deal-breaker or something your district can paper over with its own controls.

Use it like this: read the section for the laws that apply to you, see which line items are listed as “not in scope” vs “deploying district must add,” and weigh those against your own constraints.

Last reviewed against the codebase on 2026-05-30. The bullets describe the platform as it ships on main; nothing here is forward-looking. When a gap is closed, it gets removed from this list.

Read the compliance gaps. It covers USA, Texas, and GDPR.