Trace field notes

Practical guidance for the request behind the policy.

Concise operating guides for teams that need to recognise, scope, retrieve, review and evidence GDPR requests. Legal statements link to official EU materials; Trace commentary is operational guidance, not legal advice.

Follow the data

Stack-specific request maps.

These pages describe proposed pilot workflows and current integration status. They do not claim live one-click connectors.

FIREBASE / PILOT MAPPING

Map a Firebase DSAR

Authentication, Firestore, Realtime Database, Cloud Storage and connected systems.

SUPABASE / PILOT MAPPING

Map a Supabase DSAR

Auth, agreed Postgres tables, Storage references and downstream copies.

STRIPE / PILOT MAPPING

Map Stripe evidence

Customer, subscription, invoice and relevant payment-related metadata inside the whole case.

Foundation reading

Understand the right. Then design the operation.

Start with the practical guide to a data subject access request. If you are selecting a system, use the DSAR software buyer guide. For a broader rights workflow, read managed GDPR data request operations.

Trace is pre-launch. Resources describe a proposed operating model and do not imply that connector, reviewer or service capacity is live. Product status is stated on the relevant commercial page.

A controlled first request

Turn the guidance into one mapped request.

Apply for a limited concierge pilot. Scope, access, reviewer capacity and terms are confirmed before live personal data or payment is involved.