Privacy Policy

01

Information We Collect

We collect information you provide directly to us, such as when you create an account, submit a support ticket, or contact us. This may include your name, email address, postal address, phone number, and any communications you send us.

We also collect information automatically when you use our Services, including IP addresses, browser type, operating system, referring URLs, pages viewed, and timestamps. We use cookies and similar tracking technologies as described in our Cookie Policy.

02

How We Use Your Information

We use the information we collect to: provision and manage your Services; process payments; provide customer support; send transactional communications (invoices, service notices, security alerts); improve our products; comply with legal obligations; and detect and prevent fraud and abuse.

We will not sell your personal information to third parties. We may send marketing communications with your consent or where permitted by law, and you may opt out at any time.

03

Cookies

We use essential cookies required for authentication and security, functional cookies to remember your preferences, and analytics cookies to understand how visitors use our website. See our Cookie Policy for full details and opt-out options.

04

Sharing of Information

We will not sell your personal information to third parties.

We share personal data with: service providers acting as data processors on our behalf (email delivery, analytics); professional advisors (lawyers, auditors) under confidentiality obligations; law enforcement or regulatory bodies when required by law; and acquirers in the event of a merger or acquisition, subject to the same privacy obligations.

We require all third-party service providers to maintain appropriate security measures and to process personal data only for the purposes we specify.

05

GDPR & CCPA Rights

If you are located in the European Economic Area (EEA) or California, you have additional rights regarding your personal data:

• Access: Request a copy of your personal data.
• Rectification: Correct inaccurate or incomplete data.
• Erasure: Request deletion of your data where no overriding legal basis exists.
• Portability: Receive your data in a structured, machine-readable format.
• Objection / Opt-out: Object to processing for direct marketing or, in California, opt out of sale (we do not sell data).
• Restriction: Request that we limit processing of your data in certain circumstances.

To exercise these rights, contact [email protected]. We respond within 30 days.

06

Data Retention

We retain personal data for as long as your account is active or as needed to provide Services. After account closure, we retain billing records for seven (7) years to comply with tax obligations, and support correspondence for three (3) years. We delete or anonymize other personal data within ninety (90) days of account closure.

07

Security

We protect your personal data with: argon2id password hashing (memory-hard, resistant to brute-force), TLS 1.2+ encryption in transit, scoped data access (each service component accesses only the data it needs), and access controls limiting who can reach production systems. No method of transmission over the Internet is 100% secure; we cannot guarantee absolute security.

08

International Transfers

Your data may be transferred to and processed in countries outside your own, including the United States. When transferring data from the EEA, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission, or other appropriate safeguards as required by applicable law.

09

Contact & Privacy Requests

For privacy inquiries or to exercise your data rights, write to:

You also have the right to lodge a complaint with your local supervisory authority (e.g., the ICO in the UK, the AP in the Netherlands, or the Serbian Commissioner for Information of Public Importance and Personal Data Protection).