Privacy Policy

1. Data Controller

The data controller for the Website and the App is Buinsoft, headquartered in Prague, Czech Republic, an IT consulting and software development company. You can reach us at info@buinsoft.com.

2. Information We Collect

We only collect the minimum data needed to operate the Website and the App and respond to your requests:

• Contact / quote form: full name, e-mail address, company name (optional), and the content of your message. This information is delivered to info@buinsoft.com and used solely to reply to your enquiry or send you a proposal.
• Cookies and localStorage: technical items needed to keep your session and remember your preferences (language, theme, cookie-consent choice). These are managed via the on-site cookie consent banner.
• Server access logs: standard request metadata (IP address, user agent, timestamp) retained briefly for security and abuse prevention.

3. What We Do NOT Do

• We do NOT use advertising SDKs.
• We do NOT perform cross-app or cross-site tracking.
• We do NOT use Apple's IDFA (Identifier for Advertisers).
• We do NOT sell your personal data.
• We do NOT use third-party analytics that profile individual users.

4. Purposes & Legal Basis

We process your data under the following GDPR Art. 6(1) and KVKK Art. 5 legal bases:

• Performance of a contract / pre-contractual steps (Art. 6(1)(b) GDPR) — to respond to your contact-form enquiry.
• Legitimate interests (Art. 6(1)(f) GDPR) — to operate, secure, and improve the Website and App.
• Consent (Art. 6(1)(a) GDPR) — for non-essential cookies, given via the cookie banner and withdrawable at any time.
• Legal obligation (Art. 6(1)(c) GDPR) — where required by EU or Czech law.

5. Sharing With Third Parties

We do not sell or rent personal data. We share data only with infrastructure providers strictly necessary to operate the service:

• Hosting / server provider for the Website and App backend, located in the EU.
• E-mail delivery provider used to forward contact-form submissions to info@buinsoft.com (Google Workspace / Gmail SMTP).
• Authorities, where disclosure is required by law.

6. Data Retention

Contact-form messages are retained in our mailbox for as long as necessary to handle your enquiry and the subsequent business relationship, then archived or deleted. Access logs are retained for up to 30 days. You can request earlier deletion at any time (see Section 8).

7. International Transfers

Our infrastructure is primarily based in the European Union. Where data is processed outside the EU/EEA (e.g. by an e-mail provider), we rely on EU Standard Contractual Clauses or equivalent safeguards.

8. Your Rights

Under the GDPR and the KVKK you have the right to: access your personal data, rectify inaccurate data, request erasure, restrict or object to processing, data portability, and withdraw consent at any time. EU residents may also lodge a complaint with their local Data Protection Authority (in the Czech Republic: Úřad pro ochranu osobních údajů). Turkish residents may lodge a complaint with the KVKK (Kişisel Verileri Koruma Kurumu).

To exercise any of these rights, please e-mail info@buinsoft.com. We will respond within the statutory deadlines (30 days under the GDPR, 30 days under the KVKK).

9. Cookies

The Website uses strictly necessary cookies (and localStorage entries) to remember your language and theme preferences and your cookie-consent choice. Any non-essential cookies, including those that may be set by Google Tag Manager if you accept analytics in the consent banner, are loaded only after explicit consent. You can revise your consent at any time via the cookie banner. The iOS App does not use cookies; it stores preferences locally on your device only.

10. Children's Data

The Website and App are not directed at children under the age of 13 (or 16 in countries where this is the GDPR digital-consent age). We do not knowingly collect data from children. If you believe a child has provided us with personal data, please contact us so we can delete it.

11. Security

We protect your data using HTTPS/TLS encryption, restricted access to mailboxes, and standard server-hardening practices. No method of transmission or storage is 100% secure; we cannot guarantee absolute security.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via the Website. The current version is always available at https://www.buinsoft.com/privacy.