Privacy Policy
Last Updated: February 7, 2025
1. Introduction
Retenssion ("we," "us," or "our") is committed to protecting the privacy of our users ("you," "your"). This Privacy Policy describes how we collect, use, disclose, and protect your personal data when you use our website analytics service ("Service").
2. Data Controller
Retenssion is the data controller for the purposes of this Privacy Policy and is responsible for the processing of your personal data in accordance with the General Data Protection Regulation (GDPR), the Kosovo Law on the Protection of Personal Data, and other applicable data protection laws.
3. Information We Collect
We collect the following information from you:
- Account Information: Name, email address, and password when you create an account.
- Usage Data: IP address (anonymized), device information, mouse movements, clicks, time on page, and other interactions with our Service and your website.
- Payment Information: Payment details are processed by our third-party payment processor, Paddle, and are subject to their privacy policy.
- Feedback Data: Feedback you provide, which may be analyzed by our third-party AI provider, OpenAI, and is subject to their privacy policy.
4. How We Collect Information
We collect information through the following methods:
- Directly from you: When you create an account or provide feedback.
- Through cookies and local storage: We use cookies and local storage to collect usage data and personalize your experience.
- Through third-party integrations: We collect payment information through Paddle, authentication data through Clerk, and feedback data through OpenAI.
5. Purposes of Processing
We process your personal data for the following purposes:
- Providing and improving the Service: To operate, maintain, and improve the Service, personalize your experience, and conduct research and development.
- Communicating with you: To send you updates, marketing materials, and other information related to the Service.
- Processing payments: To process your payments for subscriptions and additional credits.
- Ensuring security: To protect against unauthorized access, misuse, or disclosure of your personal data.
- Complying with legal obligations: To comply with applicable laws and regulations.
6. Legal Basis for Processing
The legal basis for processing your personal data is:
- Your consent: For marketing communications and non-essential cookies.
- Contractual necessity: For providing the Service and processing payments.
- Legitimate interests: For improving the Service, ensuring security, and complying with legal obligations.
7. Data Sharing
We do not share your personal data with third parties except in the following circumstances:
- With your consent: When you provide explicit consent to share your data.
- With service providers: We share data with third-party service providers who assist us in providing the Service, such as Paddle for payment processing, Clerk for authentication, OpenAI for feedback analysis, Hetzner for hosting, and Supabase for data storage. These providers are contractually obligated to protect your data and use it only for the purposes we specify.
- For legal reasons: We may disclose your data to comply with applicable laws, regulations, legal processes, or governmental requests.
8. Data Security
We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, use, disclosure, alteration, or destruction. These measures include data encryption, access controls, and regular security assessments.
9. Data Retention
We retain your personal data for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. We retain usage data for 30 days after account deletion for service improvement and legal purposes.
10. Your Rights
You have the following rights regarding your personal data:
- Right of access: You have the right to request access to your personal data and information about how we process it.
- Right to rectification: You have the right to request correction of inaccurate or incomplete personal data.
- Right to erasure: You have the right to request deletion of your personal data, subject to certain exceptions.
- Right to restriction of processing: You have the right to request restriction of processing of your personal data in certain circumstances.
- Right to data portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another controller.
- Right to object: You have the right to object to the processing of your personal data based on legitimate interests or direct marketing.
- Right to withdraw consent: You have the right to withdraw your consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
To exercise your rights, please contact us at support@retenssion.com.
11. Automated Decision-Making
We use automated decision-making, including profiling, to personalize your experience and offer you relevant products and services. You have the right to object to automated decision-making and request human intervention.
12. International Data Transfers
We do not transfer your personal data outside of Kosovo.
13. Children's Privacy
Our Service is not intended for children under the age of 18. We do not knowingly collect personal data from children. If you believe we have inadvertently collected information from a child, please contact us to request deletion.
14. Changes to this Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by email or through the Service. Your continued use of the Service after the changes take effect constitutes your acceptance of the revised Privacy Policy.
15. Contact Us
If you have any questions or concerns about this Privacy Policy, please contact us at:
Retenssion
Prizren, Kosovo
Email: support@retenssion.com