1.1. Here at SSLFree, we prioritize the confidentiality and responsible handling of your personal data as part of your interaction with our suite of products ("Products") and platform ("Platform" collectively referred to as "Services"). Upholding the standards set forth by the General Data Protection Regulation (GDPR) and the Austrian data protection act, we ensure that your data is processed with utmost compliance and care.
1.2. In this Privacy Policy, our aim is to furnish you with comprehensive insights into our company, elucidating the scope, nature, and purposes behind the collection and utilization of your personal data.
1.3. For certain Products, we adhere strictly to the purposes and methods determined by you. In such instances, we furnish separate data processing agreements for your clarity and assurance.
2.1. General: We process personal data that you, as a user of our Services, entrust to us, whether during registration or while utilizing the Services ("Data").
2.2. Website Usage: When you visit our website, we solely process personal data communicated by your browser to our server. This includes vital information necessary for the proper display of the website and to ensure its stability and security, such as:
- IP address
- Date and time stamp
- Requested site and data volume transmitted
- Access status/HTTP status code
- Browser details and operating system information
2.3. Registration Data: Upon registration, we collect and process the following information:
- Registration details: name, date and password
- Personal information: email address
2.4. Product Use Data: Data generated during your use of the Services is processed solely as a processor, not as a controller. Please refer to the separate data processing agreement for further details.
3.1. Purpose: The processing of Data serves the following objectives ("Purposes"):
- Provision and enhancement of the Services
- Customer relationship management, including newsletters
- Ensuring the security and stability of the Services
3.2. Legal Basis: The legal basis for processing (Art. 6 GDPR) includes:
- Your explicit consent (Art. 6(1)(a) GDPR)
- Necessity for contract performance (Art. 6(1)(b) GDPR)
- Legitimate interests pursued by SSLFree or a third party (Art. 6(1)(f) GDPR)
3.3. Legitimate Interests: Our legitimate interests encompass monitoring, analyzing, and enhancing the Services, safeguarding their security and functionality, and delivering targeted advertisements.
4.1. Usage: We utilize Data provided by you solely for the Purposes outlined above.
4.2. Transfer: Data is shared with third parties only when necessary for the Purposes, in response to lawful requests from national authorities or courts, or with your prior consent.
4.3. Service Providers: We engage trusted third-party providers to process data on our behalf, including:
- Section Limited
- Amazon Web Services EMEA SARL
- Functional Software, Inc. via sentry.io
- The Rocket Science Group LLC d/b/a MailChimp
- Zendesk, Inc.
- Slack Technologies Limited
- Atlassian Pty Ltd
- Stripe Payments Europe, Limited
5.1. Storage Period: Your Data is retained as long as you remain a registered user of the Product. Beyond that, Data is stored only as required by law or necessity.
5.2. Deletion: Data is deleted upon revocation of consent, upon fulfillment of the user contract, or when storage becomes legally impermissible.
5.3. Security Measures: We employ encryption, authorization concepts, data backup protocols, and physical server security to safeguard against unauthorized access and ensure data integrity.
6.1. Exercising Rights: To exercise your rights under Sections 7.2 to 7.8, please contact us via email or mail as indicated in Section 1.4.
6.2. Consent Revocation: You can revoke consent for future data processing at any time, without affecting prior lawful processing.
6.3. Right of Access: You have the right to confirm whether your Data is being processed and to obtain specific information about its processing.
6.4. Right to Rectification: You can request the correction of inaccurate Data concerning you.
6.5. Right to Erasure: You have the right to request the deletion of your Data, subject to legal obligations.
6.6. Right to Restriction of Processing: You may request the restriction of Data processing under certain circumstances.
6.7. Right to Data Portability: You have the right to receive your Data in a structured, machine-readable format and transmit it to another controller.
6.8. Right to Object: You can object to Data processing at any time.
6.9. Right to Lodge a Complaint: If you believe that Data processing infringes applicable law, you have the right to lodge a complaint with a supervisory authority.
7.1. Definition: Our website utilizes cookies, small text files stored on your device by your browser, to enhance functionality and user experience.
7.2. Disabling Cookies: You can disable cookies through your browser settings, though this may impact website functionality.
7.3. Cookie Policy: For detailed information on cookies, please refer to our Cookie Policy.
8.1. Any changes to this Privacy Policy will be communicated directly within the Services. Material changes will require your confirmation, especially concerning your data protection rights.