How do we process your data?

We care about your privacy and want you to clearly understand what data we collect, why we collect it, and what your rights are. We operate in compliance with the GDPR, and your data is safe with us. Have additional questions? Feel free to contact us — our contact details can be found at the bottom of the page.

What data do we collect?

We collect data necessary for using our application, processing payments, and ensuring proper functionality of the service:

  • Account administrator data – first name, last name, email address, phone number (optional)

  • Company data – company name, address (street, postal code, city, country), VAT number, email address

  • Billing data – name or company name, address, VAT number, email address

  • Employee data – if added by the administrator, it may include first and last names

  • Cookies and technical data

Our application uses cookies to ensure its proper operation. Thanks to cookies:

  • You can stay logged in without re-entering your credentials

  • We can analyze website traffic and personalize content

Cookies may also come from third-party providers such as Google, Facebook, or Twitter. You can manage them in your browser settings.

For what purpose do we process your data?

We process your data to ensure the proper functioning of the application and to provide our services. Specifically, this includes:

  • Account management and access – enabling registration, login, and account management

  • Service delivery – processing data for billing and user support

  • Security maintenance – protecting accounts and preventing unauthorized access

  • Analysis and development – optimizing the application and tailoring it to user needs

  • Technical support and assistance – helping in case of technical issues

We do not use your data for any other purposes without your consent.

How long do we store your data?

We store your data for as long as necessary to provide our services and in accordance with applicable legal regulations:

  • Account data – until the account is deleted by the user or administrator

  • Billing data – for the period required by accounting and tax laws

  • Employee data – until deleted by the administrator

  • Technical data (e.g., cookies) – for the duration set in your browser settings or until manually deleted

You can request the removal of your data at any time — just contact us if you wish to do so.

What are your rights?

You have full control over your data. You may:

  • Access – check what data we store about you

  • Rectification – correct inaccurate or outdated data

  • Erasure – request the deletion of your data if it is no longer needed

  • Restriction of processing – request that the use of your data be limited

  • Objection – object to the processing of your data for specific purposes (note: in some cases, this may prevent you from using our service)

If you wish to exercise any of your rights, please contact us.
You also have the right to lodge a complaint with a supervisory authority if you believe your data is being processed unlawfully.

How do we protect your data?

We take the security of your data seriously and apply advanced technical and organizational safeguards:

  • Encryption – all data is encrypted, and the encryption method is not publicly disclosed. This applies to both data stored on the device and backup copies.

  • Server location – our servers are located within the European Economic Area, at a DigitalOcean data center in Frankfurt (more information available).

  • Server security – the server is not accessible via the public internet, and all communication between services takes place within a private (virtual) network.

  • Two-factor authentication (2FA) – access to the system is granted only to authorized personnel using two-factor authentication.

  • Biometric data – if the application supports biometric data, it is stored only on the user’s device and is never transmitted to the server. If this changes in the future, explicit user consent will be required.

  • Updates and monitoring – we regularly update our software and monitor systems to prevent potential threats.

Although these measures significantly reduce risks, no system can guarantee 100% security. That’s why we recommend using strong passwords and being mindful of your data.

For companies requiring additional data protection, we can provide a customized Non-Disclosure Agreement (NDA). If you’d like to safeguard detailed information related to our cooperation, please contact us — we’ll tailor the agreement to your needs.

How to contact us?

If you have any questions regarding the processing of your data or would like to exercise your rights, feel free to reach out to us:

📧 Email: [email protected]
📞 Phone: +48 456 456 001

You can also write to us at our company address:
🏢 Address: HDWR Global Sp. z o.o., Romana Dmowskiego 28, 63-000 Środa Wielkopolska, Poland