Privacy Policy

1. Introduction

DeviceSDK ("we," "us," "our," or "Company") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services, in compliance with the General Data Protection Regulation (GDPR) and other applicable EU data protection laws.

2. Information We Collect

2.1 Information You Provide Directly

• Account registration information (name, email, password)
• Profile information
• Communication preferences
• Support requests and correspondence
• Payment information (processed securely through third-party providers)

2.2 Information Collected Automatically

• Device information (IP address, browser type, operating system)
• Usage data (pages visited, time spent, links clicked)
• Cookies and similar tracking technologies
• Location data (if permitted)

3. Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds under GDPR Article 6:

• Consent: Where you have explicitly consented to the processing
• Contract: Where processing is necessary to perform our contract with you
• Legal Obligation: Where we are required by law to process your data
• Legitimate Interests: Where we have a legitimate business interest that does not override your rights

4. How We Use Your Information

We use the information we collect for the following purposes:

• To provide, maintain, and improve our services
• To process transactions and send related information
• To send promotional communications (with your consent)
• To respond to your inquiries and support requests
• To monitor and analyze trends, usage, and activities
• To comply with legal obligations
• To prevent fraudulent transactions and other illegal activities

5. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information with:

• Service providers who assist us in operating our website and conducting our business
• Legal authorities when required by law
• Business partners with your explicit consent

All third parties are bound by confidentiality agreements and are required to comply with GDPR and applicable data protection laws.

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law.

• Account data: Retained for the duration of your account plus 30 days after deletion
• Transaction data: Retained for 7 years for tax and legal compliance
• Marketing data: Retained until you unsubscribe
• Log data: Retained for 90 days

7. Your Rights Under GDPR

You have the following rights regarding your personal data:

• Right of Access: You can request a copy of your personal data
• Right to Rectification: You can correct inaccurate or incomplete data
• Right to Erasure: You can request deletion of your data ("right to be forgotten")
• Right to Restrict Processing: You can limit how we use your data
• Right to Data Portability: You can receive your data in a portable format
• Right to Object: You can object to certain types of processing
• Right to Lodge a Complaint: You can file a complaint with your national data protection authority

To exercise any of these rights, please contact us at support@devicesdk.com.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction.

• Encryption of data in transit and at rest
• Secure authentication mechanisms
• Regular security audits and assessments
• Access controls and role-based permissions
• Employee training on data protection

9. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience. You can control cookie preferences through your browser settings.

• Essential Cookies: Required for site functionality
• Analytics Cookies: To understand how you use our site
• Marketing Cookies: To deliver personalized content (with consent)

10. International Data Transfers

If we transfer your data outside the EU/EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions, to comply with GDPR requirements.

11. Children's Privacy

Our Service is not directed to children under 16 years of age. We do not knowingly collect personal data from children under 16. If we become aware that we have collected data from a child under 16, we will delete such information promptly.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by email or by posting a notice on our website. Your continued use of the Service after such modifications constitutes your acceptance of the updated Privacy Policy.