Privacy Policy for LaunchDirectories

1. Data Controller Information

Data Controller:
Krzysztof Cichy
Website: https://launchdirectories.com
Email: hello@launchdirectories.com

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website LaunchDirectories. We are committed to protecting your privacy in accordance with the General Data Protection Regulation (GDPR) and Polish data protection laws.

2. Legal Basis for Processing

We process your personal data based on the following legal grounds:

• Consent (Art. 6(1)(a) GDPR): For analytics and marketing communications
• Contract Performance (Art. 6(1)(b) GDPR): For processing payments and delivering services
• Legitimate Interests (Art. 6(1)(f) GDPR): For website functionality, security, and improvement
• Legal Obligation (Art. 6(1)(c) GDPR): For compliance with tax and legal requirements

3. Personal Data We Collect

3.1 Information You Provide Directly

• Contact Information: Name, email address when you contact us or subscribe to our services
• Payment Information: Billing details, payment method information for sponsorships and paid services (processed through secure third-party providers)
• Communication Data: Content of emails, support requests, and other communications with us
• Service-related Data: Information you provide when using our auto-submission or sponsorship services

3.2 Information We Collect Automatically

• Website Analytics: Page views, time spent on site, referral sources, user journey (via Simple Analytics - privacy-focused, no personal identification)
• Technical Data: IP address, browser type, device information, operating system, screen resolution
• Usage Data: Pages visited, features used, search queries, interaction patterns
• Security Data: Server logs for security monitoring and fraud prevention

3.3 Cookies and Tracking Technologies

We use the following types of cookies:

• Essential Cookies: Required for website functionality, user authentication, and security
• Analytics Cookies: Simple Analytics cookies for understanding website usage (anonymized)
• Functional Cookies: Remember your preferences and settings
• Third-party Cookies: From integrated services and payment processors

4. Third-Party Services and Data Sharing

4.1 Analytics and Performance

• Simple Analytics: Privacy-focused analytics that collect anonymized visitor statistics without personal identification or tracking
• Google Search Console: Search performance data to improve our website's visibility and user experience

4.2 Payment Processing

• Payment Processors: Secure handling of payment information for sponsorships and services (we do not store payment card details)
• Stripe/PayPal: Payment processing with industry-standard security measures

We only share personal data with third parties when necessary to provide our services, comply with legal obligations, or with your explicit consent. All third-party processors are bound by data protection agreements.

5. How We Use Your Personal Data

We use your personal data for the following purposes:

• Service Delivery: Processing sponsorships, auto-submission services, and customer support
• Communication: Responding to inquiries, sending service updates, and marketing communications (with consent)
• Website Improvement: Analyzing usage patterns to improve user experience and website functionality
• Security: Protecting against fraud, unauthorized access, and maintaining system security
• Legal Compliance: Meeting tax obligations, legal requirements, and regulatory compliance
• Business Operations: Managing directory listings, processing payments, and maintaining service quality

6. Data Retention

We retain personal data only as long as necessary for the purposes outlined in this policy:

• Contact Data: Until you withdraw consent or request deletion
• Payment Data: As required by tax and accounting laws (typically 5-7 years)
• Analytics Data: Anonymized data retained for statistical analysis
• Communication Records: 3 years for customer service quality and legal purposes
• Security Logs: 1 year for security monitoring and incident response

7. Your Rights Under GDPR and Polish Law

As a data subject, you have the following rights:

• Right of Access (Art. 15 GDPR): Request information about your personal data we process
• Right of Rectification (Art. 16 GDPR): Request correction of inaccurate or incomplete data
• Right of Erasure (Art. 17 GDPR): Request deletion of your personal data ("right to be forgotten")
• Right to Restrict Processing (Art. 18 GDPR): Request limitation of data processing
• Right to Data Portability (Art. 20 GDPR): Request transfer of your data to another service
• Right to Object (Art. 21 GDPR): Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent for processing at any time
• Right to File a Complaint: Lodge a complaint with the Polish Data Protection Authority (UODO)

To exercise these rights, contact us at hello@launchdirectories.com. We will respond within 30 days as required by law.

8. International Data Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). We ensure appropriate safeguards are in place:

• Adequacy Decisions: Transfers to countries with adequate data protection levels
• Standard Contractual Clauses: EU-approved contracts for data protection
• Certification Schemes: Providers certified under privacy frameworks
• Binding Corporate Rules: For multinational service providers

9. Data Security

We implement appropriate technical and organizational measures to protect your personal data:

• Encryption: Data encrypted in transit and at rest
• Access Controls: Strict access controls and authentication
• Regular Updates: Security patches and system updates
• Monitoring: Continuous monitoring for security threats
• Incident Response: Procedures for data breach response
• Staff Training: Regular training on data protection best practices

10. Data Breach Notification

In the event of a data breach that is likely to result in a high risk to your rights and freedoms, we will:

• Notify the relevant supervisory authority within 72 hours of becoming aware of the breach
• Inform affected individuals without undue delay if there is a high risk to their rights and freedoms
• Provide clear information about the nature of the breach and steps being taken to address it
• Implement immediate measures to contain the breach and prevent further unauthorized access

11. Children's Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16 without verification of parental consent, we will take steps to delete that information.

If you are a parent or guardian and believe your child has provided us with personal data, please contact us at hello@launchdirectories.com.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes, we will:

• Update the "Last Updated" date at the top of this policy
• Notify users of significant changes through email or prominent website notice
• Provide a clear summary of changes made
• Give users reasonable time to review changes before they take effect

13. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: