Privacy Policy

Data Controller

The data controller responsible for your personal data is:

Introduction

NiroDigital d.o.o. ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, create an account, purchase our digital products, or use our services.

Information We Collect

Personal Information

We may collect personal information that you voluntarily provide when you:

• Fill out our contact form
• Subscribe to our newsletter
• Create an account (via Clerk authentication)
• Purchase a digital product (via Stripe checkout)
• Request a quote or consultation
• Communicate with us via email or other channels

This information may include your name, email address, phone number, company name, billing details, and any other information you choose to provide.

Information Collected via Third-Party Services

• Clerk — email address and authentication session data when you create an account or sign in.
• Stripe — payment card details (processed securely by Stripe; we never see your full card number), billing name, and transaction records.
• Resend — email address for transactional emails (purchase confirmations, account notifications) and newsletter delivery.

Automatically Collected Information

When you visit our website, we may automatically collect certain information about your device and usage patterns, including:

• IP address and general location
• Browser type and version
• Operating system
• Pages visited and time spent on each page
• Referring website or source
• Core Web Vitals performance metrics

This data is only collected when you consent to analytics cookies via our cookie banner.

Lawful Basis for Processing

Under the General Data Protection Regulation (GDPR), we process your personal data on the following legal bases:

• Consent — Newsletter subscriptions and analytics cookies. You can withdraw consent at any time.
• Performance of a contract — Processing purchases, delivering digital products, managing your account, and sending transactional emails.
• Legitimate interest — Fraud prevention, website security, and improving our services.
• Legal obligation — Retaining transaction records for tax and accounting purposes.

How We Use Your Information

We use the information we collect to:

• Process purchases and deliver digital products
• Manage your account and authentication
• Send transactional emails (confirmations, receipts)
• Send newsletter content (only with your explicit consent)
• Respond to your inquiries and provide customer support
• Improve our website and user experience
• Analyze usage patterns and trends (with consent)
• Protect against fraud and unauthorized access
• Comply with legal obligations

Data Processors

We share your personal data with the following third-party processors who act on our behalf:

Cookies and Tracking Technologies

We use essential cookies for authentication and payment security, and analytics cookies (with your consent) to understand how visitors use our website.

For full details on the cookies we use and how to manage them, please see our Cookie Policy.

Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. All payment data is processed securely by Stripe and is never stored on our servers. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

International Data Transfers

Some of our data processors are located in the United States. When your personal data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Processor-specific data protection agreements and certifications

Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, including to satisfy any legal, accounting, or reporting requirements. Transaction records are retained as required by applicable tax legislation.

Your Rights

Under the GDPR, you have the following rights regarding your personal data:

• The right to access your personal data
• The right to request correction of inaccurate data
• The right to request deletion of your data ("right to be forgotten")
• The right to restrict processing of your data
• The right to object to processing of your data
• The right to data portability
• The right to withdraw consent at any time
• The right to lodge a complaint with a supervisory authority

To exercise any of these rights, please contact us at info@nirodigital.com. We will respond to your request within 30 days.

Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.