Privacy Policy

1. Introduction

This Privacy Policy explains how Byteex Ltd ("we," "us," "our," or "Byteex") collects, uses, discloses, and protects personal information when you visit https://byteex.co and all its subdomains (collectively, the "Site") or use our services.

Byteex Ltd is a limited company registered in Cyprus, providing software and marketing services to ecommerce and online businesses.

Contact Information:

- Company Name: Byteex Ltd
- Address: Gladstonos 16, Paphos, 8046, Cyprus
- Email: hello@byteex.co
- Website: https://byteex.co

By using our Site or services, you agree to the collection and use of information in accordance with this Privacy Policy.

‍

2. Information We Collect

2.1 Information You Provide to Us

We collect information you voluntarily provide when you:
- Fill out forms on our Site
- Download digital resources
- Contact us for inquiries
- Schedule consultations or meetings
- Subscribe to our newsletter
- Engage with our services

This information may include:
- First and last name
- Email address
- Business website URL
- Phone number
- Company information (name, size, industry)
- General business-related questions
- Any other information you choose to provide

2.2 Information Collected Automatically

When you visit our Site, we automatically collect certain information about your device and browsing activity:
- IP address
- Browser type and version
- Device type and operating system
- Pages visited and navigation patterns
- Time spent on pages
- Referring website or source
- Approximate geographic location (country/city level)
- Click patterns and interactions
- Date and time of visits

2.3 Cookies and Tracking Technologies

We use cookies, pixels, tags, and similar tracking technologies to collect information about your browsing behavior. For detailed information, please see Section 5 below.

‍

3. How We Collect Information

3.1 Customer Relationship Management (CRM)

We use CRM and communication platforms including GoHighLevel and Pipedrive to manage customer information, communications, and business relationships.

3.2 Email Communications

We may use email service providers such as Google Workspace or other business email platforms to send and manage email communications.

3.3 Scheduling

We may use scheduling platforms such as Calendly or similar tools to facilitate meeting scheduling and calendar management.

3.4 Payment Processing

We may use payment processors such as Stripe or other payment service providers to process payments for our digital products and services. Payment processors collect and process payment information according to their own privacy policies. We do not store complete payment card details on our servers.

3.5 Analytics and Tracking Tools

Depending on the specific page, service, or campaign, we may use various analytics and tracking tools to understand user behavior, improve our services, and measure marketing effectiveness. The specific tools used may vary based on business needs and marketing activities.

Web Analytics:

We may use analytics tools such as Google Analytics, Microsoft Clarity, Hotjar, and Mixpanel to analyze website traffic, user behavior, session recordings, heatmaps, and engagement metrics.

Customer Data Platform:

We may use Segment to collect, unify, and route customer data to various analytics and marketing tools.

Tag Management:

We may use Google Tag Manager to manage and deploy marketing and analytics tags on our Site.

Advertising and Conversion Tracking:

We may use advertising pixels and conversion tracking from platforms including:
- Meta Pixel (Facebook and Instagram) - To measure ad performance, build targeted audiences, and enable remarketing
- Google Ads - To track conversions and optimize advertising campaigns
- LinkedIn Insight Tag - To measure LinkedIn ad effectiveness and enable remarketing
- X Pixel (Twitter) - To track conversions from X advertising
- Reddit Pixel - To measure Reddit ad performance and enable audience targeting

When active, these advertising tools allow us to show you relevant ads on social media and other platforms, measure campaign effectiveness, and build custom audiences.

Video Hosting:

We may use video hosting platforms including Vimeo, Loom, and Wistia to host and deliver video content. These platforms may collect viewing analytics when videos are embedded or viewed.

3.6 Website Hosting

Our website may be hosted using platforms such as Webflow or other hosting providers, which process technical data such as IP addresses and browser information necessary for website operation and security.

3.7 Additional Tools

We may use additional analytics, advertising, and tracking tools not specifically listed above to improve our services and measure marketing effectiveness. These tools operate similarly to those described and are subject to the same data protection standards.

‍

4. How We Use Your Information

We use the information we collect for the following purposes:

4.1 Service Delivery

- Provide and deliver our software and marketing services
- Deliver digital resources, guides, and educational materials you request
- Respond to your inquiries and provide customer support
- Schedule and manage meetings and consultations
- Process transactions and payments
- Communicate with you about our services

4.2 Marketing and Communications

- Send promotional emails and marketing communications
- Provide educational content and industry insights
- Send newsletters and service updates
- Inform you about new products, services, or features

When you download a resource or request information, we may send you relevant follow-up emails. You can unsubscribe from marketing emails at any time using the unsubscribe link in each email.

4.3 Analytics and Improvement

- Analyze how users interact with our Site
- Understand user preferences and behavior patterns
- Improve our website, services, and user experience
- Test new features and functionality
- Conduct research and analysis

4.4 Advertising

- Display targeted advertisements on third-party platforms
- Measure the effectiveness of our advertising campaigns
- Build custom and lookalike audiences for advertising
- Remarket to people who have visited our Site
- Optimize advertising spend and strategy

4.5 Legal, Security, and Business Operations

- Comply with legal obligations and regulations
- Protect against fraud, abuse, and security threats
- Enforce our terms of service and policies
- Resolve disputes and investigate issues
- Maintain business records and documentation
- Perform accounting, auditing, and business analysis

‍

5. Cookies and Tracking Technologies

5.1 What Are Cookies?

Cookies are small text files stored on your device when you visit a website. They help websites remember your preferences and track your activity.

5.2 Types of Cookies We Use

Strictly Necessary Cookies:

Essential for the Site to function properly. They enable core functionality such as security, network management, and accessibility. These cookies cannot be disabled.

Analytics Cookies:

Help us understand how visitors interact with our Site by collecting and reporting information. We use these to improve website performance and user experience.

Marketing/Advertising Cookies:

Track your browsing activity to deliver relevant advertisements and measure campaign effectiveness. They are used to build profiles of your interests and show you targeted ads on other platforms.

Functional Cookies:

Enable enhanced functionality and personalization, such as remembering your preferences and settings.

5.3 Third-Party Cookies

Our Site may use cookies from third-party services including Google, Meta (Facebook), Microsoft, LinkedIn, X (Twitter), Reddit, and other advertising and analytics platforms depending on which tools are active on specific pages or campaigns. These third-party cookies are governed by the respective privacy policies of those companies.

The specific third-party cookies present on any given page depend on which tracking and advertising tools are currently deployed for that page or campaign.

5.4 Cookie Consent

Where required by law (including under GDPR and ePrivacy Directive), we use a cookie consent mechanism that allows you to accept or reject non-essential cookies before they are set. You can withdraw your consent at any time by adjusting your cookie preferences.

5.5 Managing Cookies

Most web browsers allow you to control cookies through their settings. You can:
- View cookies stored on your device
- Delete existing cookies
- Block cookies from being set
- Set preferences for specific websites

Please note that disabling cookies may affect the functionality of our Site and limit your ability to use certain features.

Browser Settings:

- Chrome: Settings > Privacy and Security > Cookies
- Firefox: Options > Privacy & Security > Cookies
- Safari: Preferences > Privacy > Cookies
- Edge: Settings > Privacy > Cookies

5.6 Opt-Out of Targeted Advertising

You can opt out of targeted advertising through the following resources:
- Meta Ad Preferences: https://www.facebook.com/ads/preferences
- Google Ads Settings: https://adssettings.google.com
- LinkedIn Ad Settings: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
- Digital Advertising Alliance: http://optout.aboutads.info
- Network Advertising Initiative: http://optout.networkadvertising.org
- Your Online Choices (EU): http://www.youronlinechoices.eu

‍

6. Legal Basis for Processing (GDPR)

For users in the European Union, United Kingdom, and European Economic Area, we process your personal data based on the following legal grounds under the General Data Protection Regulation (GDPR):

6.1 Consent (Article 6(1)(a))

We process your data based on your consent when you:
- Download digital resources and provide your information
- Subscribe to our newsletter or marketing communications
- Accept non-essential cookies through our cookie banner
- Use advertising and tracking technologies

You have the right to withdraw your consent at any time without affecting the lawfulness of processing based on consent before withdrawal.

6.2 Contractual Necessity (Article 6(1)(b))

We process your data when necessary to:
- Deliver services you requested
- Process payments and transactions
- Fulfill our contractual obligations
- Take steps at your request before entering into a contract

6.3 Legitimate Interests (Article 6(1)(f))

We process data for our legitimate business interests when:
- Improving our services and website functionality
- Conducting business development and marketing (where not based on consent)
- Analyzing user behavior and preferences for service improvement
- Managing business operations and administration
- Protecting against fraud and security threats

We balance these interests against your rights and ensure processing does not override your fundamental rights and freedoms.

6.4 Legal Obligations (Article 6(1)(c))

We process data when necessary to comply with legal requirements, such as:
- Tax and accounting laws
- Regulatory obligations
- Valid legal requests from authorities

‍

7. How We Share Your Information

We respect your privacy and do not sell, rent, or trade your personal information to third parties. We share your information only in the following circumstances:

7.1 Service Providers

We share information with trusted third-party service providers who assist us in operating our business. These providers are contractually obligated to protect your information and use it only for the purposes we specify.

Our service providers may include:

CRM and Communication:

- GoHighLevel - Customer relationship management
- Pipedrive - Sales pipeline management
- Email service providers such as Google Workspace

Scheduling:

- Scheduling platforms such as Calendly

Payment Processing:

- Payment processors such as Stripe

Analytics and Data:

- Analytics platforms such as Google (Analytics, Ads, Tag Manager), Microsoft (Clarity), Hotjar, Mixpanel, and Segment

Advertising Platforms:

- Advertising networks such as Meta (Facebook and Instagram), LinkedIn, X (Twitter), and Reddit

Video Hosting:

- Video platforms such as Vimeo, Loom, and Wistia

Website Hosting:

- Hosting providers such as Webflow

The specific service providers we use may vary based on business needs and operational requirements.

7.2 Legal Requirements

We may disclose your information when required by law or in response to:
- Valid legal processes (subpoenas, court orders, legal proceedings)
- Government or regulatory requests
- Law enforcement agency requests
- Protection of our legal rights and property
- Investigation of fraud or security issues
- Protection of the safety of our users or the public

7.3 Business Transfers

If Byteex is involved in a merger, acquisition, sale of assets, or bankruptcy, your information may be transferred as part of that transaction. We will notify you of any such change and the choices you may have regarding your information.

7.4 With Your Consent

We may share your information with third parties when you explicitly consent or direct us to do so.

7.5 Testimonials and Case Studies

With your explicit written consent (as documented in our service contracts), we may publish your testimonials, reviews, and case studies on our website, marketing materials, and portfolio. These may include your name, company name, website, and feedback about our services.

7.6 Aggregated or De-Identified Data

We may share aggregated or de-identified information that cannot reasonably be used to identify you for research, marketing, analytics, or other business purposes.

‍

8. International Data Transfers

Byteex Ltd operates from Cyprus. Your personal information may be transferred to, stored, and processed in Cyprus or other countries where our service providers operate, including the United States and other jurisdictions outside the European Economic Area.

8.1 Safeguards for International Transfers

When we transfer personal data internationally, we ensure appropriate safeguards are in place to protect your information, including:
- Standard Contractual Clauses (SCCs) approved by the European Commission
- Adequacy decisions by relevant data protection authorities
- Your explicit consent for specific transfers, where required by law
- Other legally compliant transfer mechanisms under GDPR Article 46

8.2 US Data Transfers

Many service providers we may use (such as Google, Meta, Stripe, and others) are based in the United States. Following the Schrems II ruling, we rely on Standard Contractual Clauses and, where appropriate, supplementary measures to ensure adequate protection for data transferred to the US.

By using our services, you acknowledge and consent to the international transfer of your information as described in this Privacy Policy.

‍

9. Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.

9.1 Security Measures

Our security measures include:
- SSL/HTTPS encryption for all data transmitted through our website
- Secure servers and encrypted data storage
- Access controls and authentication mechanisms
- Regular security assessments and updates
- Employee training on data protection and confidentiality
- Contractual obligations with service providers to protect your data

9.2 Limitations

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your information using commercially reasonable means, we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of any passwords or account credentials.

‍

10. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

10.1 Retention Periods

Marketing and Communications:

We retain your contact information and marketing data until you unsubscribe from our communications or request deletion.

Customer Relationships:

Active customer data is retained for the duration of our business relationship and for a reasonable period thereafter to provide support and maintain records.

Transaction Records:

Financial and transaction records are retained for a minimum period as required by applicable tax and accounting laws (typically 7 years).

Analytics Data:

Aggregated and anonymized analytics data may be retained indefinitely as it cannot identify individuals.

Legal and Compliance:

Information may be retained longer when required by law, to resolve disputes, enforce agreements, or for fraud prevention.

10.2 Deletion

When we no longer need your information, we will securely delete or anonymize it in accordance with our data retention policies and applicable laws. You can request deletion of your information at any time by contacting us (see Section 11).

‍

11. Your Rights and Choices

You have certain rights regarding your personal information. The specific rights available to you depend on your location and applicable laws.

11.1 Rights for All Users

Right to Access:

You can request access to the personal information we hold about you.

Right to Correction:

You can request correction of inaccurate or incomplete information.

Right to Deletion:

You can request deletion of your personal information, subject to certain legal exceptions.

Right to Object:

You can object to certain types of processing of your information.

Right to Unsubscribe:

You can opt out of marketing emails by clicking the "unsubscribe" link in any email or contacting us directly.

Cookie Controls:

You can manage cookies and tracking technologies through your browser settings and our cookie preference center.

11.2 Additional Rights for EU/EEA/UK Users (GDPR)

If you are located in the European Union, European Economic Area, or United Kingdom, you have additional rights under the GDPR:

Right to Access (Article 15):

You have the right to obtain confirmation of whether we process your personal data and access to that data, including information about the purposes of processing, categories of data, and recipients.

Right to Rectification (Article 16):

You can request correction of inaccurate personal data and completion of incomplete data.

Right to Erasure / "Right to be Forgotten" (Article 17):

You can request deletion of your personal data when:
- The data is no longer necessary for the purposes collected
- You withdraw consent and there's no other legal basis
- You object to processing and there are no overriding legitimate grounds
- The data has been unlawfully processed
- Erasure is required by legal obligation

Right to Restriction of Processing (Article 18):

You can request that we limit how we use your personal data in certain situations, such as while verifying accuracy or assessing legitimate grounds for processing.

Right to Data Portability (Article 20):

You can request a copy of your personal data in a structured, commonly used, machine-readable format and have it transmitted to another controller where technically feasible.

Right to Object (Article 21):

You can object to processing based on legitimate interests or for direct marketing purposes. We will stop processing unless we demonstrate compelling legitimate grounds that override your interests.

Right to Withdraw Consent (Article 7(3)):

Where processing is based on your consent, you can withdraw consent at any time. This does not affect the lawfulness of processing before withdrawal.

Right to Lodge a Complaint (Article 77):

You have the right to lodge a complaint with a supervisory authority, particularly in your country of residence, place of work, or place of alleged infringement.

Cyprus Supervisory Authority:

- Name: Office of the Commissioner for Personal Data Protection
- Website: http://www.dataprotection.gov.cy
- Email: commissioner@dataprotection.gov.cy
- Address: 1 Iasonos Street, 1082 Nicosia, Cyprus
- Phone: +357 22 818 456

Automated Decision-Making:

We do not use automated decision-making or profiling that produces legal or similarly significant effects concerning you.

11.3 Additional Rights for California Residents (CCPA/CPRA)

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

Right to Know (§1798.100):

You can request disclosure of:
- Categories of personal information collected about you
- Categories of sources from which information was collected
- Business or commercial purposes for collecting or selling information
- Categories of third parties with whom we share information
- Specific pieces of personal information we collected about you

Right to Delete (§1798.105):

You can request deletion of personal information we collected from you, subject to certain exceptions (e.g., completing transactions, legal compliance, fraud detection).

Right to Correct (§1798.106):

You can request correction of inaccurate personal information we maintain about you.

Right to Opt-Out of Sale/Sharing (§1798.120):

While we do not sell personal information for monetary consideration, we share information with advertising partners for cross-context behavioral advertising (targeted ads). You can opt out of this sharing.

Right to Limit Use of Sensitive Personal Information (§1798.121):

We do not use or disclose sensitive personal information for purposes beyond those permitted under CCPA.

Right to Non-Discrimination (§1798.125):

We will not discriminate against you for exercising your CCPA rights, including by:
- Denying goods or services
- Charging different prices or rates
- Providing different levels of quality
- Suggesting you'll receive different prices or quality

Shine the Light Law (Civil Code §1798.83):

California residents can request information about personal information disclosed to third parties for direct marketing purposes during the preceding calendar year.

Financial Incentives:

We do not offer financial incentives for the collection, sale, or deletion of personal information.

11.4 How to Exercise Your Rights

To exercise any of these rights, please contact us at:

- Email: hello@byteex.co
- Subject Line: "Privacy Rights Request"

Please include in your request:

- Your full name
- Email address associated with our services
- Specific right(s) you wish to exercise
- Detailed description of your request
- Any relevant details to help us process your request

11.5 Verification Process

To protect your privacy and security, we will verify your identity before processing requests. We may:
- Ask for additional information to confirm your identity
- Request government-issued identification for certain requests
- Contact you using the email address on file

11.6 Response Time

EU/UK Requests:

We will respond within 30 days (extendable by 60 days for complex requests). We will inform you of any extension and the reasons for delay.

California Requests:

We will respond within 45 days (extendable by 45 days if necessary). We will inform you of any extension and the reasons for delay.

Other Requests:

We will respond as soon as reasonably possible, typically within 5-7 business days for simple inquiries.

11.7 Authorized Agents

You may designate an authorized agent to make requests on your behalf. We will require:
- Written authorization signed by you
- Proof of the agent's identity
- Verification of your identity

‍

12. Children's Privacy

Our services are intended for businesses and individuals aged 18 years and older. We do not knowingly collect personal information from anyone under 18 years of age.

If you are under 18, please do not provide any personal information through our Site or services.

If we learn that we have collected personal information from someone under 18 without verification of parental consent, we will delete that information as quickly as possible.

If you believe we have collected information from someone under 18, please contact us immediately at hello@byteex.co.

‍

13. Third-Party Links and Services

Our Site may contain links to third-party websites, services, or content that are not owned or controlled by Byteex. This Privacy Policy does not apply to those third-party sites or services.

We are not responsible for the privacy practices, content, policies, or security of third-party websites or services. Each third-party service has its own privacy policy that governs how they collect, use, and protect your information.

We encourage you to review the privacy policies of any third-party sites or services you visit or use.

When you leave our Site or interact with third-party services (such as social media platforms, payment processors, video platforms, or advertising networks), their privacy policies and terms of service govern your interaction with those services.

‍

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

14.1 Notification of Changes

When we make changes, we will:
- Post the updated Privacy Policy on this page
- Update the "Last Updated" date at the top
- For material changes, provide additional notice such as:
 - Email notification to registered users
 - Prominent notice on our website homepage
 - Banner notification when you visit our Site

14.2 Your Continued Use

Your continued use of our Site or services after any changes to this Privacy Policy constitutes your acceptance of the updated policy. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

14.3 Material Changes

If we make material changes that significantly affect your rights or how we use your information, we will provide more prominent notice and, where required by law, obtain your consent before the changes take effect.

‍

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Byteex Ltd

- Email: hello@byteex.co
- Address: Gladstonos 16, Paphos, 8046, Cyprus
- Website: https://byteex.co

For Privacy Inquiries:

Please email us at hello@byteex.co with "Privacy Inquiry" or "Privacy Rights Request" in the subject line.

Response Time:

We aim to respond to all general inquiries within 5-7 business days. For formal rights requests under GDPR or CCPA, please see Section 11 for specific response timeframes.

‍

16. Additional Information

16.1 Do Not Track Signals

Some web browsers have a "Do Not Track" (DNT) feature that signals websites you visit that you do not want your online activity tracked. Currently, there is no universal standard for how DNT signals should be interpreted.

Our Site does not currently respond to DNT signals. However, we provide you with various options to control cookies and tracking as described in Section 5, including cookie consent mechanisms and browser settings.

16.2 Marketing Preferences

You can manage your marketing preferences at any time by:
- Clicking "unsubscribe" in any marketing email
- Contacting us at hello@byteex.co to update your preferences
- Adjusting cookie settings for advertising tracking

Unsubscribing from marketing emails will not affect transactional or service-related communications that are necessary for our business relationship (such as order confirmations, service notifications, or responses to your inquiries).

16.3 Business-to-Business (B2B) Communications

As a B2B service provider, we process business contact information (business email addresses, work phone numbers, company information) for legitimate business purposes under applicable laws.

When you provide business contact information, we may use it for:
- Business communications and relationship management
- Marketing of business services relevant to your industry
- Industry insights and educational content
- Business development activities
- Professional networking

‍

Effective Date: This Privacy Policy is effective as of the date indicated at the top of this document.

Version: 1.0

Language: This Privacy Policy is provided in English. In case of any discrepancy between translations, the English version shall prevail.

‍

© 2024 Byteex Ltd. All rights reserved.