Privacy Policy for rflogs.io

Effective Date: September 23, 2024

1. Introduction and Scope

This Privacy Policy explains how Ohjelmistowerstas Oy (Business ID: 3301313-1) collects, uses, and protects your personal information when you use the rflogs.io service. We are committed to safeguarding your privacy and ensuring compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and India's Information Technology Rules (SPDI).

This policy applies to all users, regardless of location. Please review it carefully, as different parts may apply based on your location.

2. Information We Collect

2.1 Personal Information

We may collect the following information:

• Name
• Email address
• GitHub username and ID (if using GitHub to log in)

2.2 Usage Data

We may automatically collect data when you use our services, including:

• IP address
• Browser type and version
• Operating system
• Access times and dates
• Pages visited on our website

2.3 Uploaded Content

You may upload test results and artifacts to rflogs.io. This data will be stored as part of your usage of our service.

2.4 Cookies and Tracking Technologies

We use essential cookies to ensure basic functionality, specifically for session management using the SessionMiddleware from Starlette. These cookies are necessary for the operation of the service. You can configure your browser to refuse cookies or to alert you when cookies are being sent, but some parts of the service may not function properly without them.

2.5 Children’s Privacy

Our services are not intended for users under 13 years of age. We do not knowingly collect data from children under this age. If we become aware that we have collected personal data from a child under 13 without parental consent, we will take steps to remove that information from our servers.

3. How We Use Your Data and Legal Basis

We process your data for the following purposes:

• To provide and maintain our service
  Legal basis: Performance of a contract
• To notify you about changes to our services
  Legal basis: Legitimate interests
• To enable interactive features
  Legal basis: Consent
• To provide customer support
  Legal basis: Performance of a contract
• To monitor service usage and performance
  Legal basis: Legitimate interests
• To detect and prevent security or technical issues
  Legal basis: Legitimate interests

4. Data Storage, Security, and International Transfers

4.1 Data Storage

Your data is stored on secure servers primarily located within the European Economic Area (EEA). We implement technical and organizational safeguards to protect your data against unauthorized access, alteration, disclosure, or destruction.

4.2 International Data Transfers

We may transfer your data outside your home country. For users in the EU, any transfers outside the EEA are made with appropriate safeguards, such as Standard Contractual Clauses (SCCs), to comply with GDPR. For Indian users, we follow the SPDI Rules, ensuring appropriate protection during cross-border data transfers.

5. Data Breach Notification

In the event of a data breach that poses a risk to your rights and freedoms, we will notify you and the relevant supervisory authority within 72 hours, as required by GDPR.

6. User Rights

Depending on your location, you have the following rights:

• Access to your data
• Correction of inaccurate data
• Deletion of your data
• Restriction of data processing
• Data portability
• Right to object to processing

For U.S. (CCPA) users, you may also:

• Request details of the personal information collected
• Opt out of data sales (though we do not sell personal data)

To exercise your rights, contact us at privacy@rflogs.io.

7. Grievance Officer (For Users in India)

In compliance with India's SPDI Rules, we have appointed a Grievance Officer to address your concerns:

Grievance Officer: Mikko Korpela
Email: privacy@rflogs.io
Response Time: We will acknowledge your complaint within 48 hours and aim to resolve it within 30 days.

8. Third-Party Services

We use GitHub for authentication. Please review GitHub’s privacy policy to understand how they handle your personal data. As GitHub is based in the U.S., your data may be transferred there.

9. Changes to this Policy

We may update this Privacy Policy periodically. Changes will be posted on this page, and significant updates will be communicated to you via email or a prominent notice on our website.

10. Automated Decision Making

We do not use automated decision-making or profiling with your personal data.

11. Complaints and Contact Information

If you have a privacy complaint, you can lodge it with a supervisory authority. In Finland, contact the Office of the Data Protection Ombudsman. In other regions, refer to your local data protection authority.

For questions, contact us at privacy@rflogs.io.

12. Contact Information

Ohjelmistowerstas Oy
Business ID: 3301313-1
Email: privacy@rflogs.io