PRIVACY POLICY

(GDPR COMPLIANT)

1. Data Controller The entity responsible for the processing of your personal data (Data Controller) is: BitBlockLabs SRL Stoinesti 4, Com. Craiva 317102, Jud. Arad, Romania Email:info@sonarsignal.org

2. What Data We Collect & How We Use It We strictly adhere to the principles of the General Data Protection Regulation (GDPR). We collect and process data only when necessary:

  • Website Hosting & Tracking (Squarespace & Google): Our website is hosted on Squarespace. We use basic tracking tools (e.g., Google Analytics) integrated via Squarespace to understand user behavior. This requires cookies. Legal Basis: Art. 6(1)(a) GDPR (Your Consent via our Cookie Banner).

  • App & Backend Infrastructure (Singapore): When you use the SonarSignal app, your data interacts with our backend servers located in Singapore. We do not track your individual behavioral data within the app.

  • Pro-Channel & Telegram Bot: To manage your Pro-subscription, we utilize our proprietary, custom-built Telegram Bot. We collect your Telegram ID, Name, and Email to grant you access and verify your active subscription. Legal Basis: Art. 6(1)(b) GDPR (Contractual Necessity).

  • Payments (PayPal): All payments are processed securely via PayPal. We do not store your credit card or bank details. We only receive a payment token, your name, and your email to confirm the transaction. Legal Basis: Art. 6(1)(b) GDPR.

  • Newsletter: If you subscribe to our newsletter, we require a Double Opt-In. We use your email solely to send you market updates and SonarSignal news. You can unsubscribe at any time via the link in the email. Legal Basis: Art. 6(1)(a) GDPR (Your Consent).

3. International Data Transfers (Outside the EU/EEA) Since our backend servers are located in Singapore (a non-EU country), your data may be transferred outside the European Economic Area. We safeguard this transfer by implementing the European Commission’s Standard Contractual Clauses (SCCs) to ensure your data receives a GDPR-equivalent level of protection.

4. Your GDPR Rights Under the GDPR, you have the right to:

  • Request access to your personal data.

  • Request correction or deletion of your data.

  • Withdraw your consent (e.g., for cookies or newsletters) at any time.

  • Request data portability. To exercise these rights, please contact us at the email provided above.