Pleron Labs acts as Data Controller for the personal data processed through this website. We are fully committed to GDPR compliance and the protection of your privacy.
1. Data We Collect
We collect only the data necessary for the purposes described in this policy. This may include:
- Contact information: name, email address, phone number (when voluntarily submitted via contact forms)
- Business information: company name, role, and project requirements (shared during client onboarding)
- Technical data: IP address, browser type, pages visited, and time spent (collected automatically via cookies and analytics)
- Communication data: emails, messages, and meeting notes exchanged in the course of business
2. Legal Basis for Processing
We process your personal data under the following legal bases:
- Contractual necessity: to perform services you have requested or contracted with us
- Legitimate interests: to improve our services, respond to inquiries, and manage our business operations
- Legal obligations: to comply with applicable Italian and EU law
- Consent: where you have explicitly opted in, such as for marketing communications
3. How We Use Your Data
Your data is used exclusively for:
- Responding to your inquiries and project requests
- Delivering contracted software development services
- Sending project updates, invoices, and contractual communications
- Improving the performance and content of our website (analytics only)
- Legal and tax compliance obligations
“We never sell your data. We never share it without your knowledge. Privacy is a right, not a feature.”
4. Data Sharing & Third Parties
Pleron Labs does not sell, rent, or trade your personal data. We may share data with trusted third-party service providers strictly necessary for our operations (e.g., cloud hosting providers, email services, accounting software), all of whom are bound by data processing agreements. We may also disclose data where required by law or legal proceedings.
5. International Data Transfers
Our team works across multiple countries. Where personal data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission, in accordance with GDPR requirements.
6. Data Retention
We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected. Client project data is typically retained for 5 years following project completion for legal and tax purposes. Contact form submissions are retained for 2 years. You may request deletion at any time, subject to our legal obligations.
7. Your Rights
Under the GDPR, you have the right to:
- Access: request a copy of the personal data we hold about you
- Rectification: request correction of inaccurate or incomplete data
- Erasure: request deletion of your data ('right to be forgotten')
- Restriction: request that we limit the processing of your data
- Portability: request your data in a structured, machine-readable format
- Objection: object to processing based on legitimate interests
- Withdraw consent: at any time, where processing is based on consent
To exercise any of these rights, please contact us at hello@pleronlabs.com We will respond within 30 days.
8. Security
We implement appropriate technical and organisational measures to protect your data against unauthorized access, alteration, disclosure, or destruction. This includes encrypted communications, access controls, and regular security reviews. However, no internet transmission is entirely secure, and we cannot guarantee absolute security.
9. Cookies
This website uses cookies to improve your browsing experience and to collect anonymous analytics data. Please refer to our Cookie Policy for full details.
10. Supervisory Authority
If you believe your data protection rights have been violated, you have the right to lodge a complaint with the Data Protection Authority.
11. Contact
For any privacy-related inquiries, please contact: Pleron Labs — hello@pleronlabs.com