Pritect BeaconPritect Beacon

Legal

Privacy Policy

Last updated: March 2025

1. Who We Are

Pritect Beacon is operated by White Label Consultancy AS, a company registered in Norway (organisation number: forthcoming). We are the data controller for personal data collected through this website and the Beacon platform itself.

Contact: privacy@pritect.ai

2. Data We Collect

We collect the following categories of personal data:

  • Account data: Name, email address, organisation name, and billing information provided during registration.
  • Usage data: Log data, IP addresses, browser type, pages visited, and feature interactions within the dashboard.
  • Consent records: When you deploy Pritect Beacon on your site, we store consent decisions on your behalf (visitor IP hash, regulation applied, categories accepted/rejected, and timestamp).
  • Communication data: Emails and support messages you send us.

3. Legal Basis for Processing

We process your personal data on the following legal bases:

  • Contract: To provide and manage the Service you have subscribed to.
  • Legitimate interests: To improve the Service, prevent fraud, and ensure security.
  • Legal obligation: To comply with applicable laws and regulations.
  • Consent: For optional communications such as newsletters (where applicable).

4. How We Use Your Data

We use your data to:

  • Provide, operate, and maintain the Pritect Beacon Service
  • Process payments and send billing communications
  • Respond to support requests and inquiries
  • Send product updates and security notices
  • Comply with legal obligations
  • Detect and prevent fraudulent or abusive activity

5. Data Sharing

We do not sell your personal data. We share data only with trusted sub-processors necessary to deliver the Service, including:

  • Supabase Inc. — database and authentication infrastructure (EU data residency)
  • Stripe Inc. — payment processing
  • Resend Inc. — transactional email delivery
  • Vercel Inc. — hosting and edge infrastructure

All sub-processors are bound by Data Processing Agreements and comply with GDPR requirements.

6. Data Retention

We retain account data for as long as your account is active, and for up to 2 years after account closure for legal and accounting purposes. Consent records are retained for 5 years to support legal defensibility requirements. You may request deletion of your data at any time (see Your Rights below).

7. Your Rights

Under GDPR and applicable privacy laws, you have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate data
  • Request erasure of your data
  • Restrict or object to processing
  • Data portability
  • Withdraw consent at any time (where processing is based on consent)
  • Lodge a complaint with your national data protection authority

To exercise these rights, contact privacy@pritect.ai. We will respond within 30 days.

8. Cookies

This website uses strictly necessary cookies to maintain your session and authentication state. We do not use analytics or advertising cookies on the Pritect Beacon marketing site without your consent.

9. International Transfers

Your data is primarily processed within the European Economic Area (EEA). Where data is transferred outside the EEA, we ensure adequate safeguards are in place including Standard Contractual Clauses (SCCs) as approved by the European Commission.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated to you via email or a prominent notice in the dashboard. Continued use of the Service after changes constitutes acceptance of the updated policy.

11. Contact

For privacy-related enquiries, contact our privacy team at privacy@pritect.ai. Our registered address is Oslo, Norway.