fbpx

Privacy Policy

1. Responsible Body
Praxagoras GmbH
Rudolfstr. 28/8, 4040 Linz, Austria
Email: [email protected]

2. Data Processing Activities

2.1 Processing Related to Potential Customers
Purpose: To contact potential customers regarding offers and services.
Data: Name, email, phone number, communication history.
Legal Basis:
- Article 6(1)(f) GDPR: Legitimate interest in contacting potential customers.
- Article 6(1)(b) GDPR: Necessary for pre-contractual measures upon request.
Storage Period: Data will be retained until a decision is made regarding the offer or until required by legal obligations.
Recipients: Internal employees responsible for sales and customer contact.

2.2 Processing in the Event of a Purchase
Purpose: To complete transactions, maintain accounts, and manage billing.
Data: First name, last name, payment details, email address, physical address, subscription details.
Legal Basis:
- Article 6(1)(b) GDPR: Necessary for contract fulfillment.
Storage Period: Data will be retained for the duration of the customer relationship and as required by statutory retention periods (e.g., 7 years under Austrian commercial law (UGB)).
Recipients: Internal accounting staff, external tax advisors, and payment service providers.

2.3 Website Management
Purpose: To maintain website functionality, security, and troubleshoot issues.
Data: Log data (IP address, browser type, access time), subscription purchase history.
Legal Basis:
- Article 6(1)(f) GDPR: Legitimate interest in ensuring website performance and security.
- For cookies or tracking technologies, consent is required under ePrivacy Directive 2002/58/EC and GDPR.
Retention Duration: Data will be retained for as long as necessary for troubleshooting and security, typically no longer than 6 months unless required for ongoing investigations.
Recipients: Internal technical team members responsible for maintenance.

2.4 CRM System (HubSpot)
Purpose: Customer relationship management and communication.
Data: Customer contact information, communication history, purchase history.
Legal Basis:
- Article 6(1)(f) GDPR: Legitimate interest in managing customer relationships.
- Article 6(1)(a) GDPR: Consent, if used for marketing communications.
Storage Period: Data will be retained for the duration of the customer relationship or until the customer requests deletion.
Recipients: Internal employees responsible for customer management. Data may be processed by HubSpot, which complies with GDPR through Standard Contractual Clauses and operates in the EEA and the United States.

2.5 Rendering and Data Transfers
Purpose: To process rendering jobs submitted by users.
Data: Uploaded project files, metadata (e.g., frame ranges, rendering settings).
Legal Basis:
- Article 6(1)(b) GDPR: Necessary for contract fulfillment.

Distributed Network and Third-Country Transfers:
As Praxagoras GmbH operates a distributed rendering network worldwide, rendering tasks may be processed on nodes located in third countries outside the European Economic Area (EEA). These countries may not offer the same level of data protection as the EEA. When this occurs, Praxagoras GmbH ensures compliance with GDPR through the following safeguards:
- Standard Contractual Clauses (SCCs) approved by the European Commission.
- Transfers to countries with an adequacy decision by the European Commission.
- Binding corporate rules or equivalent safeguards for data protection.

Data Retention:
- Project files are retained only for the duration of the rendering process and are deleted immediately after rendering is complete.
- Metadata required for statistical and managerial purposes is stored securely for a maximum of 7 years and anonymized afterward, unless otherwise required by regulatory obligations.
Recipients: Rendering nodes operated by Praxagoras GmbH or its partners. All partners are contractually obligated to comply with GDPR and relevant data protection laws.

3. Data Security Measures
Praxagoras GmbH ensures the security of your personal data by implementing the following measures:
- Data is stored in a database associated with our website (praxilla.io) hosted on Amazon Web Services (AWS) in the Frankfurt region (Europe). AWS complies with GDPR standards.
- Rendering jobs processed on distributed nodes are transmitted securely using encryption protocols.
- Access to data is restricted to authorized technical team members who use secure login credentials (username and password).
- When transferring data to external parties, such as tax advisors or rendering hosts, dedicated secure systems are used, ensuring access is limited to authorized personnel from both parties.
- Regular audits and monitoring ensure compliance with GDPR data protection principles.
- Data exceeding its retention period will be securely deleted or anonymized using industry-standard techniques.
- In the event of a data breach, Praxagoras GmbH will notify affected users without undue delay, providing details of the breach, its impact, and measures to mitigate risks, in compliance with GDPR Article 33.

4. Data Subject Rights
Under GDPR, you have the following rights regarding your personal data:

- Right to Access (Article 15 GDPR): You have the right to obtain confirmation about whether we process your personal data and access to that data.
- Right to Rectification (Article 16 GDPR): You can request corrections to your data if it is inaccurate or incomplete.
- Right to Erasure (Article 17 GDPR): You have the right to request the deletion of your data, subject to legal retention requirements. Users may request deletion of their project metadata at any time, subject to legal obligations. Praxagoras GmbH will comply with such requests within the statutory timeframe, in accordance with GDPR Article 17.
- Right to Restriction of Processing (Article 18 GDPR): You can request the limitation of your data processing in certain circumstances.
- Right to Data Portability (Article 20 GDPR): You can request your data in a structured, commonly used, and machine-readable format.
- Right to Object (Article 21 GDPR): You can object to the processing of your data if it is based on legitimate interest.
- Right to Withdraw Consent (Article 7 GDPR): If your data processing is based on consent (e.g., marketing communications), you can withdraw it at any time without affecting the lawfulness of prior processing.

5. Contact Information for Data Inquiries
For any questions or to exercise your rights, contact us:
Praxagoras GmbH
Hafenstr. 47-51, 4020 Linz, Austria
Email: [email protected]
Phone: +43 676 930 8406

6. Complaint with Supervisory Authority
If you believe your data has been processed unlawfully, you have the right to lodge a complaint with the supervisory authority:
- Austrian Data Protection Authority
Barichgasse 40-42, 1030 Vienna, Austria
Phone: +43 1 52 152-0
Email: [email protected]
Website: https://www.dsb.gv.at/

Our Vision

To empower creators worldwide by making rendering faster, simpler, and more accessible, so you can bring your ideas to life without limits.

Praxilla

Image