Privacy Policy
Operator: Bc. Jan Lorenz. Contact: info@protulox.com.
1. Data controller
The data controller is Bc. Jan Lorenz, Praha - Radotín, náměstí Osvoboditelů 1364/3, 153 00. Contact: info@protulox.com. For exercising your rights or raising concerns about processing, please use this email address.
2. What data we process
- Account: email, password hash, tenant, language, subscription type.
- Projects and measurements: project names, rooms, measurement points, measurement values, dates, generated PDFs and other content created in the service.
- Project content: text (names, descriptions) may contain personal data depending on what the user enters.
- Browser: localStorage (autosave) – data remains on the user's device.
3. Purpose of processing and project data
We process data to provide the Protulox service, manage subscriptions, provide support and ensure security. Project data (projects, rooms, measurement points, measurements and related outputs) are stored only for the purpose of providing the service – enabling the creation, editing and export of lighting measurement documentation. We do not use this data for other purposes (e.g. advertising or selling to third parties).
4. Legal basis (GDPR)
Processing is based on: contract performance (providing the service and subscription), legitimate interest (security, operation, protection of rights) and, where necessary, consent. No consent is required for processing necessary for the contract.
5. Multi-tenant and hosting
Data of individual tenants (account spaces) is separated within the application. Hosting is provided by a VPS (e.g. Hetzner); the operator has agreements with the hosting provider to ensure data protection.
6. Payment partner (Paddle)
Payments are processed by Paddle.com Market Ltd. (Paddle) as Merchant of Record. Paddle's privacy policy applies to payment-related processing: Paddle Privacy. The operator only receives from Paddle the data needed to link the subscription to the account (e.g. subscription identifier, status).
7. Data retention
We retain data for the duration of the account and as required by law (e.g. accounting). After account termination we delete or anonymise data in accordance with internal policy; exceptions may apply for accounting records and legal obligations. Specific retention periods can be provided on request at info@protulox.com.
8. Your rights
Under the GDPR you have the right to access, rectification, erasure, restriction of processing, data portability and objection. You also have the right to lodge a complaint with a supervisory authority. To exercise your rights, contact us at info@protulox.com.
9. Cookies and similar technologies
Details in the Cookie policy.
10. Changes to this policy
We may update this policy. You will be informed of material changes (by email or in-app notice).
11. Contact
Contact: info@protulox.com. Legal / Impressum.