Polityka prywatności

Zbierane dane

• Account data: email address, name (provided during registration via OAuth or email OTP)
• Billing data: processed by Stripe; SmartHomeEntry stores only the Stripe customer ID
• Tunnel metadata: subdomain, relay host, remote port, SSH public key
• Heartbeat data: agent IP address, timestamp of last heartbeat (retained for 30 days, then automatically deleted)
• Usage logs: request timestamps and HTTP status codes (retained for 7 days)

Podstawa prawna

• Contract performance (Art. 6(1)(b) GDPR) – account provisioning, tunnel management, billing
• Legitimate interest (Art. 6(1)(f) GDPR) – security monitoring, abuse prevention
• Legal obligation (Art. 6(1)(c) GDPR) – tax and accounting records

Okres przechowywania

• Account data: for the duration of the subscription + 2 years
• Billing records: 7 years (legal requirement)
• Heartbeat logs: 30 days
• SSH private keys: returned once to the agent and never stored in plaintext thereafter

Twoje prawa

Under GDPR you have the right to:

• Access your personal data (Art. 15)
• Rectify inaccurate data (Art. 16)
• Erasure (“right to be forgotten”) (Art. 17)
• Data portability (Art. 20)
• Object to processing (Art. 21)
• Lodge a complaint with a supervisory authority

To exercise any of these rights, contact us at privacy@smarthomeentry.com.

Kontakt

Data controller: SmartHomeEntry
Email: privacy@smarthomeentry.com