Privacy Policy
Last updated: 2025-08-20
1. Data Controller
This website is owned and operated by:
Michal Strnad
Individual registered in the Trade Register of the Czech Republic
Competent authority: City office Černošice
ID number (IČO): 07662491
Place of business: Zlatnická 82, Zlatníky-Hodkovice
Contact email: contact@datacrity.com
2. Information We Collect
When you use our CRM Report Request form, we collect the following information:
Required Information:
- Email address - collected immediately when you start the form
Optional Information (if you choose to complete the form):
- CRM Usage - whether you currently use a Customer Relationship Management system
- CRM Type - which specific CRM system you use (Salesforce, Pipedrive, HubSpot, Odoo, or Other)
- Custom CRM Name - if you use a CRM system not listed in our options
- Sales Team Size - the number of sales people in your organization (Less than 10, 10-50, 50-100, or More than 100)
- Monthly Lead Volume - how many leads your organization processes monthly (Less than 100, 100-500, 500-1,000, 1,000-5,000, or More than 5,000)
- Data Sharing Consent - your willingness to share CRM data for report generation (Yes, Yes with NDA, or No)
- Questions - any additional questions or comments you choose to provide
Technical Information:
- Form completion status - whether you completed the entire form
- Timestamps - when you started and completed the form
- IP address - automatically collected by our web server
3. How We Use Your Information
3.1 Primary Purposes
We use your information to:
- Provide the requested CRM report service
- Respond to your inquiries and questions
- Communicate about your specific request
3.2 Marketing Communications
We may use your email address to send you marketing communications about:
- Similar CRM analysis services
- Industry insights and best practices
- Updates about our services
Legal Basis: We rely on our legitimate interest in promoting our services to individuals who have expressed interest in CRM analysis services by starting our form.
Your Rights: You can opt out of marketing communications at any time by:
4. Legal Basis for Processing (GDPR Article 6)
We process your personal data based on:
- Legitimate Interest (Article 6(1)(f)) - for providing the CRM report service and sending relevant marketing communications
- Consent (Article 6(1)(a)) - where you have provided explicit consent for specific processing activities
- Contract (Article 6(1)(b)) - where processing is necessary to provide the service you requested
5. Data Sharing and Third Parties
We share your information with the following third parties:
5.1 Service Providers
- MongoDB Atlas - secure cloud database hosting (data storage)
- Brevo - email service provider (sending notifications and communications)
- Vercel/AWS - web hosting and infrastructure
5.2 Legal Requirements
We may disclose your information if required by law or to protect our legal rights.
6. Data Security
We implement appropriate technical and organizational measures to protect your personal data, including:
- Encryption of data in transit and at rest
- Access controls limiting who can access your data
- Regular security updates and monitoring
- Secure hosting with reputable cloud providers
7. Data Retention
We retain your personal data for the following periods:
- Email addresses from incomplete forms: 2 years from collection
- Complete form submissions: 3 years from submission
- Marketing communications data: Until you unsubscribe or 3 years, whichever comes first
After these periods, we will securely delete your personal data unless we have a legal obligation to retain it longer.
8. Your Rights Under GDPR
As a data subject, you have the following rights:
8.1 Right of Access (Article 15)
You can request a copy of the personal data we hold about you.
8.2 Right to Rectification (Article 16)
You can request correction of inaccurate or incomplete personal data.
8.3 Right to Erasure (Article 17)
You can request deletion of your personal data in certain circumstances.
8.4 Right to Restrict Processing (Article 18)
You can request limitation of how we process your data.
8.5 Right to Data Portability (Article 20)
You can request your data in a structured, commonly used format.
8.6 Right to Object (Article 21)
You can object to processing based on legitimate interest, including marketing communications.
8.7 Right to Withdraw Consent (Article 7(3))
Where processing is based on consent, you can withdraw it at any time.
9. How to Exercise Your Rights
To exercise any of your rights, contact us at:
We will respond to your request within 30 days as required by GDPR.
10. Complaints
If you believe we have not handled your personal data properly, you have the right to lodge a complaint with:
Czech Data Protection Authority (Úřad pro ochranu osobních údajů)
Website: uoou.cz
Email: posta@uoou.cz
11. International Data Transfers
Your data may be transferred to and processed in countries outside the European Economic Area (EEA). When we do this, we ensure adequate protection through:
- Adequacy decisions by the European Commission
- Standard Contractual Clauses approved by the European Commission
- Other appropriate safeguards as required by GDPR
12. Cookies and Tracking
This website may use cookies and similar tracking technologies. For detailed information about our cookie usage, please see our Cookie Policy.
13. Children's Privacy
Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal data from children under 18.
14. Changes to This Privacy Policy
We may update this privacy policy from time to time. When we make significant changes, we will:
- Update the "Last updated" date at the top of this policy
- Notify you by email if you have provided your email address
- Post a notice on our website
15. Contact Information
For any questions about this privacy policy or our data practices, contact us at:
Email: contact@datacrity.com
Subject: "Privacy Policy Inquiry"
Postal Address:
Michal Strnad
Zlatnická 82
Zlatníky-Hodkovice
Czech Republic