Privacy Policy

1. Information We Collect

1.1 Information You Provide

We collect information that you provide directly to us, including:

• Account Information: Email address, organization name, and account preferences
• Configuration Data: Field requirement rules, webhook configurations, and service settings that you configure through our dashboard
• Payment Information: Processed securely through Stripe (we do not store your payment card details)
• Support Communications: Information you provide when contacting our support team

1.2 Information We Collect Automatically

When you use our Service, we automatically collect certain information, including:

• Usage Data: Information about how you use the Service, such as pages visited, features used, and time spent on the Service
• Device Information: IP address, browser type, operating system, and device identifiers
• Log Data: Server logs, error logs, and diagnostic information (which may include Linear data when errors occur, as described below)
• Cookies and Tracking Technologies: As described in section 4 below

1.3 Linear Workspace Data

IMPORTANT: We do not store, cache, or retain any data from your Linear workspace on our servers. This includes:

• Linear issues, projects, teams, or other workspace content
• User information from your Linear workspace
• Comments, attachments, or other issue-related data

All Linear workspace data is accessed in real-time directly from Linear's API as needed to provide the Service. We only store:

• OAuth tokens necessary to authenticate with Linear's API
• Configuration data (field requirement rules, webhook settings) that you create through our dashboard
• Service metadata (account information, subscription status, usage statistics)

1.4 Error Logs

When errors occur while processing Linear data, we may temporarily store error logs that include data from your Linear workspace. This data is used solely for debugging and fixing issues. Error logs are automatically deleted after 30 days.

2. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve the Service
• Process your transactions and manage your subscription
• Send you service-related communications (account updates, security alerts, etc.)
• Respond to your support requests and inquiries
• Monitor and analyze usage patterns to improve the Service
• Detect, prevent, and address technical issues and security threats
• Comply with legal obligations and enforce our Terms of Service

3. Data Storage and Location

All data is stored in the European Union, where our servers are located. We use service providers that are GDPR compliant and maintain data within the EU.

We implement appropriate technical and organizational measures to protect your data, including encryption in transit and at rest, access controls, and regular security assessments.

4. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track activity on our Service and store certain information. The types of cookies we use include:

• Essential Cookies: Required for the Service to function (authentication, session management)
• Functional Cookies: Remember your preferences and settings
• Analytics Cookies: Help us understand how visitors use the Service (we use privacy-respecting analytics)

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some parts of our Service.

5. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

5.1 Service Providers

We may share your information with trusted service providers who assist us in operating the Service, including:

• Stripe: Payment processing (see Stripe's privacy policy)
• Hosting Providers: Cloud infrastructure services
• Email Services: For sending service-related communications
• Analytics Services: Privacy-respecting analytics tools

All service providers are contractually obligated to protect your information and use it only for the purposes we specify.

5.2 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).

5.3 Business Transfers

If we are involved in a merger, acquisition, or asset sale, your information may be transferred. We will provide notice before your information is transferred and becomes subject to a different Privacy Policy.

5.4 Protection of Rights

We may disclose your information if we believe it is necessary to:

• Comply with a legal obligation
• Protect and defend our rights or property
• Prevent or investigate possible wrongdoing in connection with the Service
• Protect the personal safety of users of the Service or the public
• Protect against legal liability

6. Data Retention

We retain your information only for as long as necessary to provide the Service and fulfill the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law.

• Account Data: Retained while your account is active and for a reasonable period after account closure for legal and business purposes
• Configuration Data: Retained while your account is active; deleted upon account closure
• Error Logs: Automatically deleted after 30 days
• Payment Records: Retained as required by law (typically 7 years for tax and accounting purposes)

When you delete your account, we will delete or anonymize your personal information, except where we are required to retain it for legal purposes.

7. Your Rights (GDPR)

If you are located in the European Economic Area (EEA) or other jurisdictions with similar data protection laws, you have the following rights:

• Right to Access: Request a copy of the personal information we hold about you
• Right to Rectification: Request correction of inaccurate or incomplete information
• Right to Erasure: Request deletion of your personal information ("right to be forgotten")
• Right to Restrict Processing: Request limitation of how we process your information
• Right to Data Portability: Request transfer of your data to another service provider
• Right to Object: Object to processing of your information for certain purposes
• Right to Withdraw Consent: Withdraw consent where processing is based on consent

To exercise these rights, please contact us at support@quantos.it from the email address associated with your account. We will respond to your request within 30 days.

You also have the right to lodge a complaint with a supervisory authority if you believe we have violated your data protection rights.

8. Data Security

We implement appropriate technical and organizational security measures to protect your information against unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit (HTTPS/TLS) and at rest
• Regular security assessments and vulnerability testing
• Access controls and authentication mechanisms
• Regular backups and disaster recovery procedures
• Employee training on data protection

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee its absolute security.

You are responsible for:

• Maintaining the confidentiality of your account credentials
• Using strong, unique passwords
• Not sharing your account credentials with others
• Immediately notifying us if you suspect unauthorized access to your account

9. Children's Privacy

Our Service is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately. If we become aware that we have collected personal information from a child under 13, we will take steps to delete that information.

10. Third-Party Services

Our Service integrates with third-party services, including:

• Linear: We access your Linear workspace via OAuth. Your use of Linear is subject to Linear's terms and privacy policy.
• Stripe: Payment processing. Your payment information is processed by Stripe according to their privacy policy.

We are not responsible for the privacy practices of these third-party services. We encourage you to review their privacy policies.

11. International Data Transfers

Your information is processed and stored in the European Union. If you are located outside the EU, please note that we may transfer your information to the EU, where data protection laws may differ from those in your country.

By using the Service, you consent to the transfer of your information to the EU. We ensure that appropriate safeguards are in place to protect your information in accordance with this Privacy Policy.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the new Privacy Policy on this page
• Updating the "Last updated" date
• Sending you an email notification (for significant changes)
• Displaying a notice on the Service

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

Your continued use of the Service after changes are posted constitutes acceptance of the updated Privacy Policy.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

• Email: support@quantos.it
• Company: Quantos srls
• Address: Via cassia 1284, 00189, Roma, Italy

We will respond to your inquiry within 30 days.

14. Additional Information

For information about how we handle your data in relation to our Terms of Service, please review our Terms of Service.