Legal

Privacy Policy

Last updated: 8 February 2025 · Version 2.0

Summary: Crawlo only collects data necessary to operate the service (account data and technical logs). We do not store extracted data for the Client beyond 72 hours.

1. Data Controller

CRAWLO DATA INTELLIGENCE LTD
Efesou 9, Paralimni 5280, Famagusta, Cyprus
Contact: [email protected]

2. Data We Collect

  • Registration: email address, company name, billing country.
  • Billing: tax name, tax address, VAT number. Payment data managed by third-party processor.
  • Technical: IP address, timestamps, request volume, response codes.
  • Website: essential technical cookies as described in our Cookie Policy.

3. Data Extracted for the Client

Key clarification: Data extracted on behalf of the Client from public sources is not personal data collected by Crawlo. Crawlo acts as an infrastructure provider. The Client is the data controller. Data in transit is held for a maximum of 72 hours.

4. Legal Basis

  • Contract performance (Art. 6.1.b GDPR)
  • Legitimate interest — security and fraud prevention (Art. 6.1.f GDPR)
  • Legal obligation — tax requirements (Art. 6.1.c GDPR)

5. Recipients

Cloud infrastructure providers, payment processors, legal and accounting advisors, and competent authorities when required by law. We do not sell or transfer data to third parties for commercial purposes.

6. International Transfers

Transfers outside the EEA are carried out with appropriate safeguards: standard contractual clauses approved by the European Commission or adequacy decisions.

7. Retention Periods

  • Account data: duration of contract + statutory limitation period.
  • Billing: minimum 6 years (tax legislation).
  • Technical logs: maximum 90 days.
  • Data in transit: maximum 72 hours.

8. Your Rights

Under the GDPR, you have the right to access, rectification, erasure ("right to be forgotten"), restriction of processing, objection, and data portability. To exercise these rights, contact [email protected]. We will respond within 30 days.

You also have the right to lodge a complaint with the relevant data protection supervisory authority.

9. Security

Crawlo implements appropriate technical and organisational measures to protect personal data, including encryption in transit (TLS 1.3), role-based access control, and periodic security audits.

10. Changes

Material changes will be notified by email and published on this page with an updated date.

11. Related Policies

This Policy should be read in conjunction with our Terms of Service, Acceptable Use Policy and Cookie Policy.