Sign In Get Started
Sign In Get Started

Privacy Policy

How we collect, use, and protect your personal data.

Last updated: April 1, 2026  •  Effective date: April 1, 2026

1. Data Controller

The data controller responsible for your personal data is:

  • Company: Kladna Soft Kft.
  • Address: Nagy Lajos Király Útja 206-208., Budapest, Hungary
  • Email: [email protected]

For data protection inquiries, you may contact our Data Protection Officer at [email protected].

2. What We Collect

We collect and process the following categories of personal data:

Information You Provide

  • Account information: name, email address, organization name, and password when you register for an account
  • Contact information: name, email, phone number, and message content when you reach out through our contact form
  • Billing information: company name, billing address, and VAT number for paid subscriptions (payment card details are processed by our payment provider and never stored on our servers)

Information Collected Automatically

  • Usage data: pages visited, features used, and interaction patterns on our website and cloud platform
  • Technical data: IP address, browser type and version, operating system, and device information
  • Log data: server logs including access times, error logs, and referral URLs

Self-Hosted Deployments

For self-hosted deployments of Data Island, we do not collect any data from your instance. The software does not phone home, transmit telemetry, or send any information to our servers. All data remains entirely under your control on your infrastructure.

3. How We Use Your Data

We use your personal data for the following purposes:

  • Service delivery: to create and manage your account, provide the Service, and process transactions
  • Communication: to respond to your inquiries, send service-related notifications, and provide customer support
  • Improvement: to analyze usage patterns and improve the Service, website, and user experience
  • Security: to detect, prevent, and address fraud, abuse, and security incidents
  • Legal compliance: to comply with applicable laws, regulations, and legal processes

4. Legal Basis for Processing

We process your personal data based on the following legal grounds under the General Data Protection Regulation (GDPR):

  • Contract performance (Art. 6(1)(b) GDPR): processing necessary to provide the Service you have requested
  • Legitimate interest (Art. 6(1)(f) GDPR): processing for our legitimate business interests such as improving the Service, preventing fraud, and ensuring security, balanced against your rights and freedoms
  • Consent (Art. 6(1)(a) GDPR): where you have given explicit consent, such as for marketing communications
  • Legal obligation (Art. 6(1)(c) GDPR): processing necessary to comply with legal requirements

5. Data Sharing

We do not sell, rent, or trade your personal data. We may share your data with:

  • Service providers: third-party vendors who help us operate the Service (hosting, payment processing, email delivery), bound by data processing agreements
  • Legal authorities: when required by law, court order, or governmental regulation
  • Business transfers: in connection with a merger, acquisition, or sale of assets, with appropriate protections for your data

6. International Data Transfers

Your data is primarily processed within the European Economic Area (EEA). If data is transferred outside the EEA, we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Adequacy decisions by the European Commission
  • Other legally recognized transfer mechanisms

7. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes described in this policy:

  • Account data: retained while your account is active and for 30 days after deletion request
  • Contact form submissions: retained for up to 2 years
  • Billing records: retained for 8 years as required by Hungarian tax law
  • Server logs: retained for up to 90 days
  • Cookie data: retained according to cookie-specific durations (see Section 9)

8. Your Rights

Under the GDPR, you have the following rights regarding your personal data:

Right of Access

You have the right to request a copy of the personal data we hold about you, along with information about how it is processed.

Right to Rectification

You have the right to request correction of inaccurate personal data or completion of incomplete data.

Right to Erasure

You have the right to request deletion of your personal data when it is no longer necessary for the purposes for which it was collected, or when you withdraw consent.

Right to Restriction of Processing

You have the right to request restriction of processing in certain circumstances, such as when you contest the accuracy of the data.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit it to another controller.

Right to Object

You have the right to object to processing based on legitimate interests or for direct marketing purposes.

Right to Withdraw Consent

Where processing is based on consent, you have the right to withdraw consent at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, please contact us at [email protected]. We will respond within 30 days. You also have the right to lodge a complaint with the Hungarian National Authority for Data Protection and Freedom of Information (NAIH) or your local supervisory authority.

9. Cookies

Our website uses cookies and similar technologies. We categorize cookies as follows:

  • Strictly necessary cookies: required for the website to function (e.g., session management, security). These cannot be disabled.
  • Functional cookies: enhance your experience by remembering preferences such as language or display settings.
  • Analytics cookies: help us understand how visitors interact with our website. We use privacy-respecting analytics that do not create individual profiles.

We do not use advertising or tracking cookies. You can manage your cookie preferences through your browser settings or through the cookie consent banner displayed on your first visit.

10. Security

We implement appropriate technical and organizational measures to protect your personal data, including:

  • Encryption of data in transit (TLS 1.2+) and at rest
  • Access controls and authentication for all systems
  • Regular security assessments and vulnerability testing
  • Employee training on data protection and security
  • Incident response procedures for data breaches

11. Children

The Service is not directed to individuals under the age of 16. We do not knowingly collect personal data from children. If we become aware that we have collected personal data from a child, we will take steps to delete it promptly.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on our website and, where appropriate, by email. The "Last updated" date at the top of this page indicates the most recent revision.

13. Contact the Data Protection Officer

If you have questions or concerns about how we handle your personal data, please contact our Data Protection Officer:

  • Email: [email protected]
  • Mail: Data Protection Officer, Kladna Soft Kft., Nagy Lajos Király Útja 206-208., Budapest, Hungary