Privacy Policy
Effective Date: 1 Dec 2024
Last Updated: 1 Dec 2024
At Einsys, operated by UNT GmbH (hereinafter referred to as “Company,” “we,” “our,” or “us”), your privacy is of utmost importance. This Privacy Policy outlines the framework under which we collect, process, store, and disclose personal data, ensuring compliance with European General Data Protection Regulation (GDPR) and other applicable data protection laws.
By accessing or using the Einsys platform, you acknowledge that you have read, understood, and agreed to this Privacy Policy.
1. Scope and Applicability
This Privacy Policy applies to all individuals interacting with Einsys, including but not limited to registered users, website visitors, and customers (collectively referred to as “Users”). This policy governs the handling of personally identifiable information (“Personal Data”) collected via the Einsys platform, affiliated services, third-party integrations, and communication channels.
By utilizing our services, you consent to the collection, use, processing, and storage of your data as detailed in this policy.
2. Categories of Data Collected
To facilitate optimal functionality and ensure seamless operations, we collect and process the following categories of Personal Data:
2.1. Information Provided by Users
Identification & Contact Data: Full name, email address, phone number, company details.
Account Credentials: Username, password, and security authentication details.
Billing & Financial Data: Payment details (processed securely through Stripe; we do not store raw payment data).
Support Communications: Any correspondence related to technical support or inquiries.
2.2. Automatically Collected Data
Technical Data: IP address, device specifications, browser type, access timestamps.
Usage Data: Interaction patterns, clickstream data, error logs, and feature engagement.
Cookies & Tracking Technologies: Collected via first-party and third-party mechanisms to enhance user experience, maintain session integrity, and provide analytical insights.
2.3. Data from Third-Party Integrations
Accounting & Financial Platforms: Integration with services such as Xero and QuickBooks to enhance invoicing, financial reporting, and transaction processing.
Analytics & Performance Monitoring: Data shared with Google Analytics for assessing usage patterns, feature performance, and market optimization.
🚫 No direct sale of user data occurs under any circumstances. We do not monetize Personal Data through third-party advertising networks.
3. Legal Basis & Purposes for Processing
We process your Personal Data strictly in accordance with applicable legal principles, including but not limited to:
Contractual Necessity: To facilitate account registration, service provision, and transactional processing.
Legitimate Interest: To optimize our platform, prevent fraud, and enhance security protocols.
Compliance with Legal Obligations: To fulfill regulatory and governmental mandates (e.g., tax reporting, fraud prevention).
User Consent: Where explicitly required (e.g., marketing opt-ins, cookies, and tracking preferences).
The processing of Personal Data is essential for delivering the full scope of Einsys services. Users retain the right to withdraw consent at any time without retroactive impact.
4. Data Retention & Storage
All user data is securely stored on servers within the European Union (EU) and retained only for the duration necessary to fulfill operational, contractual, and legal obligations.
Data Retention Periods:
Account Data: Retained for the duration of account activity plus a legally mandated retention period thereafter.
Billing & Financial Records: Retained as per applicable fiscal and taxation regulations.
Support & Communications Data: Retained for customer service improvement and compliance auditing.
📌 Upon request, Users may invoke their right to data deletion, subject to legal and regulatory constraints.
5. Data Security & Protection Measures
To safeguard Personal Data, Einsys employs a multi-tiered security architecture, encompassing:
✅ Encryption Protocols: Secure encryption mechanisms for data at rest and in transit.
✅ Firewall & Intrusion Detection: Continuous monitoring to mitigate unauthorized access attempts.
✅ Data Access Control: Role-based access permissions to restrict data exposure.
✅ Incident Response Mechanisms: Proactive measures to counteract potential security breaches.
While we employ industry-standard security practices, no transmission method is entirely risk-free, and users acknowledge residual security risks associated with internet-based interactions.
6. User Rights & Data Control Mechanisms
In accordance with GDPR provisions, users retain comprehensive rights concerning their Personal Data, including:
Right to Access – Request a copy of the personal data held by Einsys.
Right to Rectification – Modify inaccuracies in user-submitted data.
Right to Erasure – Request deletion of non-essential personal records.
Right to Restriction of Processing – Limit how data is utilized under specific conditions.
Right to Data Portability – Obtain a structured dataset for transfer to third-party services.
🔎 Users can exercise these rights by submitting a formal request to support[@]einsys.eu. Einsys reserves the right to verify user identities prior to processing such requests.
7. Data Disclosure & Third-Party Interactions
We do not engage in third-party data commercialization. However, select third-party service providers may receive limited user data strictly for functional and legal purposes, including:
Payment Processing: All transactions are securely facilitated via Stripe; Einsys does not process or store payment details.
Legal Compliance: Disclosure to government authorities upon lawful request.
Analytics & Performance Monitoring: Google Analytics is employed to optimize platform functionality.
Users should review the privacy policies of third-party services before enabling integrations.
8. International Data Transfers
Einsys primarily operates within the European Economic Area (EEA). Should data transfers occur beyond the EEA, we implement adequate safeguards such as Standard Contractual Clauses (SCCs) to ensure compliance with GDPR-mandated data protection standards.
9. Policy Modifications & User Notification
We reserve the right to amend this Privacy Policy at our discretion to reflect operational changes, regulatory updates, or service enhancements.
Notification Mechanisms:
📢 Subscribed users will receive email notifications regarding material updates.
📢 Users are advised to review this policy periodically for changes.
Continued engagement with the platform following policy modifications constitutes acceptance of the revised terms.
10. Contact & Compliance Information
For inquiries, complaints, or data-related concerns, please contact us at:
📍 Company: UNT GmbH
📍 Address: Berliner Allee 59, 4th floor, Düsseldorf, 40212, DE
📧 Email: support[@]einsys.eu
Data Protection Officer (DPO):
If required under applicable laws, a designated Data Protection Officer (DPO) will be assigned. In the interim, privacy-related queries can be directed to the above email address.
By utilizing Einsys, you affirm your understanding of and agreement with this Privacy Policy.
If you disagree with any provision, please refrain from using our services.