Privacy Policy

Last updated: 12 June 2026

This Privacy Policy explains how I.V.Y collects, uses and protects your personal data when you use https://ivytech-ai.com, in accordance with the EU General Data Protection Regulation (GDPR) and Dutch data protection law (UAVG).

1. Data controller

The data controller is the company operating I.V.Y, currently being incorporated; its full legal details will be published once registration is complete. Contact: ivytech.ai@gmail.com.

2. Data we collect

Category	Examples	Purpose
Account data	Name, email address, password (hashed)	Create and manage your account
Authentication	Google account ID & profile (if you use Google sign-in)	Allow secure login
Subscription / pre-order	Plan, billing status, Stripe customer reference	Process payments and activate access
Security logs	IP address, login attempts, timestamps	Protect against fraud and brute-force attacks
Communications	Emails we send you (verification, reset, updates)	Operate the service

Payment card details are handled directly by Stripe and are never stored on our servers.

3. Legal basis

• Performance of a contract — account management, subscriptions and pre-orders.
• Legitimate interest — security, fraud prevention and service improvement.
• Consent — optional marketing communications (you can withdraw it at any time).
• Legal obligation — accounting and tax record keeping.

4. Data retention

Account data is kept for the lifetime of your account and deleted within a reasonable period after account closure. Security logs are retained for a limited period (up to 24 months) for protection purposes. Billing records are kept for the legally required period (7 years under Dutch tax law).

5. Data sharing

We do not sell your data. We share data only with trusted processors strictly necessary to run the service:

• Stripe — payment processing.
• Google — optional authentication (if you choose Google sign-in).
• Email / hosting providers — to deliver emails and host the platform.

6. Your rights (GDPR)

You have the right to access, rectify, erase, restrict and port your data, to object to processing, and to withdraw consent at any time. To exercise these rights, contact ivytech.ai@gmail.com. You may also lodge a complaint with the Dutch supervisory authority, the Autoriteit Persoonsgegevens (autoriteitpersoonsgegevens.nl), or with the data protection authority of your country of residence in the EU.

7. Cookies

We use only essential cookies required for the site to function (e.g. your session cookie, which is HttpOnly, Secure and SameSite-protected). These do not require consent. We do not use advertising or third-party tracking cookies.

8. Data security

We apply industry-standard measures: encrypted connections (HTTPS), hashed passwords, hardened session cookies, CSRF protection, brute-force throttling and a strict content security policy.

9. Changes

We may update this policy. The "last updated" date above reflects the latest version.

10. Contact

For any privacy question, email ivytech.ai@gmail.com.