Privacy Policy

At DateComp we process personal information under principles of lawfulness, transparency and security. This Policy describes how we collect, use, store and protect data when you use our website, forms, software services, applications and support channels.

DateComp SRL processes personal data to provide software development, maintenance and support services. We process data under an appropriate legal basis (contract performance, legal compliance, legitimate interest or consent where applicable) and apply principles of minimization, purpose limitation and limited retention.

1. Data Controller

Controller: DateComp.

Registered address: United States (U.S.) and Dominican Republic (D.R.).

Privacy contact: admin@datecomp.com (subject: "Privacy").

2. Applicable Legal Framework

We process data in accordance with Law 172-13 (Dominican Republic) and, where applicable based on client type, location or data flows, under international standards such as GDPR (EU), CCPA/CPRA (California) and LGPD (Brazil).

3. Data We Collect

• Contact data: name, email, phone and content from forms or messages.
• Technical data: IP, browser, device, access and performance logs.
• Client operational data: information hosted or processed in contracted systems.
• Commercial data: billing, contract history and technical support.

4. Purposes of Processing

• Responding to business and support inquiries.
• Providing, operating and improving contracted Services.
• Managing security, fraud prevention and operational continuity.
• Complying with contractual, legal and tax obligations.
• Sending service-related communications.

5. Legal Bases

Depending on the case, we process data under one or more bases: contract performance, legal compliance, legitimate interest and consent where applicable.

6. DateComp Roles (Controller/Processor)

When DateComp defines the purposes for data use (e.g., own business contact), it acts as Controller. When it processes data on behalf of the Client to provide a service, it acts as Processor, in accordance with the applicable contract and DPA.

7. Data Sharing and Sub-processors

We may rely on technology providers for hosting, email, monitoring, storage and operational tools. We only share data necessary to provide the service and under reasonable confidentiality and security controls.

8. International Transfers

Where it is necessary to transfer data outside the data subject's country, DateComp will apply appropriate mechanisms (Standard Contractual Clauses or other adequacy mechanisms) and will conduct transfer impact assessments where applicable. The DPA applicable to the contractual relationship will be available for download or signature during the contracting process.

9. Retention and Storage

We retain data only for as long as necessary for the processing purpose and legal obligations. As an operational rule:

• Account/service data: while an active contractual relationship exists.
• Technical logs: as required for security and audit needs.
• Accounting and billing records: in accordance with applicable tax requirements.
• After contract termination: export period followed by secure deletion according to retention policy.

10. Data Subject Rights

Data subjects may exercise rights of access, rectification, erasure, objection, portability and restriction of processing through the channels indicated in this policy (contact: admin@datecomp.com). DateComp will respond to requests in accordance with applicable legal deadlines (e.g., 30 days for GDPR; 45 days where required by CCPA/CPRA). To exercise rights, write to admin@datecomp.com with subject "Privacy" and a clear description of your request.

Where applicable, DateComp will implement the mechanisms required by CCPA/CPRA, including the "Do Not Sell/Share My Personal Information" mechanism and the applicable verification and response procedures within legal deadlines.

11. Cookies and Similar Technologies

We may use technical and analytics cookies for functionality, security and experience improvement. In implementations where legally required, we will apply consent and preference mechanisms.

12. Information Security

We implement reasonable technical and organizational measures, including encryption in transit and at rest, access control, backups and event logging. In the event of a security incident, DateComp will initiate an internal investigation within 24 hours and will notify the Client without undue delay and, where GDPR applies, within 72 hours. No system is 100% invulnerable, but we maintain continuous controls and reviews to mitigate risks.

13. Security Incidents

In the event of incidents compromising personal data, DateComp activates its response plan, assesses impact, contains the event and notifies clients/authorities when applicable regulations require it.

14. Children's Data

Our services are not intentionally directed at minors without a legal basis or appropriate authorization. If we detect improper processing of children's data, we will take blocking/deletion measures as appropriate.

15. AI and Data Usage

DateComp will not use Client data or its users' data to train publicly accessible artificial intelligence models or to improve third-party services, unless expressly authorized by contract.

16. Changes to This Policy

We may update this Policy due to legal, technical or service changes. We will publish the current version with the update date on this same page.

17. Contact

For privacy inquiries or requests: admin@datecomp.com.

DateComp | United States (U.S.) and Dominican Republic (D.R.).