|

PRIVACY POLICY

Last updated: 2026-01-16

1. Who we are

Petrutban Technologies is a studio/brand identity used for publishing projects, documentation, and technical updates (including QEVARO). In this Policy, “we”, “Petrutban Technologies”, or “Petrutban” refer to the operator of this website and associated public pages.

Websites covered by this Policy:

  • https://petrutban.com
  • (when relevant) public QEVARO pages and official links associated with the project

Privacy contact: [email protected]

Security contact (vulnerability reports): [email protected]

2. What this Policy covers

This Policy describes:

  • what data we collect through the website,
  • why we collect it,
  • how we protect it,
  • how long we retain it,
  • who we may share it with,
  • what rights you have and how to exercise them.

We do not sell personal data and we do not use the website for behavioral advertising (“targeted ads”).

3. Data we collect

3.1. Data you provide (directly)

We may collect data when you contact us or send information:

  • email address (and any name/signature you choose to include),
  • message content and attachments (if you send any),
  • any information you choose to provide voluntarily.

3.2. Technical data collected automatically (when accessing the site)

When you visit the website, servers and security systems may generate logs that can include:

  • IP address,
  • browser type, operating system, language settings,
  • pages accessed, date/time, referrer (previous page),
  • security events (e.g., blocking suspicious traffic).

This data is used primarily for site operation, diagnostics, abuse prevention, and security.

3.3. Cookies and similar technologies

The website may use:

  • strictly necessary cookies (for operation and security),
  • preference cookies (if settings such as language/theme exist),
  • a language preference cookie (pt_lang) to remember the selected language,
  • (optional) traffic measurement/analytics, only if enabled.

If we use analytics, the goal is to understand aggregated traffic (e.g., which pages are visited), not to build personal profiles.

4. Why we process data (purposes)

We process data for:

A) Website operation

page loading, content delivery, technical compatibility.

B) Security and abuse prevention

protection against attacks, fraud, spam, scanning, and unauthorized access.

C) Communication and support

responding to questions, requests, and messages.

D) Quality improvement

identifying errors, optimizing performance, and improving content clarity.

5. Legal bases (GDPR)

Depending on the situation, we rely on:

  • legitimate interest (e.g., security, abuse prevention, technical operation, improvement),
  • performance of a request (e.g., when you contact us and want a response),
  • consent (only where required, e.g., for non-essential cookies if used).

6. Who we share data with

We may share data only as necessary with:

  • technical providers (e.g., DNS/CDN/WAF, hosting, email) that help operate the website,
  • public authorities, if a valid legal obligation exists.

We do not share data with third parties for targeted advertising.

6.1. Cloudflare

The website may use Cloudflare services for DNS, content delivery, and attack protection. In this case, certain technical data (e.g., IP and traffic metadata) may be processed for security and performance.

7. International transfers

Some technical providers may process data outside the European Economic Area. If this occurs, we use contractual measures and appropriate safeguards (e.g., standard contractual clauses) where applicable to protect data.

8. Data retention

We retain data only as long as necessary for the purposes described:

  • Technical and security logs: typically 30–90 days (or longer if needed for incident investigation).
  • Contact messages and correspondence: as needed to respond and for record-keeping; typically up to 24 months unless legal obligations require otherwise.
  • Data associated with legal requests (e.g., GDPR requests): as needed for compliance and record-keeping.

If you request deletion, we evaluate the request and delete data to the extent we are not required to retain it.

9. Data security

We apply reasonable measures to protect data, including:

  • access controls,
  • monitoring and abuse protection,
  • security configurations at network and application level,
  • public policies (Terms/Privacy) for transparency.

No system can guarantee 100% security. If an incident occurs, we treat it with priority and take remedial measures.

10. Your rights

Depending on context and applicable law, you may have the right to:

  • access,
  • rectification,
  • erasure,
  • restriction of processing,
  • objection (especially to legitimate interest),
  • portability (where applicable),
  • withdrawal of consent (where processing is based on consent).

To exercise your rights, email: [email protected]. In your request, describe clearly what you want and include enough information so we can identify the request and respond correctly. We may ask for clarifications to prevent disclosure to unauthorized persons.

11. Children

The website and project pages (including QEVARO) are not designed to intentionally collect data from children. If you are a minor and contact us, do not send sensitive data. If a parent/guardian believes we received data from a minor unintentionally, they may contact us for deletion.

12. Third-party links

The website may contain links to third-party platforms (e.g., GitHub, YouTube, social networks). Once you leave our website, third-party policies apply. We do not control or take responsibility for their practices.

13. Policy changes

We may update this Policy when we add new features, change providers, or when legal/operational requirements arise. The “Last updated” date will change. For significant changes, we will try to display a notice on the website.

14. Contact

Privacy questions: [email protected]

Security reports: [email protected]