Our Privacy Policy

Last Updated: June 06, 2025

At PopupLite.com (r6lab Radoslaw Jozefowicz, EU NIP: 9730929262) ("we," "us," or "our"), we value your privacy and are dedicated to safeguarding your personal data. This Privacy Policy outlines how we collect, use, share, and protect personal data in accordance with the General Data Protection Regulation (GDPR) and other applicable laws. By using our service ("Service"), you agree to the practices described herein.

This policy applies to our clients ("you" or "user") who use PopupLite.com to create popups and to the visitors of your web pages where our popups are displayed ("Website Visitors").

1. Introduction

PopupLite.com is an EU-based Software-as-a-Service (SaaS) platform that allows you to design and inject popups into your web pages. To deliver and enhance our Service, we process personal data, including through cookies and tracking technologies that monitor user behavior and collect browser meta-information for statistical analysis.

We act as a data processor for our clients, who are the data controllers, and this policy explains our data handling practices and your rights under GDPR.

2. Information We Collect

We collect and process the following types of personal data:

2.1. Client Data

• Account Information: Name, email address, company name, and payment details collected during registration.
• Usage Data: Information about how you interact with the Service, such as features used and popups created.

2.2. Website Visitor Data

• Behavioral Data: Data on how Website Visitors engage with popups (e.g., clicks, views, time spent), collected via cookies.
• Browser Meta-Information: Technical details like IP addresses, browser types, device information, and operating systems for statistical purposes.

3. How We Use Your Information

We use personal data for the following purposes:

• Service Delivery: To manage your account, provide support, and enable popup creation and management.
• Service Improvement: To analyze usage trends and enhance functionality using aggregated data.
• Legal Compliance: To meet obligations under applicable laws, including GDPR.
• Statistical Analysis: To generate insights and reports from pseudonymized data to optimize the Service.

4. Legal Basis for Processing

Our processing activities are grounded in the following GDPR legal bases:

• Contractual Necessity: To fulfill our contract with you (e.g., providing the Service).
• Legitimate Interests: To improve our Service, provided your rights are not overridden.
• Consent: For non-essential cookies and certain tracking activities, where you explicitly agree.
• Legal Obligations: To comply with requirements like tax or accounting laws.

5. Data Sharing and Disclosure

We may share personal data with:

• Sub-processors: Trusted third-party providers (e.g., hosting, analytics) under GDPR-compliant agreements.
• Legal Authorities: When required by law or to protect our rights and safety.
• Business Transfers: In cases of mergers or acquisitions, with GDPR safeguards in place.

We do not sell or rent your personal data.

6. Data Retention

We retain personal data only as long as necessary:

• Client Data: Kept while your account is active and for a limited period post-termination for legal purposes (e.g., tax records).
• Website Visitor Data: Retained in pseudonymized form for statistical use, typically deleted after 24 months.

Data is deleted or anonymized upon request or account closure, unless legally required to be retained.

7. Your Rights

Under GDPR, you and your Website Visitors have these rights:

• Access: Request a copy of your personal data.
• Rectification: Correct inaccurate or incomplete data.
• Erasure: Request deletion of your data under certain conditions.
• Restriction: Limit processing of your data.
• Portability: Receive your data in a structured, machine-readable format.
• Objection: Oppose processing based on legitimate interests.
• Withdraw Consent: Revoke consent where applicable.

To exercise these rights, contact us at privacy@popuplite.com. We’ll respond within one month, per GDPR. Website Visitors should contact the relevant website owner (our client) for rights requests, and we’ll assist as needed.

8. Security Measures

We use robust measures to protect your data, including:

• Encryption: Data is encrypted in transit and at rest.
• Access Controls: Limited to authorized personnel only.
• Audits: Regular security reviews to ensure compliance.

If a data breach occurs, we’ll notify affected parties and authorities as required by GDPR.

9. International Transfers

As a SaaS platform, we may transfer data outside the EU. We ensure protection via:

• EU-US Data Privacy Framework: Or Standard Contractual Clauses for US transfers.
• Adequacy Decisions: For countries recognized by the EU as safe.

10. Cookies and Tracking Technologies

We use cookies to improve the Service and gather statistical data:

• Essential Cookies: Required for Service functionality (e.g., session management).
• Analytical Cookies: Track behavior and collect meta-information for analysis.
• Third-Party Cookies: Used by sub-processors (e.g., analytics tools).

Clients must obtain Website Visitors’ consent for non-essential cookies per the ePrivacy Directive and GDPR. We provide tools to assist with this.

See our Cookie Policy for details.

11. Changes to This Policy

We may update this policy to reflect changes in practices or laws. Significant updates will be communicated via our website or email. Continued use of the Service after changes implies acceptance.

12. Contact Information

For questions or to exercise your rights, reach us at:

• Email: privacy@popuplite.com
• Address: r6lab Radoslaw Jozefowicz, ul. Akacjowa 3, 55-003 Krzykow, Poland

Thank you for choosing PopupLite.com. We’re committed to protecting your privacy while delivering exceptional service.