Privacy Policy

1. Overview and Responsible Entity

The Controller responsible for data processing on this website (pursuant to Art. 4(7) GDPR) is:

2. Hosting and Infrastructure

Our website is hosted on servers provided by Amazon Web Services (AWS).

• Provider: Amazon Web Services EMEA SARL, 38 Avenue John F. Kennedy, L-1855 Luxembourg.
• Server Location: Frankfurt, Germany (eu-central-1).
• Legal Basis: Art. 6(1)(f) GDPR – Legitimate interest in stable and secure website operation.
• Data Processing Agreement: We have concluded a Data Processing Agreement (DPA) with AWS.

When you visit our website, your IP address is processed to deliver the requested content. AWS may transfer data to its parent company in the USA. Such transfers are based on the EU Standard Contractual Clauses and the EU-US Data Privacy Framework.

3. Data Collection on Our Website

A. Server Log Files (Technical Data)

When you visit our website, our web server automatically collects the following data:

• Purpose: Ensuring technical stability, security, abuse prevention, and for anonymous statistical analysis of regional usage patterns. Anonymous in this context refers to truncated IP addresses where last octet of the IP address is deleted.
• Legal Basis: Art. 6(1)(f) GDPR — Legitimate interest.
• Recipients: AWS (as hosting provider/processor).
• Retention: The data is deleted automatically after 14 days. If data is not deleted within this period because it is strictly required for the mentioned purposes (e.g., investigating a security incident) or statutory obligations, it will be deleted as soon as these grounds no longer apply.

B. Map Tiles

Our website displays interactive maps. The map tiles (raster and vector) are served directly from our own infrastructure hosted on AWS. We use MapLibre GL JS for map rendering, which is bundled locally. No data is transmitted to external map providers.

C. Contact Form

When you use our contact form, we collect:

• Purpose: Processing and responding to your inquiry; spam protection.
• Legal Basis: Art. 6(1)(b) GDPR (pre-contractual measures) or Art. 6(1)(f) GDPR (legitimate interest in communication).
• Legitimate Interests Pursued: Responding to user inquiries; preventing spam and abuse.
• Recipients:
  • AWS (Infrastructure): Hosting provider/processor.
  • Proton AG (Email Provider): Located in Geneva, Switzerland. Receives inquiries via encrypted SMTP. Proton AG Privacy Policy.
• Retention: The data is deleted when it is no longer required for the mentioned purposes or other legal grounds for processing the data apply.
• Obligation to Provide Data: Providing your data is voluntary. However, without your name, email address, and message, we cannot process or respond to your inquiry.

4. Cookies and Tracking

5. Your Rights

In all cases where we process your personal data, you have the following rights:

• Right to Information & Access (Art. 15 GDPR): Request information about the processing of your data and receive a copy.
• Right to Rectification (Art. 16 GDPR): Request correction or completion of your personal data.
• Right to Erasure (Art. 17 GDPR): Request deletion of your personal data ("right to be forgotten").
• Right to Restriction of Processing (Art. 18 GDPR): Request that we restrict how your data is processed.
• Right to Data Portability (Art. 20 GDPR): Receive your data in a structured, machine-readable format to transmit to another controller.
• Right to Object (Art. 21 GDPR): Where we process your personal data based on legitimate interest (Art. 6(1)(f) GDPR), you have the right to object at any time for reasons relating to your particular situation. We will then no longer process your data unless we can demonstrate compelling legitimate grounds that override your interests, rights, and freedoms.
• Right to Lodge a Complaint (Art. 77 GDPR): You have the right to lodge a complaint with a supervisory authority regarding the processing of your personal data. You have the right to lodge a complaint in the (EU member) state of Your residence, Your place of work, and/or the place of the alleged infringement. The supervisory authority to which you lodge your complaint will inform you of its status and results, including the possibility of a judicial remedy.

Data processing when exercising your rights

When you exercise your rights, we process the personal data transmitted by you for the purpose of implementing these rights and to provide evidence of compliance (Art. 7(3) GDPR; Art. 15 to 22 GDPR).

The legal basis for fulfilling your rights is Art. 6(1)(c) GDPR in conjunction with Art. 15 to 22 GDPR. Insofar as we process data for legal defense, this is our legitimate interest per Art. 6(1)(f) GDPR. We retain correspondence regarding your request for a period of three years.

To exercise your rights, contact: help@seavec.io

6. Data Security

We use TLS/SSL encryption to protect data transmitted between your browser and our servers.

7. External Links (Discord)

Our website contains a link to the Discord platform. A connection to Discord's servers is only established when you actively click the Discord icon. No data is transmitted to Discord by merely visiting our website.

When you click the link, your browser transmits data to Discord's servers, including your IP address, browser/device information (User Agent), the referring URL (seavec.io), and any existing Discord cookies.

• Provider: Discord Inc., 444 De Haro St, San Francisco, CA 94107, USA.
• Privacy Policy: discord.com/privacy
• Note: As Discord is based in the USA, data may be transferred to the USA. We have no control over the data processing practices of Discord Inc.

8. Changes to This Privacy Policy

We reserve the right to update this Privacy Policy from time to time to reflect changes in Our processing activities. The current version is always available on this page with the "Last Updated" date.