Privacy Policy

Last updated: 26 May 2026 · Version 1.0

This Privacy Policy explains how SIA Deep Relay X (“we”, “us”, “our”) processes personal data when you visit our website or contact us about B2B software development services.

Controller

Company	SIA Deep Relay X
Registered address	Plēksnes iela 6 – 66, Rīga, LV-1016, Latvia
Registration No.	40203746736
Email	deeprelayx@gmail.com
Phone	+371 29878206

We act as the data controller for personal data collected through this website and our business contact channels.

We are not required to appoint a Data Protection Officer (DPO) under Article 37 GDPR. For all privacy-related requests, contact us at the email above with the subject line “Privacy request”.

Scope

This policy applies to:

Visitors of our marketing website (including the “Let’s talk” / briefing contact form);
Prospective and existing B2B clients who contact us by email or phone;
Data subjects who exercise their rights under the GDPR.

It does not replace a separate Data Processing Agreement (DPA) where we process personal data on behalf of a client as a processor under a software development contract.

Categories of personal data

Category	Examples	Source
Identity & contact	Name, email, phone	Form, email, phone
Professional	Company, message, website URL	Contact form
Technical	IP, browser, timestamps	Server logs
Communication	Message content and replies	Form, email

We do not intentionally collect special category data (Article 9 GDPR) through this website.

Purposes of processing

Handling project inquiries — respond to briefing requests and schedule calls.
Pre-contractual steps — proposals and estimates at your request.
Contract performance — deliver development, integration, maintenance, or consulting.
Website operation & security — hosting, abuse prevention, reliability.
Legal compliance — accounting, tax, and regulatory obligations in Latvia/EU.
Analytics (future) — aggregate traffic insights only with consent where required.

Legal bases (GDPR Article 6)

Purpose	Legal basis
Contact form & email	Art. 6(1)(a) consent; Art. 6(1)(b) pre-contractual steps
Phone inquiries	Art. 6(1)(b); Art. 6(1)(f) legitimate interest
Server logs & security	Art. 6(1)(f) legitimate interest
Contracts & invoicing	Art. 6(1)(b); Art. 6(1)(c) legal obligation
Future analytics	Art. 6(1)(a) consent via cookie banner

Retention periods

Data type	Retention
Contact form & sales inquiries	Up to 24 months after last meaningful contact
Contract & project records	Contract term + 7 years where required by law
Server / security logs	Typically 30–90 days
Consent records	3 years or until withdrawal
Tax & invoice data	Up to 7 years per Latvian law

Recipients and processors

We may share data with EU-based hosting providers, email tools, professional advisers, and authorities when required by law. We do not sell personal data. Client project sub-processors are listed in the relevant DPA.

Cookies and similar technologies

Current (May 2026): strictly necessary hosting/security processing; Google Fonts may receive connection metadata. Planned: privacy-oriented analytics only after a cookie consent banner.

Your rights (Articles 15–22 GDPR)

You may request access, rectification, erasure, restriction, portability, object to processing, withdraw consent, and lodge a complaint. Email deeprelayx@gmail.com — we respond within one month.

Security

We apply measures under Article 32 GDPR, including HTTPS and access controls. Do not send trade secrets via the open form without agreeing a secure channel first.

Children

Our services target B2B clients. We do not knowingly collect data from individuals under 16.

Changes to this policy

We may update this policy; the “Last updated” date will change accordingly.

Supervisory authority (Latvia)

Datu valsts inspekcija (Data State Inspectorate)
https://www.dvi.gov.lv/en
Elijas iela 17, Rīga, LV-1050, Latvia

Contact

SIA Deep Relay X
Plēksnes iela 6 – 66, Rīga, LV-1016, Latvia
deeprelayx@gmail.com · +371 29878206