Kubic Solutions

Legal

Privacy Policy

Last updated: May 23, 2026

Your privacy matters to us. This Privacy Policy explains what personal data Kubic Solutions collects, how we use it, and your rights regarding that data. We will never sell your information to third parties.

1. Who We Are

Kubic Solutions (“we,” “us,” or “our”) is a web development studio operating at kubicsolutions.com. We are the data controller for the personal data described in this policy. Questions can be directed to us via our contact page.

2. Data We Collect

We collect personal data only when you voluntarily provide it or when it is generated automatically through normal website use:

  • Contact form submissions: name, email address, phone number (optional), and your project message
  • Order data: billing details, payment records, and order history when you purchase a service through WooCommerce
  • Technical data: IP address, browser type, operating system, and pages visited — collected automatically via server logs
  • Communications: email correspondence related to project enquiries or support

We do not knowingly collect data from children under 16. If you believe a child has submitted data to us, please contact us immediately so we can delete it.

3. How We Use Your Data

We use the data we collect for the following purposes:

  • Responding to project enquiries and service requests
  • Processing payments and fulfilling service orders
  • Sending transactional emails related to your order or project
  • Monitoring contact form submissions to detect and prevent spam
  • Improving the performance and security of our website
  • Complying with legal obligations

We will not use your data for unsolicited marketing without your explicit consent.

4. Legal Basis for Processing

We process your personal data under the following legal bases:

  • Contract performance: processing necessary to deliver the service you purchased
  • Legitimate interests: spam prevention, website security, and fraud detection
  • Legal obligation: retaining financial records as required by applicable law
  • Consent: where you have given explicit consent, such as subscribing to updates

5. Data Sharing

We do not sell, rent, or trade your personal data. We may share it only with the following trusted service providers, strictly for the purposes described above:

  • Email delivery: to send transactional emails on our behalf
  • Payment processing: WooCommerce and its payment gateway partners handle transactions securely
  • CAPTCHA: Cloudflare Turnstile verifies form submissions to prevent automated abuse
  • Hosting provider: our server infrastructure provider may process data as part of normal hosting operations

All third-party processors are contractually required to handle your data in accordance with applicable privacy law.

6. Data Retention

We retain personal data only for as long as necessary:

  • Contact form submissions: up to 12 months for spam monitoring, then deleted
  • Order and billing records: 7 years as required by financial regulations
  • Project communications: for the duration of the project plus 2 years
  • Server logs: up to 90 days, then automatically purged

7. Cookies

Our website uses the following types of cookies:

  • Strictly necessary: WordPress session cookies and WooCommerce cart cookies required for the site to function
  • Security: Cloudflare cookies used for bot detection and DDoS mitigation

We do not use advertising, analytics, or tracking cookies. You can disable cookies in your browser settings, though this may affect site functionality.

8. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access: request a copy of the personal data we hold about you
  • Rectification: ask us to correct inaccurate or incomplete data
  • Erasure: request deletion of your data where there is no lawful reason to retain it
  • Restriction: ask us to limit how we process your data in certain circumstances
  • Portability: receive your data in a structured, machine-readable format
  • Objection: object to processing based on legitimate interests

To exercise any of these rights, contact us through our contact page. We will respond within 30 days.

9. Data Security

We implement appropriate technical and organisational measures to protect your data against unauthorised access, loss, or disclosure. These include TLS encryption for data in transit, strong access controls, and regular security reviews of our website and infrastructure.

No method of transmission over the internet is 100% secure. In the unlikely event of a data breach that affects your rights, we will notify you and any relevant supervisory authority as required by law.

10. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of those sites and encourage you to review their privacy policies independently.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated to active clients via email. The version in effect at the time your data was collected will apply to its processing.

12. Contact & Complaints

For any privacy-related questions or to exercise your rights, contact us via our contact page. If you are unsatisfied with our response, you have the right to lodge a complaint with the relevant data protection authority in your jurisdiction.