Get in Touch
background

PRIVACY POLICY

Effective date: March 3, 2026

This Privacy Policy applies to: crocodelab.com (the "Website").

1. Data Controller

The controller of your personal data is: KROKOD sp. z o.o. ul. Tadeusza Rejtana 53A/303, 35-326 Rzeszów, Poland, EU NIP: 8133877628 Email (privacy contact): welcome@crocodelab.com

2. Personal data we collect

Depending on how you use the Website, we may process:

A) Data you provide (contact/project form, email)

  • First name, last name
  • Company name
  • Email address
  • Phone number (if provided)
  • Budget (if provided)
  • Project details and any information you include in your message

B) Technical and usage data

  • IP address
  • Device and browser details (user agent)
  • Language, approximate location (derived from IP)
  • Referrer URL
  • Pages viewed and interactions
  • Cookies and similar identifiers

3. Purposes of processing

We process personal data to:

  • Respond to your inquiry and communicate about your project
  • Prepare proposals and take steps prior to entering into a contract
  • Manage our sales process in CRM
  • Maintain Website security and prevent abuse
  • Measure and improve Website performance and user experience (analytics)
  • Provide email communication, including optional newsletter/updates (if you opt in)
  • Provide live chat support (if enabled on the Website)

4. Legal bases (GDPR)

Where GDPR applies, we rely on:

  • Contract / steps prior to entering into a contract (Art. 6(1)(b)) — handling your inquiry, preparing an offer
  • Legitimate interests (Art. 6(1)(f)) — security, preventing fraud/abuse, improving the Website, sales operations
  • Consent (Art. 6(1)(a)) — non-essential cookies (analytics/marketing if used), newsletter/marketing emails (only if you opt in)
  • Legal obligation (Art. 6(1)(c)) — accounting/tax/legal requirements when applicable

5. Cookies and analytics

We use cookies and similar technologies. Where required, we ask for your consent before placing non-essential cookies. We use Google Analytics 4 (GA4) to understand Website usage and improve performance. Details are in our Cookie Policy.

6. Recipients (service providers)

We may share personal data with trusted providers, only as necessary:

  • Vercel — hosting and infrastructure for the Website
  • Google Analytics 4 (Google) — analytics
  • Zoho CRM — lead and sales process management
  • MailerLite — email communications and newsletter (only if enabled and/or you opt in)
  • Crisp Chat — chat communications (only if enabled)

We may also share data with professional advisers (legal/accounting) or authorities if required by law.

7. International transfers

Some providers may process data outside the EEA. When applicable, we use appropriate safeguards such as Standard Contractual Clauses (SCCs) and other legally recognized mechanisms.

8. Data retention

We keep personal data only as long as necessary:

  • Inquiries/leads: up to 24 months from last contact, unless a contract follows
  • Client/project records: duration of the contract + retention required by applicable law (e.g., accounting/tax)
  • Security logs: up to 90 days (unless longer needed for incident investigation)
  • Analytics: according to our GA4 settings
  • Newsletter (if enabled): until you unsubscribe or withdraw consent

9. Your rights

You may have the right to access, rectify, delete, restrict, object, and (where applicable) port your data, and to withdraw consent at any time. To exercise rights, email welcome@crocodelab.com. You also have the right to lodge a complaint with your supervisory authority. In Poland: UODO.

10. Security

We apply reasonable technical and organizational measures to protect personal data. No method of transmission or storage is 100% secure.

11. Children

The Website is not intended for children, and we do not knowingly collect children's data.

12. Changes

We may update this policy from time to time. The Effective date indicates the latest revision.