This Privacy Policy describes how Codify CRM LTD (“CodifyCRM”, “we”, or “us”) collects, uses, and processes your personal data when you access or use the website available at www.codifycrm.co (the “Website”). It also informs you of your rights under the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and applicable data protection laws.
When you use our Website, we process personal data from different sources. This includes data automatically collected during your visit, data you voluntarily provide through forms or downloads, and data collected when using our integrations.
When you access the Website, your browser automatically transmits certain information to our servers, which is stored in server log files. This includes the date and time of access, IP address, referrer URL, subpages visited, and details about your browser, operating system, and device. This data (“Usage Data”) is processed to ensure the technical operation of the Website, monitor performance, prevent misuse, and improve user experience. The legal basis for this processing is Article 6(1)(f) GDPR. Usage data is stored for a maximum of seven days.
We also use cookies and similar technologies to collect Usage Data and track user behavior. Cookies are small text files stored on your device. For more information about the use of cookies and how you can manage your preferences, please refer to our Cookie Policy at www.codifycrm.co/cookie-policy.
When you contact us using the contact form or download content from the Website, we collect the information you provide, such as your name, email address, and message. We process this data to respond to your inquiries and maintain appropriate documentation. The legal basis for this processing is Article 6(1)(b) and (f) GDPR and, where applicable, Section 25 of the German TTDSG. Such correspondence is retained in accordance with legal obligations for a period of six years following the end of the calendar year in which the communication occurred.
Use of CodifyCRM Integrations
When our integration is used within an online shop or third-party service, the provider of that shop or service acts as the data controller for any personal data processed through the integration. CodifyCRM acts solely as a data processor in such cases and processes data only in accordance with the customer's instructions and the terms of a data processing agreement. If you are a customer of one of our clients using the CodifyCRM integration, please refer to that entity’s privacy policy for more information.
Data Transfers and Recipients
Your personal data may be shared with service providers and partners as necessary to operate the Website and provide services. These third parties may include providers of analytics, customer service tools, and hosting services. All data processors act under our instructions and are contractually bound by data processing agreements in compliance with Article 28 GDPR.
The Website is hosted on infrastructure located in Germany and managed by a Germany-based hosting provider. In some cases, data may be accessed or processed outside the European Economic Area (EEA). Where such transfers occur, appropriate safeguards are implemented, including the use of the European Commission’s Standard Contractual Clauses and, where required, a Transfer Impact Assessment to ensure adequate protection.
Storage Period
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected or to comply with legal obligations. After the end of a contractual relationship, we retain data only where required by tax, commercial, or legal retention obligations, or where necessary for the preservation of evidence. For example, IP addresses and timestamps related to consent may be retained to demonstrate compliance with data protection obligations.
User Profiling
We may use certain personal data to create user profiles to tailor content and services on the Website based on your preferences or previous behavior. This does not include automated decision-making that produces legal or similarly significant effects on you. The purpose of profiling is to provide a better, more personalized experience.
Data Subject Rights
Under the GDPR, you have the right to access your personal data (Article 15), to rectify inaccurate or incomplete data (Article 16), to request erasure (Article 17), to restrict processing (Article 18), and to receive a copy of your data in a structured, commonly used format (Article 20). Where processing is based on your consent, you may withdraw consent at any time with effect for the future.
You also have the right to object, on grounds relating to your particular situation, to the processing of your personal data where the legal basis is our legitimate interest (Article 6(1)(f) GDPR). In such cases, we will cease processing unless we can demonstrate compelling legitimate grounds. You may object at any time to the use of your data for direct marketing purposes, including profiling related to such marketing.
To exercise any of your rights, or for further information, you may contact us at contacto@codifycrm.co
In addition, you have the right to lodge a complaint with the relevant supervisory authority. If you are located in the UK, you may contact the Information Commissioner’s Office (ICO). If located in Spain, the competent authority is the Agencia Española de Protección de Datos (AEPD) at www.aepd.es.
Changes to this Privacy Policy
We may update this Privacy Policy to reflect changes in our data processing practices. Any material changes will be communicated in advance. Editorial corrections or clarifications may be made without notice. The current version of the Privacy Policy is always available at www.codifycrm.co/privacy.