Privacy Policy

We gather personal information you willingly provide when you show interest in learning about us, our products, or Services, when you take part in activities on the Services, or when you contact us otherwise.

Personal Information You Provide. What we collect depends on how you interact with us and the Services, the choices you make, and the products or features you use. This may include:

• Email addresses
• Names
• Messages submitted via contact forms

Technical Information. We might automatically collect certain details when you visit our website:

• IP addresses (for rate limiting and security reasons)
• Browser and device data needed for website operation

Sensitive Information. We don’t process sensitive information.

Third-Party Service Data. Our website uses external services that might collect data per their own privacy policies:

• Vercel (hosting provider) - may collect IP addresses and technical details
• shields.io and dcbadge (badge services) - may collect IP addresses when badges load
• Microlink (link preview service) - may collect IP addresses and metadata when creating previews

All personal information you supply must be true, complete, and correct, and you should inform us of any updates to it.

This site doesn’t set first-party cookies or employ analytics tools. However, third-party services embedded in our website might collect minimal technical data, like IP addresses, or use cookies for technical needs.

Third-party services that may gather data:

• Vercel (hosting provider) - may collect IP addresses and technical data for load balancing and site stability
• shields.io and dcbadge (badge services) - may collect IP addresses when badges are loaded
• Microlink (link preview service) - may collect IP addresses and metadata when generating previews

These services follow their own privacy policies, which we do not control. You can adjust cookie preferences in your browser settings.

We process your personal information for various purposes, depending on your interaction with our Services, such as:

To answer user questions and offer support. We may process your information to reply to inquiries and address any issues you might face with the requested service.

To secure our Services. We may process your information to maintain the safety and security of our Services, including monitoring and preventing fraud.

To uphold our terms, conditions, and policies for business needs, meet legal and regulatory duties, or fulfill our contract.

To address legal requests and avoid harm. If we get a subpoena or other legal demand, we might need to review the data we hold to decide how to respond.

To protect an individual’s vital interest. We may process your information when it’s needed to safeguard someone’s critical interest, like preventing harm.

If you’re in the EU or UK, this applies to you.

The GDPR and UK GDPR require us to outline the legal bases we rely on to process your personal information. Thus, we may use these legal bases:

• Consent. We may process your information if you’ve permitted us (i.e., given consent) to use it for a specific purpose. You can retract your consent anytime.
• Legitimate Interests. We may process your information when it’s reasonably needed for our legitimate business interests, provided it doesn’t override your rights and freedoms. For instance, we might process it to:
• Deliver marketing and promotional messages to you
• Study how our Services are used to improve them for users
• Handle administrative and business tasks
• Detect issues and/or prevent fraud
• Learn how users engage with our products and services to enhance their experience
• Legal Obligations. We may process your information when we believe it’s needed to meet legal duties, like cooperating with law enforcement, defending our rights, or disclosing it as evidence in litigation we’re involved in.
• Vital Interests. We may process your information when we think it’s necessary to protect your vital interests or those of another person, such as in cases of potential safety threats.

We may need to share your personal information in these situations:

Business Transfers. We might share or transfer your information during negotiations or in connection with any merger, asset sale, financing, or acquisition of part or all of our business by another entity.

Third-Party Service Providers. We may share your data with third-party vendors, contractors, or agents ("third parties") who perform tasks for us or on our behalf and need that information for their work. Contracts with these third parties aim to protect your personal information, meaning they can’t use it unless we direct them to, nor share it with others beyond us. They also promise to secure the data they hold for us and keep it as long as we specify.

The third parties we may share personal information with include:

• Web Analytics: None currently in use
• Website Hosting: Vercel (Privacy Policy)
• Content Optimization: Microlink (Privacy Policy) for link previews
• Badge Services: shields.io (Privacy Policy) and dcbadge (hosted on Vercel, source code: https://github.com/gitlimes/dcbadge)

Our servers are based in the United States and elsewhere. If you access our Services from outside the U.S., know that your information might be transferred, stored, and processed by us in our facilities and by third parties we share it with (see "WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?" above), in the U.S. and other nations.

If you live in the European Economic Area (EEA), UK, or Switzerland, these countries might not have data protection laws as strong as yours. Still, we’ll take all needed steps to protect your personal information per this Privacy Notice and applicable law.

European Commission’s Standard Contractual Clauses:

We’ve set measures to safeguard your personal information, including using the European Commission’s Standard Contractual Clauses for transfers between our group companies and third-party providers. These clauses mandate recipients to protect personal information from the EEA or UK per European data protection laws. You can request our clauses. Similar safeguards are in place with our third-party providers and partners, with details available on request.

We’ll keep your personal information only as long as necessary for the aims outlined in this Privacy Notice, unless law mandates or allows a longer period (e.g., for tax, accounting, or legal needs).

Contact form submissions: We keep contact form data up to 1 year for follow-up and accountability, then securely delete it.

Technical data: IP addresses for rate limiting are held for up to 30 minutes.

Legal requirements: We may retain information longer if required by applicable laws or rules.

When there’s no ongoing legitimate business need to process your personal information, we’ll delete or anonymize it. If that’s not possible (e.g., due to backup archives), we’ll securely store it and isolate it from further processing until deletion is feasible.

We’ve put in place reasonable technical and organizational security measures to protect any personal information we process. Yet, despite our efforts, no internet transmission or storage tech can be guaranteed 100% secure, so we can’t ensure hackers, cybercriminals, or unauthorized parties won’t breach our security to improperly collect, access, steal, or alter your information. We’ll do our utmost to protect it, but sending personal information to and from our Services is at your own risk. Access the Services only in a secure setting.

Security measures include:

• Encryption: All data transmission uses HTTPS encryption
• Access Controls: Personal information access is restricted to a need-to-know basis
• Rate Limiting: Guards against abuse and automated attacks
• Data Validation: Proper checking of submitted form data
• In-Memory Processing: Contact form data is processed briefly and not stored long-term

In some areas (e.g., EEA, UK, Switzerland, Canada), applicable data protection laws grant you rights like: (i) requesting access and a copy of your personal information, (ii) seeking correction or deletion, (iii) restricting its processing, (iv) data portability if relevant, and (v) avoiding automated decision-making. In some cases, you can also object to its processing. Contact us using the details in "HOW CAN YOU REACH US ABOUT THIS NOTICE?" below to make a request.

We’ll review and act on any request per applicable data protection laws.

If you’re in the EEA or UK and feel we’re unlawfully processing your personal information, you can complain to your local or UK data protection authority.

If you’re in Switzerland, reach out to the Federal Data Protection and Information Commissioner.

Withdrawing your consent: If we process your personal information with your consent (express or implied, per applicable law), you can withdraw it anytime by contacting us via the details in "HOW CAN YOU REACH US ABOUT THIS NOTICE?" below.

Note this won’t affect processing done legally before withdrawal, nor, where law allows, processing based on other lawful grounds besides consent.

For questions or comments on your privacy rights, email us at legal[at]maxim.cat.

Many web browsers, some mobile systems, and apps offer a Do-Not-Track ("DNT") setting you can enable to signal your wish not to have online browsing data tracked and collected. No uniform standard for handling DNT signals exists yet, so we don’t currently respond to them or other automatic no-tracking signals. If a tracking standard we must follow is set later, we’ll update you in a revised Privacy Notice.

Categories of Personal Information We Collect

In the past twelve (12) months, we’ve collected these personal information types:

Identifiers

Contact info like real name, email address, and IP address - YES

Personal information per the California Customer Records statute

Name, contact details - YES

Protected classification characteristics under state or federal law

Gender, age, date of birth, race and ethnicity, national origin, marital status, and other demographic data - NO

Commercial information

Transaction information, purchase history, financial details, and payment information - NO

Biometric information

Fingerprints and voiceprints - NO

Internet or other similar network activity

Browsing history, search history, online behavior, interest data, and interactions with our and other websites, applications, systems, and advertisements - NO

Geolocation data

Device location - NO

Audio, electronic, sensory, or similar information

Images and audio, video or call recordings created in connection with our business activities - NO

Professional or employment-related information

Business contact details in order to provide you our Services at a business level or job title, work history, and professional qualifications if you apply for a job with us - NO

Education Information

Student records and directory information - NO

Inferences drawn from collected personal information

Inferences drawn from any of the collected personal information listed above to create a profile or summary about, for example, an individual’s preferences and characteristics - NO

Sensitive personal Information - NO

Sources of Personal Information

See more about what we collect in "WHAT DATA DO WE COLLECT?"

How We Use and Share Personal Information

Learn how we use it in "HOW DO WE HANDLE YOUR INFORMATION?"

We haven’t disclosed, sold, or shared personal information with third parties for business or commercial purposes in the last twelve (12) months. We won’t sell or share it from website visitors, users, or other consumers moving forward.

Your Rights

Certain U.S. state laws give you rights, though not absolute, and we may deny requests as allowed by law. These include:

• Right to know if we’re processing your personal data
• Right to access your personal data
• Right to fix errors in your personal data
• Right to request deletion of your personal data
• Right to get a copy of personal data you’ve shared with us
• Right to non-discrimination for using your rights

How to Exercise Your Rights

To use these rights, email us at legal[at]maxim.cat, visit https://maxim.cat/contact, or see contact details at this document’s end.

We may adjust this Privacy Notice occasionally. Updates will show a new "Last updated" date at the top. For major changes, we might notify you by posting a clear notice or sending you a direct message. We suggest reviewing this Privacy Notice often to stay informed on how we protect your information.

For questions or feedback about this notice, email us at legal[at]maxim.cat

For full legal info, visit: https://legal.maxim.cat

Depending on your country or state’s laws, you might have the right to request access to the personal information we collect from you, details on its processing, to correct errors, or delete it. You may also withdraw consent to our processing. These rights might be limited by law in some cases. To request to view, update, or erase your personal information, contact us using the details in section 13 above.