Privacy Policy

Controller (Imprint)

1. Who we are

Cado Holdings OÜ ("we", "us", or "our") is the data controller when you visit snaips.com or use its services. We are responsible for processing your personal data under the EU General Data Protection Regulation (GDPR).

2. What data we collect and why

We only collect the data necessary to provide our services:

• Account data: For example, name and email address if you create an account or are invited to use a service. Required to create the account, sign you in, and communicate with you.
• Service data: Information you submit through the site's forms or services. We process this data only to fulfil the purpose for which it was provided.
• Technical data: IP address and standard server logs. Needed to keep the site secure, troubleshoot errors, and maintain operations.

3. Essential cookies

We only use strictly necessary cookies: the sign-in session cookie (.AspNetCore.Identity.Application), the language preference cookie (.AspNetCore.Culture), and CSRF protection. Because they are essential for the site to work, no consent banner is required. We do not use tracking, analytics, or advertising cookies.

4. Lawful basis for processing

We process your data under the GDPR on these bases:

• Performance of a contract: To deliver the services we provide after an account or equivalent arrangement is in place.
• Legitimate interest: Keeping the site secure and operational, and responding to communication based on the information you provide.

5. How we share your data

We do not sell your personal data. We use the following trusted sub-processors to run our infrastructure:

• Microsoft Azure (EU) — application and database hosting.
• Resend (resend.com) — delivery of transactional email.

We may also disclose data to authorities if required by law.

6. Data retention

We retain your personal data only for as long as your account is active or as required by law (e.g. accounting legislation). You can request deletion of your account and associated data by contacting privacy@snaips.com.

7. Your rights

Under the GDPR you have the right to:

• Access the personal data we hold about you.
• Correct inaccurate or incomplete data.
• Erase your data (the "right to be forgotten").
• Restrict or object to certain types of processing.
• Receive a copy of your data in a machine-readable format (portability).

To exercise these rights, or for any questions about this policy, contact privacy@snaips.com.

You also have the right to lodge a complaint with the data protection authority in your country of residence. In Estonia this is Andmekaitse Inspektsioon; in Finland the Office of the Data Protection Ombudsman.

8. Changes to this policy

We update this policy when needed. We notify registered users of material changes by email. The current version is always available on this page, and the date shown at the top reflects the most recent update.