Privacy Policy

Effective date: 07.04.2026 · Last updated: 07.04.2026

1. Data Controller

The controller of your personal data is:

ProximityMap.io
Address: Poland
Email: contact@proximitymap.io

You can contact us at contact@proximitymap.io for any data-related questions or requests.

2. What Personal Data We Collect

We keep data collection to the minimum needed to deliver the Service. Here is what we collect and why:

Data	Purpose	Legal Basis (GDPR)
Email address	Order confirmation, Report delivery, customer support	Art. 6(1)(b) — contract performance
Payment data (card number, billing details)	Payment processing — handled entirely by Stripe; we do not store this data	Art. 6(1)(b) — contract performance
Selected location coordinates	Report generation	Art. 6(1)(b) — contract performance
IP address, browser type, device info	Security, fraud prevention, service analytics	Art. 6(1)(f) — legitimate interest
Cookie identifiers (analytics)	Website usage statistics (Google Analytics)	Art. 6(1)(a) — consent
Email & message content (contact form)	Responding to your inquiries	Art. 6(1)(f) — legitimate interest

3. How We Use Your Data

We use your personal data to:

Process your Orders and deliver Reports.
Send order confirmations and Report access links via email.
Provide customer support and handle complaints.
Analyse how the Service is used so we can improve it (via anonymised/aggregated analytics).
Prevent fraud and ensure the security of the Service.

We do not use your data for automated decision-making or profiling that has legal effects on you.

We do not send marketing emails unless you explicitly opt in.

4. Who We Share Data With

We share your personal data only with trusted third-party processors that are necessary to operate the Service:

Provider	Purpose	Data Shared	Location
Stripe, Inc.	Payment processing	Email, payment details	USA (SCCs / DPF)
Google LLC (Analytics)	Website analytics	Cookie IDs, IP (anonymised)	USA (SCCs / DPF)
Mapbox, Inc.	Map rendering, geocoding	Location queries, IP	USA (SCCs / DPF)

Where data is transferred outside the EEA (e.g. to the USA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or the EU-US Data Privacy Framework (DPF).

We do not sell your data to third parties.

5. How Long We Keep Your Data

Order & Report data — kept for 12 months after purchase, then deleted or anonymised (unless a longer retention period is required by tax or accounting law).
Invoicing & financial records — kept as required by Polish tax law (currently 5 years from the end of the tax year).
Contact form messages — kept for up to 12 months, then deleted.
Analytics data — Google Analytics data retention is set to 14 months.

6. Your Rights Under GDPR

As a data subject in the EU/EEA, you have the following rights:

Right of access (Art. 15) — request a copy of the personal data we hold about you.
Right to rectification (Art. 16) — ask us to correct inaccurate data.
Right to erasure ("right to be forgotten") (Art. 17) — ask us to delete your data when there is no compelling reason for us to keep it.
Right to restriction of processing (Art. 18) — ask us to temporarily stop processing your data.
Right to data portability (Art. 20) — receive your data in a structured, machine-readable format.
Right to object (Art. 21) — object to processing based on legitimate interest.
Right to withdraw consent (Art. 7) — withdraw consent for analytics cookies at any time via the cookie banner or browser settings.

To exercise any of these rights, email us at contact@proximitymap.io. We will respond within 30 days.

You also have the right to lodge a complaint with the supervisory authority — in Poland this is the President of the Office for Personal Data Protection (UODO), uodo.gov.pl.

7. Children's Privacy

Our Service is not directed at children under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us at contact@proximitymap.io and we will delete it promptly.

8. Data Security

We take reasonable technical and organisational measures to protect your data, including:

HTTPS encryption for all data in transit.
Secure server infrastructure with restricted access.
Payment processing delegated to PCI-DSS compliant Stripe.
Regular review of access controls and security practices.

No system is 100% secure. If you suspect a security breach, please notify us immediately at contact@proximitymap.io.

9. Cookies

We use cookies and similar technologies on the Service. For full details, please see our Cookie Policy.

In summary:

Essential cookies — required for the Service to function (no consent needed).
Analytics cookies (Google Analytics) — used only with your consent.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Changes take effect when published on this page. For significant changes we will make reasonable efforts to notify you (e.g. via email or a notice on the Service).

11. Contact

For any privacy-related questions, data requests, or complaints:

Email: contact@proximitymap.io
Company: ProximityMap.io
Address: Poland