1. Introduction and Identity of the Data Controller

Abasus Holding ("we", "us", "our", or "the Company") is committed to protecting the privacy and personal data of all individuals who interact with our services, platforms, applications, and integrations.

This Privacy Policy explains how Abasus Holding collects, uses, processes, stores, shares, and protects personal data in connection with our digital products, APIs, mobile and web applications, and third-party platform integrations (including but not limited to social media networks, marketing APIs, and analytics services).

Data Controller:
Abasus Holding
Email: contact.abasus@gmail.com

If you have any questions about this Privacy Policy or our data practices, please contact us at the address above before using our services.

2. Scope of This Policy

This Policy applies to:

• All websites, mobile applications, and web applications operated by Abasus Holding
• All APIs, integrations, and services offered by or connected to Abasus Holding
• All third-party platform connections (social media platforms, cloud services, analytics providers, payment processors, etc.)
• All individuals whose data we process, including end users, business contacts, and visitors

This Policy does not apply to third-party services or platforms that we link to or integrate with. We encourage you to review the privacy policies of those third parties independently.

3. Data We Collect

We collect personal data through various means depending on how you interact with our services. The categories of data we may collect include:

3.1 Data You Provide Directly

• Identity data: name, username, profile picture
• Contact data: email address, phone number
• Account credentials: passwords (stored in hashed form), authentication tokens
• Profile data: biography, preferences, settings
• Communications: messages, feedback, support requests you send us

3.2 Data Collected Automatically

• Usage data: pages visited, features used, clicks, session duration, search queries
• Device and technical data: IP address, browser type and version, operating system, device identifiers
• Log data: server logs, error reports, timestamps of access
• Cookie and tracking data: first-party and third-party cookies, pixel tags, web beacons (see Section 10)

3.3 Data from Third-Party Platforms and APIs

When you connect your account to third-party platforms (such as social media networks, advertising platforms, or productivity tools), we may receive data from those platforms subject to your permissions and their terms of service. This may include:

• Public profile information
• Friend lists, followers, or connections (as permitted)
• Content you have published on those platforms
• Analytics and performance metrics related to your accounts
• OAuth tokens and access credentials required for API connectivity

We only request the minimum permissions necessary to provide the functionality you have requested ("data minimization principle").

3.4 Data from Other Sources

• Business partner data
• Publicly available sources (public registries, social media profiles, etc.)
• Data from analytics and enrichment service providers

4. Purposes and Legal Bases for Processing

We process personal data only where we have a valid legal basis to do so. The table below outlines the main purposes of processing and the corresponding legal basis under applicable law (including the GDPR and equivalent frameworks):

5. Third-Party Platforms and API Integrations

Our services may connect to and interact with third-party APIs and platforms, including:

• Social media platforms (e.g. Meta/Facebook, Instagram, X/Twitter, LinkedIn, TikTok, YouTube)
• Advertising and analytics platforms (e.g. Google Ads, Google Analytics, Meta Ads Manager)
• Communication services (e.g. email providers, SMS gateways)
• Cloud infrastructure (e.g. AWS, Google Cloud, Microsoft Azure)
• Payment processors
• Other SaaS tools and productivity platforms

When integrating with such platforms, we act in accordance with each platform's developer policies and terms of service. Data received through platform APIs is used solely for the purposes for which permission was granted and is not sold or transferred to any other party.

Users may revoke Abasus Holding's access to third-party platforms at any time through the platform's own settings (e.g. by revoking app permissions in the connected app settings of the relevant social network).

6. Data Sharing and Disclosure

We do not sell, rent, or trade your personal data. We may share your data in the following limited circumstances:

6.1 Service Providers (Data Processors)

We engage trusted third-party service providers who process data strictly on our behalf and under our instructions, including:

• Cloud hosting and infrastructure providers
• Payment processors
• Email delivery services
• Analytics providers
• Customer support platforms

All service providers are bound by data processing agreements that ensure appropriate safeguards.

6.2 Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, personal data may be transferred as part of that transaction. We will provide notice before any such transfer.

6.3 Legal Obligations and Protection of Rights

We may disclose data if required to do so by law, regulation, court order, or government authority, or when we believe disclosure is necessary to protect our rights, prevent fraud, or ensure the safety of our users or others.

6.4 With Your Consent

We may share data with third parties when you have explicitly consented to such sharing.

7. International Data Transfers

Abasus Holding may transfer personal data to countries outside your jurisdiction, including countries that may not provide the same level of data protection as your home country. In such cases, we implement appropriate safeguards such as:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Adequacy decisions recognized by the relevant supervisory authority
• Binding Corporate Rules where applicable

By using our services, you acknowledge that your data may be transferred and processed in countries outside your own.

8. Data Retention

We retain personal data for as long as necessary to fulfill the purposes described in this Policy, unless a longer retention period is required by law.

The criteria used to determine retention periods include:

• Duration of the contractual relationship
• Legal, regulatory, and tax obligations
• Statutory limitation periods
• Legitimate business needs

When data is no longer needed, we delete or anonymize it securely.

9. Your Rights

Depending on your location and applicable law, you may have the following rights regarding your personal data:

• Right of access: Obtain a copy of the data we hold about you
• Right to rectification: Request correction of inaccurate or incomplete data
• Right to erasure ("right to be forgotten"): Request deletion of your personal data in certain circumstances
• Right to restriction of processing: Request that we limit how we use your data
• Right to data portability: Receive your data in a structured, machine-readable format
• Right to object: Object to processing based on legitimate interests or for direct marketing purposes
• Right to withdraw consent: Withdraw consent at any time where processing is consent-based
• Right not to be subject to automated decisions: Not be subject to decisions based solely on automated processing that significantly affect you

California Residents (CCPA / CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act, including the right to know what personal information is collected, the right to delete personal information, the right to opt out of the "sale" or "sharing" of personal information, and the right to non-discrimination for exercising your rights.

To exercise any of the above rights, please contact us at: contact.abasus@gmail.com

We will respond to verifiable requests within the timeframes required by applicable law (generally 30 days for GDPR, 45 days for CCPA).

10. Cookies and Tracking Technologies

Our services use cookies and similar tracking technologies to enhance your experience, analyze usage patterns, and support integrations with third-party platforms.

10.1 Types of Cookies We Use

• Strictly necessary cookies: Essential for the operation of the service (no consent required)
• Functional cookies: Remember your preferences and settings
• Analytics cookies: Help us understand how users interact with our services
• Marketing/advertising cookies: Used to deliver relevant content and measure campaign performance

10.2 Managing Cookies

You may control cookie preferences through your browser settings or through any cookie consent mechanism provided within our applications. Note that disabling certain cookies may affect the functionality of our services.

For more information about cookies and how to manage them, visit www.allaboutcookies.org.

11. Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, accidental loss, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit (TLS/HTTPS) and at rest
• Access controls and authentication mechanisms
• Regular security assessments and penetration testing
• Employee training on data protection and security

No transmission of data over the internet or method of electronic storage is completely secure. While we strive to protect your data, we cannot guarantee absolute security.

If you believe your data has been compromised, please contact us immediately at contact.abasus@gmail.com.

12. Children's Privacy

Our services are not directed to children under the age of 13 (or 16 in certain jurisdictions). We do not knowingly collect personal data from children. If we become aware that we have inadvertently collected data from a child without verifiable parental consent, we will take steps to delete that data promptly.

If you believe a child has provided us with personal data, please contact us at contact.abasus@gmail.com.

13. Links to Third-Party Websites and Services

Our services may contain links to third-party websites or services. This Privacy Policy does not apply to those third-party properties. We encourage you to review the privacy policies of any third-party sites you visit.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or applicable law. When we make material changes, we will:

• Update the "Last updated" date at the top of this document
• Notify you via email or prominent notice within our services (where required by law)
• Obtain new consent where required

We encourage you to review this Policy periodically.

15. Contact and Complaints

For any questions, requests, or complaints regarding this Privacy Policy or our data processing practices, please contact us:

Abasus Holding
Email: contact.abasus@gmail.com

If you are located in the European Economic Area and believe we have not addressed your concern satisfactorily, you have the right to lodge a complaint with your local data protection supervisory authority. A list of EU supervisory authorities is available at https://edpb.europa.eu/about-edpb/about-edpb/membersen.