This Privacy Policy explains what personal data we collect, how we use it, on what grounds we process it, whom we may share it with, how long we retain it, and what rights data subjects have.
1. Who We Are
We are a provider of an online service for license plate recognition, event logging, access list management, passes, notifications, monitoring and integrations.
For account data, billing, communications, support and marketing outreach we generally act as the data owner under Ukrainian law and/or as controller within the meaning of GDPR.
With respect to license plates, photos, videos, event logs and other data that the client uploads or transmits to the service for their own purposes, we may act as a processor on behalf of the client, if this corresponds to the actual service usage model.
2. What Data We May Collect
- registration data: name, company name, email, phone, password or its hash, user role;
- payment and contract data: order details, plans, invoices, payment status, payment history;
- technical data: IP address, device identifiers, browser, operating system, language, timezone, security event logs;
- support data: correspondence, request records, technical logs, attachments;
- LPR/ANPR service data: license plates, event date and time, photo/frame, video clip, camera location, direction of travel, event status, access list, operator notes;
- marketing data: newsletter subscription, email interaction history, UTM tags and site analytics data;
- cookies and similar technologies, if used on the site.
3. Sources of Data
- directly from you during registration, payment, form completion or support requests;
- automatically when using the site and service;
- from your cameras, integrations, gateways, edge devices or your organization's administrators;
- from payment, email, hosting and analytics providers.
4. Purpose of Processing
- creating and administering the account;
- providing access to the service and its functionality;
- processing payments, maintaining accounting and tax records;
- contract performance, technical support, troubleshooting, security and fraud prevention;
- managing passes, event logs and access logic at client sites;
- communication about service changes, invoices, security incidents and legal matters;
- usage analytics, feature improvement, testing and product development;
- marketing communications — within the limits permitted by law and on the basis of your consent where required.
5. Legal Bases for Processing
For Ukraine we process personal data on the grounds provided for by Ukrainian law, in particular for specific and lawful purposes and/or with the consent of the data subject where such consent is required.
For the EU we may rely on the following bases under GDPR:
- performance of a contract or steps prior to concluding a contract;
- compliance with a legal obligation;
- legitimate interest, in particular regarding service security, abuse prevention, product development and business relations, subject to balancing of interests;
- consent — for certain cookies, marketing communications or other cases where required.
6. LPR/ANPR and Personal Data
A vehicle license plate may constitute personal data if it directly or indirectly allows identification of an individual. Therefore LPR/ANPR use must be carried out only with a proper legal basis, in compliance with the principles of minimization, proportionality, retention limits and access control.
If you use the service as a client or site administrator, you are responsible for the lawfulness of camera installation, informing individuals about video surveillance and determining processing purposes, unless otherwise expressly established in a separate agreement.
7. Whom We May Share Data With
- payment providers and banks;
- cloud and hosting providers, CDN, email delivery providers, monitoring and support systems;
- analytics services, if necessary for the operation of the site or service;
- contractors and affiliates involved in product support and development under contractual confidentiality obligations;
- government authorities, courts or law enforcement, if such obligation is expressly established by law.
8. International Data Transfer
If data is transferred outside Ukraine or the European Economic Area, we take reasonable legal and organizational measures to ensure an adequate level of protection, including using contractual mechanisms provided for by applicable law or working with providers that offer adequate safeguards.
9. Retention Periods
We retain personal data no longer than necessary for the purpose of processing, contract performance, protection of the parties' rights and interests, compliance with legal requirements or dispute resolution.
10. Security
We apply reasonable technical and organizational security measures, including access control, logging, authentication, backup, access segmentation, component updates and other means proportionate to the nature of the service and processing risks.
11. Your Rights
You have the rights provided for by Ukrainian law and GDPR, in particular the right of access, rectification, update, erasure, restriction of processing, objection, data portability, withdrawal of consent and lodging a complaint with a supervisory authority.
If we act as a processor on behalf of a client, data subject requests regarding core LPR/ANPR data should generally be addressed to the controller, i.e. the relevant client or site operator.
12. Cookies and Analytics
The site may use essential cookies for proper operation, as well as analytics or marketing cookies. For categories where consent is required, they are used only after it is obtained.
13. Children
The service is not intended for children unless otherwise expressly provided for by a specific product or legal documents. We do not knowingly collect personal data of children without a proper legal basis.
14. Changes to the Policy
We may update this Policy from time to time. A new version takes effect from the moment of its publication on the site, unless otherwise specified.
15. Contact
For privacy matters, exercise of data subject rights, incident reports or requests regarding personal data processing, contact: office@aipeeper.com.