Privacy Policy
Last updated: July 2026
This page is available in several languages. In case of any discrepancy between a translation and the English version, the English version prevails.
1. Introduction
At KanuniLabs, we respect your privacy. This policy explains how we collect, use, and protect your personal data across our website and software products. By using our services, you agree to this policy.
2. Information We Collect
When you create an account, purchase a license, or open a support ticket, we may collect your name, email address, GitHub profile data (if authenticating via GitHub), and IP address.
3. Payment Processing
We do not store your credit card details. All payments and invoicing for our Enterprise licenses are securely handled by our Merchant of Record, Paddle. Your payment information is subject to Paddle’s Privacy Policy.
4. Support Data
When you submit a support ticket, we collect the details you provide (including code snippets, logs, or project details) solely to assist you. This data is kept confidential and retained only as long as necessary to resolve your issue.
5. Your Rights (GDPR & KVKK)
Depending on your location, you have the right to access, rectify, or erase your personal data (Right to be Forgotten). You can also opt-out of our marketing or announcement emails at any time. To exercise these rights, contact us at [email protected].
6. Cookies & Analytics
We use a small number of cookies: an essential cookie that remembers your language preference, and a session cookie when you sign in to the dashboard. Optional analytics (Google Analytics) runs only if you accept it in the cookie banner — you can change your choice at any time via "Cookie settings" in the footer. We do not use advertising or cross-site tracking cookies.
7. Where Your Data Lives & Sub-processors
Our website and database are hosted on servers in the European Union (Hetzner, Germany), with traffic protected by Cloudflare. We share data only with the providers needed to run the product: Paddle (payments, as Merchant of Record), Resend (transactional email), GitHub (optional sign-in), Cloudflare (CDN & security) and Google Analytics (optional, consent-based). Account and license data is retained for as long as your account exists, and deleted or anonymized on request.