Optivus Retail Platform
Optivus Tech d.o.o.
Last Updated: 2025-02-04
This Privacy Policy applies to the Optivus Retail platform (the "Platform"), operated by:
Optivus Tech d.o.o.
Laporje 45
2318 Laporje
Slovenia
Email: info@optivustech.com
This Policy governs the collection and processing of personal data in connection with:
Account registration
Platform access and usage
Credit-based features (if and when introduced)
Payment processing (if applicable)
Customer support and communications
The Platform is accessible to both individual users and professional users.
The Platform is not intended for individuals under 18 years of age.
Optivus Tech acts as the Data Controller for personal data processed through the Platform.
When creating an account, we may collect:
Full name
Email address
Username
Company name (if applicable)
Login credentials
This data is required to establish and maintain your account.
When you use the Platform, we may process:
IP address
Browser type and version
Device information
Login timestamps
Session identifiers
Usage logs
Configuration activity records
If a credit-based model is introduced, usage logs may also include credit consumption records.
This data is necessary for authentication, service functionality, fraud prevention, and system security.
If paid features or credit purchases are introduced in the future, payments will be processed by independent payment operator(s).
Optivus Tech:
Will not store full credit card numbers
Will not store card security codes
Where payments are enabled, we may store:
Billing name
Billing address
VAT number (if provided)
Payment operator customer ID
Transaction identifiers
Invoice records
Payment status
Credit balances and transaction history
Payment operators may act as independent data controllers for payment processing activities in accordance with their own privacy policies.
When contacting us for support or business purposes, we may process:
Name
Email address
Message content
Attachments
Technical files (e.g., CAD models) are exchanged only via direct communication channels (such as email) and not via a public upload portal.
Such materials are processed solely for delivering agreed services.
We process personal data to:
Create and manage user accounts
Authenticate users
Deliver Platform functionality
Provide customer support
Maintain system security
Prevent fraud and abuse
Comply with legal and accounting obligations
If paid features are introduced, data may also be processed to:
Manage credit balances
Process payments
Maintain billing records
We process personal data on the following legal bases:
Article 6(1)(b) – Performance of a contract (account and service delivery)
Article 6(1)(f) – Legitimate interests (security, fraud prevention, service improvement)
Article 6(1)(c) – Legal obligation (accounting and tax compliance, where applicable)
Article 6(1)(a) – Consent (where applicable)
If credit purchases or paid digital services are introduced and you reside in the European Union:
Digital services may be subject to the 14-day right of withdrawal under EU consumer law.
Where required, users may be asked to expressly request immediate performance of digital services and acknowledge that withdrawal rights may be affected once service performance begins.
Refund and withdrawal rules will be governed by the Platform's Terms & Conditions in force at the time of purchase.
We retain personal data only as long as necessary:
Account data: for the duration of the account
Usage logs: for security and operational purposes
Billing data (if applicable): as required by applicable accounting and tax laws
Security logs: limited retention aligned with fraud prevention
Certain data may be retained after account deletion where required by law.
We may share personal data with:
Payment operators (if applicable)
Hosting and infrastructure providers
Professional advisors
Legal authorities where required by law
We do not sell personal data.
Some service providers (including payment operators, email communications providers) may process personal data outside the European Economic Area.
Where such transfers occur, appropriate safeguards (such as Standard Contractual Clauses) are implemented.
We implement appropriate technical and organizational measures, including:
HTTPS encryption
Secure authentication mechanisms
Role-based access controls
Secure backend systems
Payment tokenization via independent payment operators (if applicable)
No method of transmission or storage guarantees absolute security.
Under the GDPR, you have the right to:
Access personal data
Rectify inaccurate data
Request deletion
Restrict processing
Object to processing
Data portability
Withdraw consent (where applicable)
Requests may be submitted to:
info@optivustech.com
You have the right to lodge a complaint with:
The Slovenian Information Commissioner, or
The supervisory authority in your place of residence within the European Union.
We may update this Privacy Policy from time to time.
The updated version will include a revised "Last Updated" date.
Continued use of the Platform after changes constitutes acceptance of the revised policy.