Legal

Privacy Policy

Last updated: January 1, 2025 ยท Effective immediately

1. Introduction

CodeMatrix ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at codematrix.io, use our services, or communicate with us.

By accessing our website or engaging our services, you agree to the terms of this Privacy Policy. If you do not agree, please discontinue use of our website and services.

๐Ÿ”’

We never sell your personal data to third parties. Your privacy is not our product.

2. Data We Collect

We collect information in the following ways:

Information You Provide Directly

  • Contact Information: Name, email address, phone number, company name when you fill out contact forms or request a quote.
  • Project Details: Information you share about your business goals, technical requirements, and project scope.
  • Account Data: Credentials and profile information if you create an account on our client portal.
  • Communications: The content of emails, messages, and calls you have with our team.

Information Collected Automatically

  • Usage Data: Pages visited, time spent, referral sources, browser type, and device information.
  • IP Address: For security, fraud prevention, and geolocation purposes.
  • Cookies & Tracking: As described in our Cookies section below.

3. How We Use Your Data

We use the data we collect for the following purposes:

  • To respond to your inquiries and provide the services you request
  • To process payments and manage client relationships
  • To send service-related communications (project updates, invoices, technical notices)
  • To improve our website and services based on usage patterns
  • To send marketing communications (only with your explicit consent)
  • To comply with legal obligations and protect our legal rights
  • To detect, prevent, and address fraud, security breaches, and abuse

We process your data based on one of the following legal grounds: your consent, the performance of a contract, compliance with legal obligations, or our legitimate business interests.

4. Cookies & Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our website. Cookies are small text files stored on your device.

Types of Cookies We Use

Cookie Type
Purpose
Duration
Essential
Required for the website to function (navigation, form submissions)
Session
Analytics
Google Analytics โ€” understand how visitors use our site (anonymized)
2 years
Marketing
Track campaign effectiveness and retargeting (only with consent)
90 days
Preferences
Remember your settings (language, theme, region)
1 year

You can control cookies through your browser settings. Disabling certain cookies may affect site functionality. For EU visitors, we present a cookie consent banner on first visit.

5. Data Sharing & Third Parties

We do not sell, rent, or trade your personal data. We may share data with trusted third parties only in these circumstances:

  • Service Providers: Companies that help us operate (hosting, payment processing, email delivery, analytics). These providers are contractually bound to protect your data.
  • Legal Requirements: When required by law, court order, or government authority.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, with advance notice to affected users.
  • With Your Consent: For any other purpose with your explicit permission.

Our key service providers include: AWS (hosting), Stripe (payments), Google Analytics (analytics), Mailchimp (email), and HubSpot (CRM). Each provider maintains their own privacy practices.

6. Security

We implement industry-standard security measures to protect your data:

  • TLS/SSL encryption for all data in transit
  • AES-256 encryption for sensitive data at rest
  • Regular penetration testing and security audits
  • Role-based access controls (RBAC) for internal systems
  • Multi-factor authentication (MFA) for all internal accounts
  • Regular security training for all employees
  • Incident response plan with a 72-hour breach notification process
โš ๏ธ

No method of transmission over the internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

7. Data Retention

We retain your data for as long as necessary to provide our services and fulfill the purposes outlined in this policy. Specifically:

  • Client project data: Duration of engagement + 7 years (for legal/audit purposes)
  • Contact form submissions: 2 years from last contact
  • Analytics data: 26 months (anonymized)
  • Marketing consent records: Until you withdraw consent + 3 years
  • Financial records: 7 years (tax and legal requirements)

When data is no longer needed, we securely delete or anonymize it in accordance with our data destruction policy.

8. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your personal data ("right to be forgotten")
  • Portability: Receive your data in a structured, machine-readable format
  • Restriction: Request restriction of processing of your data
  • Objection: Object to processing based on legitimate interests or for direct marketing
  • Withdraw Consent: Withdraw consent at any time where processing is based on consent

To exercise any of these rights, contact us at privacy@codematrix.io. We will respond within 30 days. EU/EEA residents have the right to lodge a complaint with a supervisory authority.

9. Children's Privacy

Our services are not directed at individuals under the age of 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a minor, please contact us immediately at privacy@codematrix.io and we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or service offerings. When we make material changes, we will:

  • Update the "Last Updated" date at the top of this page
  • Send an email notification to active clients
  • Display a prominent notice on our website for 30 days

We encourage you to review this policy periodically. Continued use of our services after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy, wish to exercise your rights, or have a privacy concern, please contact our Data Privacy Officer:

Email: privacy@codematrix.io
Mail: CodeMatrix, Inc. โ€” ATTN: Privacy
548 Market St, San Francisco, CA 94104
Response Time: Within 30 days of receiving your request