Privacy NoticeWe at Critical Dynamics value individuality, we value each and every one of you who use our product to browse the Internet freely or who just interact with our website.
We appreciate the value of your trust and have chosen to do so by committing to respect your fundamental rights, including the right to privacy and data protection.<br>
<br>As such, this Privacy Notice is designed to explain when and why we collect personal data about you, how we use it, the conditions under which we can disclose it to others, how we keep it safe and secure, and your rights and choices in relation to your information.<br>
<br>
<p>It is important that you read this Privacy Notice together with our Cookies Notice and any other notice we will provide on certain, specific occasions when we are collecting or processing personal data about you, so that you are fully aware of how and why we are using your data.</p>Scope<p>This Privacy Notice applies to your access to and use of the website located at www.paygvpn.com and any other website, microsite, mobile device application, or Internet property owned, or operated by Critical Dynamics, and related services.
It also describes the personal data we collect from these sites and services and how it is used, including information we collect when you register for use of the websites.</p>Who are we?Critical Dynamics is a boutique cybersecurity company specialising in the procurement of secure software solutions.
In this notice,‘Critical Dynamics’, ‘we’, ‘us’ or ‘our’ means:<br>
<br>
<p>Critical Dynamics OU Sepapaja 6 Tallinn, 15551 Estonia</p>
<p>Any questions regarding this notice and our privacy practices should be sent to <b>info@criticaldyn.com</b>
</p>For what purposes is your data processed?Your data is processed for the following purposes:<br>
<br>
<b>Account registration</b> – To register your user account.
When registering your account, we process basic data such as your device ID and device type information to generate your unique account ID.
We also ask you to create a password to keep your account secure.<br>
<br>
<b>Service delivery </b> – To enable you to use our Virtual Private Network (VPN) solution.
Operating a VPN solution entails that we process your IP address at a minimum in order to effectively reroute traffic through the servers that can deliver optimal performance of the service.
By virtue of having this IP address, we will implicitly get insight as to the country and city from where you are accessing the service.<br>
<br>
<b>Analytics </b>
<p>– To improve our service and generate insight for future products/services.
The analytics platforms we leverage to monitor website traffic require basic device information to operate effectively such as IP address, device ID and type.
For more information, please, refer to our Cookie Notice.</p>
<b>Payment processing </b> – To make available the facility for settling payment transactions.
You can subscribe to use our VPN solution while taking advantage of the two payment options we provide, namely, the in-app purchasing gateways provided by both Google and Apple, and the payment platform operated by Stripe.
The information required to process transactions through these payment facilities is outlined within those vendors’ policies which you can access via the following links: <br>
<br>
<p>Google – https://policies.google.com/privacy?hl=en</p>
<p>Apple – https://www.apple.com/legal/privacy/data/</p>
<p>Stripe – https://stripe.com/privacy</p>
<b>Customer support </b> – To manage our relationship with users on an ongoing basis.
As a responsible VPN provider, we believe it is our duty to support our customers in making the most out of our solution.
To enlist our assistance, you can just e-mail us at the address above – please, make sure to include your account ID in the subject line – so we can review your message and respond accordingly.
In those cases where we look to introduce optional extras to our VPN solution or, perhaps, expand our offering with a new product, we would like to e-mail you about that and give you the chance to benefit from any such improvements.<br>
<br>
<b>Regulatory compliance </b> – To comply with our regulatory obligations.
Just as any other legal entity, we are obliged to process financial information in order to prepare our tax statements but also to cooperate with authorities should we be presented any official requests for audits.
Thus, especially within the scope of our tax obligations, we have to process payment information to remit the requisite amount of tax as legally required.<br>
<br>On what basis do we process your data?<b>Performance of a contract </b> – When necessary to perform a contract to which you are a party or to take steps at your request before entering into a contract.
For example, to register your user account or to process any payments associated with the use of our VPN solution.<br>
<br>
<b>Legal obligation </b> – When necessary to perform a legal obligation.
For example, to retain payment information for the purpose of complying with potential tax audits.<br>
<br>
<b>Consent </b>
<p>– When you have consented to the specific processing activity.
For example, to monitor the traffic to our website by virtue of placing a cookie on your device (see our Cookie Notice for additional information).</p>For how long do we retain your data?Depending on the purposes for which we process your data, it will be retained as necessary for the following:<br>
<br>
<b>Account registration </b> – To maintain your user account for as long as you want it to remain active and for a period of three years thereafter for the exercise or defence of legal claims.<br>
<br>
<b>Service delivery </b> – To continue providing the service you subscribed to for as long as your account remains active and for a period of three years thereafter for the exercise or defence of legal claims.<br>
<br>
<b>Analytics </b> – To derive insight from your interactions with our website or until you withdraw your consent.<br>
<br>
<b>Payment processing </b> – To make available the facilities for settling payment transactions so long as your account remains active and for a period of three years thereafter for the exercise or defence of legal claims.<br>
<br>
<b>Customer support </b> – To manage our relationship with you for so long as your account remains active and for a period of three years thereafter for the exercise or defence of legal claims.<br>
<br>
<b>Regulatory compliance </b> – To prepare and submit any tax statements in compliance with our annual tax reporting obligations, and for a period of 7 years thereafter for the purpose of complying with general taxation requirements.<br>
<br>Who can receive your data?In fulfilling the purposes outlined above, we expect to share your data with the following organizations:<br>
<br>
<b>Amazon Web Services</b> – Cloud storage.<br>
<b>Google/Firebase</b> – Office software, e-mail, analytics and in-app payment processing.<br>
<b>Apple</b> – In-app payment processing.<br>
<b>Stripe</b> – Payment processing.<br>
<b>Accounting company</b> – Bookkeeping and accounting services.<br>
<b>Authorities</b> – Regulatory compliance.<br>
<br>What are your rights?<p>When it comes to your data, you have been afforded the rights listed below and you can exercise them by contacting us at <b>info@criticaldyn.com</b>:</p>
<b>Right of access </b> – You can request a copy of the personal data we hold about you.
For example, if you created an account on our website, you can request that we send you a copy of the information we hold about you.
However, if we are unable to associate the information with you, it can be excluded from our response.<br>
<br>
<b>Right to rectification </b> – If we have entered your personal data incorrectly, you can request that we fix it.
For example, if your payment information has changed because you have recently opened an account with another financial institution, you can ask us to amend our records to reflect that.<br>
<br>
<b>Right to erasure (‘right to be forgotten’) </b> – You can request that we delete all your personal data.
For example, you can request that we delete your account and any communication you have exchanged with us when contacting us for customer support purposes.
However, be mindful that there are circumstances when such requests can be denied, including when we need to continue processing your data to comply with legal obligations imposed on us or for the exercise or defence of legal claims.<br>
<br>
<b>Right to restriction of processing </b> – In the case we enter into an argument regarding the processing of your data, you can request that we stop processing it until the argument is resolved.
For example, you can request we stop processing your data because its accuracy is contested.
However, the restriction will last until this particular issue is resolved as opposed to indefinitely.<br>
<br>
<b>Right to data portability </b> – You can receive all of your own data in commonly-readable format.
For example, you can request we send your data to another provider.
However, such requests can only be made with respect to data processed on the basis of your consent or contractual necessity.<br>
<br>
<b>Right to lodge a complaint </b> – You have the right to lodge a complaint with the Supervisory Authority in the country where you reside, work or where the alleged infringement took place.
For example, if you reside in the United States, you can lodge your complaint with the Data Protection Inspectorate in Estonia.<br>
<br>Changes to this Privacy Notice.We try to keep this Privacy Notice up to date at all times but, should we introduce any changes, we will endeavour to list them in this section for ease of reference.<br>
<br>Last updated: May 26th, 2021