Privacy Policy

Last updated: 2026-06-05

1. Data controller

The personal data controller is SELERIUM S.R.L., with registered office at Strada Mircea Eliade 12b, Corp C, Ap. 10, Oraș Voluntari, Județ Ilfov, 077191, România, registered with the Romanian Trade Registry under number J23/2744/28.04.2022, tax ID RO46028425, EUID ROONRCJ23/2744/2022.

To exercise your rights or ask data-protection questions, contact dpo@selerium.ro.

2. What data we collect

• Account data: e-mail address, name, profile picture (from our authentication provider Clerk).
• Usage data: projects created, segments, exclusion zones, equipment markers, configurations, preferences.
• Billing data: subscription plan, credit balance, transactions. Card data is processed by Stripe and is not stored by us.
• Technical data: IP address, browser agent, error logs needed to operate the Service and prevent abuse.
• Company data: company name and logo you configure for PDF reports.

3. Purposes and legal basis

• Service provision — basis: performance of a contract (Art. 6(1)(b) GDPR).
• Billing and tax obligations — basis: legal obligation (Art. 6(1)(c) GDPR).
• Security, fraud prevention, auditing — basis: legitimate interest (Art. 6(1)(f) GDPR).
• Transactional communications (account confirmation, trial expiry, receipts) — basis: contract performance.

4. Sub-processors and transfers

We rely on the following sub-processors:

• Clerk (Clerk, Inc.) — authentication and user management.
• Supabase (Supabase, Inc.) — PostgreSQL database hosting.
• Vercel (Vercel Inc.) — application hosting.
• Google Maps (Google LLC) — satellite imagery and geocoding.
• Stripe (Stripe Inc.) — payment processing (when paid billing is enabled).

Some sub-processors may process data outside the European Economic Area. Such transfers are covered by EU Standard Contractual Clauses or equivalent legal frameworks.

5. Retention period

• Account data: for as long as the account exists. On account deletion, all associated data is permanently removed from our database.
• Billing data: kept in line with statutory accounting obligations (10 years for accounting documents under Romanian law).
• Technical logs: up to 90 days.

6. Your rights

Under GDPR you have the right to:

• access, rectify and erase your data;
• restrict processing;
• data portability (export available on request at dpo@selerium.ro);
• object to processing;
• lodge a complaint with the Romanian Data Protection Authority, ANSPDCP (www.dataprotection.ro).

To delete your account, use the “Delete account” button in the profile menu. The action is irreversible: the Clerk account and all associated data are removed immediately.

7. Cookies and similar technologies

We use a minimal set of cookies needed to run the application: session cookies (for authentication, via Clerk), preference cookies (language, dark mode) and — when enabled — anonymised analytics cookies to improve the Service. Non-essential cookies (analytics) are enabled only after your consent through the banner shown on your first visit.

8. Data security

We apply reasonable technical and organisational measures to protect data: transport encryption (HTTPS), role-based access control, audit logs for administrative actions, and a clear separation between development and production environments.

9. Changes to this Policy

We may update this Policy from time to time. The current version is published on this page with the latest update date.

10. Contact

Data-protection requests: dpo@selerium.ro. General questions: contact@selerium.ro.