Privacy Policy

Privacy Policy

AIXwatch.com — Strava Ltd
Last updated: March 7, 2026
Effective date: March 7, 2026

Strava Ltd (“we”, “us”, “our”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect personal information when you visit our website or purchase our products, in compliance with the General Data Protection Regulation (GDPR – Regulation (EU) 2016/679) and the Cyprus Processing of Personal Data (Protection of the Individual) Law of 2018 (Law 125(I)/2018).

1. Data Controller

Strava Ltd
11 Zinonos Sozou Street, 1st Floor
1075 Nicosia, Cyprus
Email: legal@aixwatch.com

2. Data We Collect

2.1 Information you provide directly

  • Account registration: name, email address, company name
  • Purchase information: billing address, VAT number (if applicable)
  • Communications: content of emails, support requests, contact form submissions

2.2 Information collected automatically

  • Server logs: IP address, browser type and version, operating system, referring URL, pages visited, date and time of access
  • Cookies: session cookies (strictly necessary for site functionality and shopping cart), analytics cookies (only with your consent)

2.3 Payment information

Payment card details are processed exclusively by our third-party payment processor. We do not store, process, or have access to your full payment card information.

3. How We Use Your Data

PurposeLegal Basis (GDPR Art. 6)
Process your orders and deliver purchased softwarePerformance of a contract (Art. 6(1)(b))
Send order confirmations and license keysPerformance of a contract (Art. 6(1)(b))
Respond to support requestsPerformance of a contract (Art. 6(1)(b))
Send product updates and maintenance notificationsLegitimate interest (Art. 6(1)(f))
Comply with tax and accounting obligationsLegal obligation (Art. 6(1)(c))
Improve our website and servicesLegitimate interest (Art. 6(1)(f))
Send marketing communicationsConsent (Art. 6(1)(a)) — you can opt out at any time

4. Software Privacy

Our software products (AIX_exporter, Loki Agent) do not collect, transmit, or share any data with us or any third party.

  • All metrics collected by AIX_exporter remain on your Prometheus instance
  • All logs forwarded by Loki Agent are sent only to your Loki instance
  • There is no telemetry, analytics, or “phone home” functionality
  • The software does not contact any external server
  • No license validation server — licenses are perpetual and offline

5. Data Sharing

We do not sell, trade, or rent your personal data. We may share data with:

  • Payment processors: to process transactions (Stripe/PayPal)
  • Hosting providers: to operate our website (data processing agreement in place)
  • Tax authorities: as required by Cyprus and EU law
  • Legal requirements: if required by law, regulation, or court order

6. International Data Transfers

Your data is stored within the European Economic Area (EEA). If data is transferred outside the EEA, we ensure adequate protection through Standard Contractual Clauses (SCCs) or equivalent safeguards as required by GDPR Chapter V.

7. Data Retention

  • Account data: retained for the duration of your account plus 30 days after deletion request
  • Purchase records: retained for 7 years (Cyprus tax law requirement)
  • Server logs: retained for 90 days
  • Support communications: retained for 2 years after last interaction

8. Your Rights Under GDPR

Under the GDPR and Cyprus data protection law, you have the right to:

  • Access — request a copy of the personal data we hold about you
  • Rectification — request correction of inaccurate or incomplete data
  • Erasure — request deletion of your personal data (“right to be forgotten”)
  • Restriction — request restriction of processing
  • Data portability — receive your data in a structured, machine-readable format
  • Object — object to processing based on legitimate interest
  • Withdraw consent — where processing is based on consent, withdraw at any time

To exercise any of these rights, contact us at legal@aixwatch.com. We will respond within 30 days.

9. Cookies

Strictly necessary cookies: required for site functionality, shopping cart, and user authentication. These cannot be disabled.

Analytics cookies: used only with your explicit consent to understand how visitors use our website. You can manage your cookie preferences at any time.

10. Security

We implement appropriate technical and organizational measures to protect your personal data, including:

  • HTTPS encryption on all pages
  • Secure payment processing via PCI-DSS compliant providers
  • Access controls and authentication for administrative functions
  • Regular security reviews

11. Children’s Privacy

Our website and products are not directed at individuals under the age of 16. We do not knowingly collect personal data from children.

12. Complaints

If you believe your data protection rights have been violated, you have the right to lodge a complaint with the Commissioner for Personal Data Protection of Cyprus:

Office of the Commissioner for Personal Data Protection
1 Iasonos Street, 1082 Nicosia, Cyprus
Tel: +357 22 818 456
Website: www.dataprotection.gov.cy

13. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email to registered customers and posted on this page with an updated effective date.

© 2025–2026 Strava Ltd. All rights reserved.