Legal
Privacy Policy
archemy.io · Last Updated: May 2026
1. Introduction
This Privacy Policy explains how archemy.io ("we," "us," "our," or "Company") collects, uses, discloses, and safeguards your personal data in compliance with the General Data Protection Regulation (GDPR EU 2016/679), the Hungarian Data Protection Act (Act CXII of 2011 on Informational Self-Determination and Freedom of Information), and other applicable European Union data protection laws. This policy applies to our website, professional services, and all related digital interactions.
2. Data Controller Information
Data Controller:
Archemy Hungary Kft
Address: 1148 Budapest, Örs vezér tere 15 2/10
Country: Hungary
Email: dataprivacy@archemy.io
3. Personal Data We Collect
We collect personal data in the following categories:
A. Contact Information
Name, email address, telephone number, company name, job title, business address, and other contact details you provide when contacting us, registering for services, or engaging with our consulting services.
B. Technical Data
Internet Protocol (IP) address, browser type and version, operating system, device type, device identifiers, referral source, pages visited, time and date of access, duration of visit, clickstream data, and similar technical information collected through cookies, web analytics, and similar tracking technologies.
C. Usage Data
Information about how you interact with our services, including service usage patterns, features accessed, client engagement records, project information, and communication history.
D. Financial Data
Invoice details, payment method information, billing address, transaction history, and financial records necessary to process payments and maintain client accounts.
4. Legal Basis for Processing
We process your personal data on the following legal bases under GDPR Article 6:
A. Contract Performance (Article 6(1)(b))
To execute our consulting services contracts, deliver professional services, process invoices, manage client relationships, and provide support and deliverables.
B. Legal Obligation (Article 6(1)(c))
To comply with Hungarian and EU legal obligations, including tax law, accounting regulations, financial reporting requirements, and other legal obligations applicable to our business.
C. Legitimate Interests (Article 6(1)(f))
To maintain and improve our website and services, prevent fraud and security threats, conduct business analytics, send service-related and marketing communications, pursue legitimate business interests, and to establish, exercise, or defend legal claims.
5. How We Use Your Personal Data
We use your personal data for the following purposes:
- Delivering consulting services and professional advice
- Processing payments and managing invoicing
- Responding to inquiries and providing customer support
- Sending transactional communications (service updates, confirmations, receipts)
- Sales and marketing communications (with your consent or based on legitimate interests)
- Maintaining and securing our systems
- Analyzing usage patterns to improve our services and website
- Complying with legal and regulatory obligations
- Detecting and preventing fraud, security threats, and abuse
6. Cookies and Tracking Technologies
Our website uses cookies and similar tracking technologies, including:
Essential Cookies
Required for website functionality, security, and user authentication. These cookies are necessary for site operation and do not require explicit consent under GDPR.
Analytics Cookies
Used to understand user behavior and website performance. These are placed with your prior consent and may include Google Analytics or similar services.
Marketing and Tracking Cookies
Used for marketing purposes, including retargeting, ad performance measurement, and user interest analysis. These require explicit prior consent. You can manage cookie preferences through your browser settings or our cookie consent banner.
7. Data Retention
We apply the GDPR storage limitation principle (Article 5(1)(e)) and retain personal data only for as long as necessary for the purposes for which it was collected. Specific retention periods are:
Client and Consulting Service Data
During the active engagement period and for a maximum of 3 years after service completion to address potential disputes, warranty claims, or legal obligations. After this period, data is deleted unless continued retention is required by law.
Financial Records
Invoices and payment records are retained for 5 years as required by Hungarian tax law (Act C of 2000 on Accounting). This retention is based on legal obligation under GDPR Article 6(1)(c), not GDPR storage limitation principles. After this statutory period, financial data is securely deleted.
Marketing and Contact Lists
Retained until consent is withdrawn or you request deletion. We also automatically delete contacts after 24 months of no engagement or interaction, in accordance with legitimate business practices.
Website Analytics Data
Typically retained for 24 months or as configured in the analytics tool. Personal identifiers are anonymized or deleted after this period.
Cookies
From session-based (until browser closure) to 12 months, depending on cookie type and user preferences. Users can clear cookies at any time.
In all cases, data will be securely deleted or anonymized when no longer necessary. You may request earlier deletion under your right to erasure (Article 17).
8. Data Sharing and Disclosure
We may share your personal data with the following categories of recipients:
Service Providers and Processors
Cloud hosting providers, payment processors, email service providers, analytics services, and other vendors who process data on our behalf under Data Processing Agreements compliant with GDPR Article 28.
Legal Compliance
Government agencies, law enforcement, and regulatory authorities when required by law or to protect our legal rights.
Business Transitions
In the event of merger, acquisition, bankruptcy, or sale of company assets, personal data may be transferred as part of those business transactions with appropriate safeguards.
Professional Advisors
Accountants, lawyers, and consultants who assist us in business operations and regulatory compliance.
9. International Data Transfers
Your personal data is stored and processed within Hungary and the European Union only. We do not transfer personal data outside the EEA. All data processing remains subject to GDPR protections and Hungarian data protection law.
10. Data Security
We implement appropriate technical and organizational security measures to protect personal data against unauthorized access, alteration, disclosure, or destruction, including:
- Encryption of data in transit (HTTPS/TLS) and at rest
- Secure authentication and access controls
- Regular security updates and patches
- Employee data protection training
- Access restrictions on a need-to-know basis
- Incident response and breach notification procedures
11. Your Data Protection Rights
Under GDPR and Hungarian law, you have the following rights regarding your personal data:
Right to Access (Article 15)
Request a copy of your personal data and information about how we process it.
Right to Rectification (Article 16)
Request correction of inaccurate or incomplete personal data.
Right to Erasure (Article 17)
Request deletion of your personal data under certain conditions (e.g., when no longer necessary for the original purpose, or when you withdraw consent).
Right to Restrict Processing (Article 18)
Request limitation of how we process your data in certain circumstances.
Right to Data Portability (Article 20)
Request your personal data in a structured, commonly used, machine-readable format and transmit it to another controller.
Right to Object (Article 21)
Object to processing based on legitimate interests and direct marketing.
Right to Withdraw Consent
Withdraw consent for processing at any time, without affecting processing conducted prior to withdrawal.
To exercise any of these rights, contact us at [YOUR CONTACT EMAIL].
12. Right to Lodge a Complaint
You have the right to lodge a complaint with the Hungarian data protection authority regarding our processing of your personal data:
Hungarian National Authority for Data Protection and Freedom of Information (NAIH)
Website: www.naih.hu
Email: ugyfelszolgalat@naih.hu
Address: 1125 Budapest, Szilágyi Erzsébet fasor 22/C
Phone: +36 1 391-1400
13. Children's Privacy
Our services are intended for business professionals and are not directed at children under 18 years of age. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child, we will delete it promptly. Parents or guardians who believe their child has provided personal data to us should contact us immediately.
14. Third-Party Websites
Our website may contain links to third-party websites and services. This Privacy Policy applies only to our website and services. We are not responsible for the privacy practices of third-party websites. We encourage you to review the privacy policies of any third-party websites before providing personal data.
15. Changes to This Privacy Policy
We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, and other factors. We will notify you of material changes via email or prominent notice on our website. Your continued use of our services constitutes acceptance of the updated Privacy Policy. Please review this policy periodically for updates.
16. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:
Email: dataprivacy@archemy.io
Address: HU, 1148 Budapest, Örs vezér tere 15 2/10
We aim to respond to all requests within 30 days or as otherwise required by GDPR and Hungarian law.