Effective Date
‍Last Updated: 10.04.2025

‍1. Introduction
‍This Privacy Policy explains how SIA QUANTARA (“we”, “us”, or “our”) collects, uses, shares, and protects your personal data when you visit and interact with our website, https://paytrust.io (“Website”).

We are committed to safeguarding the privacy of individuals and handling personal data in a lawful, fair, and transparent manner in accordance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and applicable data protection laws.

This Privacy Policy applies solely to personal data collected through the Website. It does not apply to any personal data processed outside the Website in the context of commercial agreements, service provision, or other external interactions.

The data controller responsible for processing your personal data is:

‍SIA QUANTARA
Mazā Krasta iela 35 - 10, LV-1003, Rīga
Email: DPO@paytrust.io

‍2. What Information We Collect

‍We may collect and process the following categories of personal data about you when you access or interact with the Website:

‍2.1. Information You Voluntarily Provide
‍When you fill out our contact form or communicate with us directly through the Website, we may collect:

Full name
Company name
Email address
Phone number
Message content or inquiry details

This information is collected for the purpose of responding to your inquiry or providing you with requested information about our services.

‍2.2. Information We Collect Automatically

‍When you access the Website, we automatically collect certain technical and usage-related data, including:
Internet Protocol (IP) address
Device type and operating system
Browser type and version
Date and time of access
Referring URL or website
Interactions with the Website (e.g., pages visited, time spent)

This data is collected through standard web technologies such as server logs and tracking scripts, and is used for analytical and security purposes.

‍2.3. Cookies and Tracking Technologies
‍We use cookies and similar technologies to improve user experience, analyze site traffic, and enable certain features. These may collect:

Unique identifiers
Browsing behavior and preferences
Session information
Clickstream data
More details are provided in our [Cookie Policy].

‍2.4. Data from Third-Party Tools
‍We may receive data through integrated third-party tools such as:

‍Google Analytics – for measuring traffic and performance
‍Facebook Pixel – for understanding marketing reach and ad effectiveness
‍Email tools – to manage responses to contact form submissions

These tools may use their own tracking technologies and collect data directly, subject to their own privacy policies.

‍3. Legal Bases for Processing

‍Under the General Data Protection Regulation (GDPR), we must have a valid legal basis to process your personal data. Depending on the specific context in which we collect and use your data, we rely on one or more of the following lawful bases:

‍3.1. Consent
‍We process your personal data based on your consent when:
You submit your information via the contact form.
You agree to the use of cookies or tracking technologies via the cookie banner.
You may withdraw your consent at any time by contacting us at DPO@paytrust.io or by adjusting your cookie preferences.

‍3.2. Legitimate Interests
‍We may process your data where it is necessary for our legitimate interests, provided those interests are not overridden by your data protection rights. This includes:

Monitoring and improving Website performance and security.
Understanding how the Website is used (e.g., through analytics).
Responding to your general business inquiries submitted via the contact form.

‍3.3. Legal Obligations
‍We may process personal data where necessary to comply with legal obligations, such as:

Recordkeeping under applicable regulations.
Responding to lawful requests from supervisory authorities or courts.
Ensuring compliance with applicable data protection or sanction laws.
We will only process your personal data for the purposes stated in this Policy, and we do not use it for profiling or automated decision-making.

‍4. How We Use Your Information
‍We use the personal data we collect for the following purposes:

‍To respond to your inquiries: When you submit a contact form or send us an email, we use the information you provide to answer your questions or follow up on your request.
‍To provide and operate the Website: We use technical and functional data to ensure the Website loads correctly and functions as intended.
‍To analyze Website performance: We use cookies and analytics tools to measure traffic, understand user interactions, and identify areas of improvement.
‍To maintain Website security: We may monitor traffic patterns and access logs to detect and prevent suspicious, harmful, or unauthorized activity.
‍To comply with legal obligations: We may retain and disclose certain data when required by applicable law or government authorities.

We do not use your personal data for direct marketing, advertising campaigns, or newsletter distribution unless you have expressly opted in. Additionally, we do not sell or rent your data to third parties.

‍5. Data Retention

‍We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable laws and regulations.
Specifically:

‍Contact form submissions are retained for up to 6 months for customer service and internal administrative purposes. After this period, the data is securely deleted or anonymized.
‍
‍Technical data (such as IP addresses, device/browser information) collected for analytics and security purposes is retained in accordance with the retention periods set by the respective third-party services (e.g., Google Analytics), typically ranging from 14 months to 26 months, unless you exercise your rights to delete such data earlier.

‍Cookie-related data is retained in accordance with the duration of each specific cookie (see our [Cookie Policy] for more details).If we are required by law to retain data for a longer period (e.g., for dispute resolution or compliance with statutory obligations), we will do so only to the extent necessary and in accordance with applicable data protection regulations.

‍6. Sharing of Personal Data
‍We do not sell or rent your personal data to third parties. However, we may share your data with trusted service providers that assist us in operating the Website and providing related services. These third parties process data strictly on our behalf and under our instructions, in accordance with data processing agreements that ensure the confidentiality, security, and lawfulness of the processing.

‍6.1. Categories of Recipients
‍We may share personal data with the following types of recipients:

‍Website Hosting Providers: Who host and maintain the Website infrastructure.
‍Analytics Providers: Such as Google Analytics and Meta/Facebook Pixel, for the purpose of collecting aggregated usage data and insights.
‍Email and CRM Services: For processing contact form submissions and managing communications.
‍Security and IT Providers: To help maintain the security and integrity of the Website.

‍6.2. Legal Disclosures
‍We may also disclose personal data:
When required by law, regulation, legal process, or governmental request;
To enforce our legal rights or comply with legal obligations;
To protect the rights, property, or safety of SIA QUANTARA, its users, or the public, as required or permitted by law.

All such disclosures will be made with appropriate safeguards to ensure your data is protected.

‍7. International Data Transfers
‍All personal data collected through the Website is processed and stored within the European Economic Area (EEA). We do not currently transfer your personal data outside the EEA.

If, in the future, we need to engage service providers or partners located outside the EEA, we will ensure that appropriate safeguards are in place to protect your personal data in accordance with the requirements of the General Data Protection Regulation (GDPR). These safeguards may include:

The use of standard contractual clauses (SCCs) approved by the European Commission;
Ensuring that the recipient country is recognized by the European Commission as providing an adequate level of data protection;
Implementing additional security measures and data minimization protocols.

We are committed to ensuring that your data remains protected, regardless of where it is processed.

‍8. Your Rights Under the GDPR
‍As a data subject within the European Union, you have the following rights under the GDPR in relation to your personal data:

‍8.1. Right to Access
‍You have the right to request confirmation as to whether we process your personal data, and if so, to receive a copy of the data we hold about you.

‍8.2. Right to Rectification
‍If you believe that any of the personal data we hold about you is inaccurate or incomplete, you have the right to request correction or completion.

‍8.3. Right to Erasure (“Right to be Forgotten”)
‍You may request the deletion of your personal data when it is no longer necessary for the purposes for which it was collected, or if you withdraw your consent and no other legal basis exists for processing.

‍8.4. Right to Restrict Processing
‍You have the right to request a restriction on the processing of your personal data in certain circumstances (e.g., if you contest the accuracy of the data or object to processing).

‍8.5. Right to Data Portability
‍Where processing is based on your consent or on a contract, and is carried out by automated means, you may request to receive your data in a structured, commonly used, and machine-readable format, and to have it transmitted to another controller where technically feasible.

‍8.6. Right to Object
‍You may object to the processing of your personal data based on our legitimate interests, including for analytics or website security, unless we demonstrate compelling legitimate grounds to continue such processing.

‍8.7. Right to Withdraw Consent
‍Where processing is based on your consent (e.g., for cookies or marketing), you have the right to withdraw your consent at any time. Withdrawal does not affect the lawfulness of processing prior to withdrawal.

‍8.8. Right to Lodge a Complaint
‍You have the right to lodge a complaint with a supervisory authority if you believe that your data protection rights have been violated. You may contact the Estonian Data Protection Inspectorate or the data protection authority in your country of residence.

‍9. Cookies and Tracking Technologies
‍We use cookies and similar tracking technologies on our Website to enhance your browsing experience, analyze Website usage, and support marketing efforts.

‍9.1. What Are Cookies?
‍Cookies are small text files stored on your device by your browser when you visit a website. They help websites remember information about your visit, such as your language preferences or login status (where applicable).

‍9.2. Types of Cookies We Use

Essential Cookies: These are necessary for the Website to function properly and cannot be disabled.

‍Analytics Cookies: These help us understand how visitors interact with our Website by collecting anonymous usage data (e.g., pages visited, time spent).

‍Marketing Cookies: These are set by third-party services such as Facebook Pixel to measure ad effectiveness and enable retargeting.For a full list of cookies used, including their names, purposes, and durations, please refer to our [Cookie Policy].

‍9.3. Managing Cookie Preferences
‍When you first visit our Website, you will be presented with a cookie banner allowing you to accept or reject non-essential cookies. You may also manage your preferences at any time by:

Adjusting the settings in your web browser to block or delete cookies.Using our on-site cookie management tool (where available).Please note that disabling some cookies may affect the functionality of the Website.

‍10. Data Security

‍We take appropriate technical and organizational measures to protect the personal data we collect against unauthorized access, disclosure, alteration, or destruction.

These measures include, but are not limited to:
‍HTTPS encryption to secure data in transit between your browser and our server;
‍Firewall protection and server monitoring provided by our hosting providers;
‍Role-based access controls to limit internal access to data only to authorized personnel;
‍Routine updates and security patches to infrastructure and web services.

While we make every effort to safeguard your data, no method of transmission over the Internet or method of electronic storage is completely secure. Therefore, we cannot guarantee absolute security.

‍11. Changes to This Privacy Policy
‍We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons. When we make changes, we will revise the “Last Updated” date at the top of this page.

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.

Where required by law, we will notify you of material changes and, if necessary, seek your consent.

‍12. Contact Information

SIA QUANTARA
Mazā Krasta iela 35 - 10, LV-1003, Rīga
Email: DPO@paytrust.io