Privacy Policy

1. Data Controller

This Privacy Policy explains how R&D COPILOT ("we," "our," or "the Platform") collects, uses, and protects information when you visit our website.

Legal name: R&D COPILOT
Address: Romania

2. Information We Collect

Automatically Collected Information

When you visit our Platform, we may automatically collect:

• Technical data: IP address, browser type, operating system
• Usage data: Pages viewed, time on site, referring URLs
• Device data: Screen resolution, device type

Local Storage Preferences

We store strictly necessary preferences in your browser's local storage, such as your cookie notice acknowledgement and sidebar state. These items are described in our Cookie Policy.

Information You Provide

If you contact us or subscribe to updates, we may collect:

• Email address
• Any information you include in messages

3. Legal Basis for Processing

Under GDPR Article 6, we process data based on:

4. How We Use Information

We use collected information to:

• Provide and maintain the Platform
• Improve user experience
• Analyze usage patterns (if analytics are enabled)
• Ensure security
• Respond to inquiries

We do not sell personal information to third parties. We do not engage in behavioral advertising or profiling. We do not share data except as described in this policy.

5. Cookies and Local Storage

We use strictly necessary cookies and local storage as described in our Cookie Policy. We do not use analytics or advertising cookies unless explicitly enabled with your consent.

6. Third-Party Services

We use the following service providers to operate the Platform:

• Cloudflare Pages: Hosting and content delivery. Cloudflare processes request metadata (such as IP address and user agent) to deliver the site and provide security protections.
• GitHub: Source code hosting. GitHub is not used to serve site traffic, but if you visit our public repository, GitHub processes your data under its own privacy policy.

7. Data Retention

We retain information only as long as necessary:

• Server logs: Retained for a limited period for security and troubleshooting, subject to hosting configuration
• Local storage preferences: Until you clear your browser storage (we re-request acknowledgement every 12 months)
• Contact information: Until request fulfilled plus any legal retention period

8. International Transfers

We primarily process data within the EU/EEA. Some service providers may process data outside the EU/EEA. Where this occurs, we rely on appropriate safeguards required by the GDPR.

9. Your Rights (GDPR Articles 15-22)

Under GDPR, you have the right to:

• Access: Request copies of your personal data
• Rectification: Request correction of inaccurate data
• Erasure: Request deletion of your data
• Restrict: Request limitation of processing
• Portability: Receive data in structured format
• Object: Object to processing based on legitimate interest
• Withdraw consent: Where processing is based on consent

To exercise these rights, contact us using the information below.

10. Data Security

We implement appropriate technical and organizational measures:

• HTTPS encryption for data in transit
• Regular security assessments
• Limited access to personal data
• Secure hosting infrastructure

11. Children's Privacy

This Platform is not directed at children under 16. We do not knowingly collect personal data from children.

12. Changes to This Policy

We may update this Privacy Policy periodically. We will notify users of material changes through the Platform.

13. Contact Us

For privacy-related questions or to exercise your rights:

• Controller: R&D COPILOT
• Email: contact@regulations.md
• Address: Romania
• Subject: Privacy Inquiry

14. Supervisory Authority

You have the right to lodge a complaint with your national data protection authority if you believe your rights have been violated.