Last updated: 24 April 2026
We may update this privacy policy from time to time. Changes will be posted on this page with an updated date. In case of significant changes, we will notify you by email.
Complira SRL acts as the data controller for personal data collected through the platform. For any questions regarding data processing, you can contact us at privacy@complira.be.
Complira uses only functional cookies necessary for the operation of the platform. We do not use tracking cookies or third-party cookies for advertising purposes.
We collect the following categories of personal data: - Account data: name, email address, password (hashed) - Organization data: company name, VAT number, sector - Usage data: login activity, platform actions - Payment data: processed by our payment provider Stripe and not stored by us
This privacy policy describes how Complira SRL ("we") collects, uses, and protects personal data in accordance with the General Data Protection Regulation (GDPR) and Belgian privacy legislation.
The processing of your personal data is based on: - Performance of a contract (Article 6(1)(b) GDPR) - Legal obligation (Article 6(1)(c) GDPR) - Legitimate interest (Article 6(1)(f) GDPR) for product improvement and security
We process your data for the following purposes: - Providing and improving our services - Account management and authentication - Billing and payment processing - Communication regarding your account and our services - Compliance with legal obligations
We retain your personal data for as long as necessary for the purposes for which it was collected. Account data is deleted 30 days after account deletion. Billing data is retained for 7 years in accordance with Belgian accounting legislation.
Under the GDPR, you have the right to: - Access your personal data - Request rectification or deletion - Request restriction of processing - Object to processing - Data portability - Lodge a complaint with the Data Protection Authority (DPA)
We take appropriate technical and organizational measures to protect your personal data, including encryption, access control, and regular security audits.
We log anonymous traffic data about visits to our public website to understand which marketing channels work. We record a masked IP address (only the first three octets, so the address cannot be traced back to an individual device), the user agent string, the HTTP referrer, UTM campaign parameters, and the landing page URL. This data is stored in our own PostgreSQL database and is not sent to any third-party analytics or advertising provider. Traffic logs are retained for 90 days and then automatically deleted. Your existing rights under the GDPR (access, export, deletion) continue to apply to any personal data we hold about you.