Privacy Policy

Bykreator Studio ("we," "us," "our," "Company") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you:

• Use our website
• Engage our services
• Contact us for inquiries
• Interact with our calculator tools
• Book discovery calls

This policy applies to all personal data we process about you.

1.1 Information You Provide Directly

Contact & Business Information:

• Full name and job title
• Business/company name
• Email address and phone number
• Business address
• Company website

Project Information:

• Service requirements and preferences through calculator
• Project scope and specifications
• Content, materials, and assets for your project
• Feedback and approval decisions
• Communication about your project

Payment & Billing Information:

• Billing address
• Payment method details (processed securely via payment processors)
• Transaction history
• Invoice records

Communication Information:

• Messages sent through contact forms
• Email correspondence
• Discovery call notes and recordings (with consent)
• Meeting notes and call records
• Support requests

1.2 Information Collected Automatically

Website Usage Data:

• IP address and approximate location (Belgrade, Central Serbia, RS)
• Browser type and version
• Device information (desktop, mobile, tablet)
• Operating system
• Pages visited and time spent
• Referring website/source
• Date and time of visits

Calculator Tool Data:

• Service selections
• Pricing calculations
• Form inputs (stored only when submitted)

Cookies & Tracking Technologies:

• Essential cookies for website functionality
• Analytics cookies (Google Analytics)
• Functional cookies for preferences

1.3 Information from Third Parties

Google Calendar Integration:

• Meeting scheduling information when you book discovery calls
• Appointment details and confirmations
• Calendar availability data

Payment Processors:

• Transaction confirmation
• Payment status

We do not receive or store your complete credit card details - these are handled by secure payment processors.

2.1 Service Delivery & Communication

• Process and fulfill service requests
• Communicate about your project progress
• Schedule discovery calls, meetings, and consultations
• Send invoices and process payments
• Provide customer support
• Deliver project files and deliverables

2.2 Business Operations

• Maintain records for accounting and tax purposes (required by Serbian law - 7 years)
• Analyze website usage and improve user experience
• Manage our business operations
• Comply with legal obligations
• Prevent fraud and maintain security

2.3 Marketing Communications (With Your Consent)

• Send service updates and company news
• Share relevant content and industry insights through our newsletter
• Inform you about new services
• Send special offers or promotions

You can opt out of marketing emails at any time by:

• Clicking the unsubscribe link in any email
• Emailing us at contact@bykreator.com

You will still receive:

• Transactional emails (invoices, project updates, discovery call confirmations)
• Service-related communications

For users in the European Economic Area (EEA) and Serbia, we process your data based on:

Contract Performance:

• To deliver services you've requested
• To fulfill our agreement with you

Legitimate Interests:

• To improve our services
• To communicate effectively about projects
• To maintain business records
• To ensure website security

Consent:

• For marketing communications
• For non-essential cookies
• For using your project in our portfolio (unless white label purchased)
• For recording discovery calls (when applicable)

Legal Obligations:

• To comply with Serbian tax and business law
• To maintain financial records (7 years minimum)
• To respond to legal requests

4.1 What Are Cookies?

Cookies are small text files stored on your device that help us understand how you use our website.

4.2 Types of Cookies We Use

Essential Cookies (Always Active):

• Website functionality
• Security and authentication
• Session management
• Calculator tool functionality
• Form data retention

Analytics Cookies (Google Analytics):

• Website traffic and usage patterns
• Popular pages and services
• User journey analysis
• Performance optimization
• Geographic data (anonymized)

Functional Cookies:

• Language preferences
• Calculator selections (temporary)
• Display settings
• Form progress saving

4.3 Managing Cookies

Browser Settings:

You can control cookies through your browser:

• Chrome: Settings > Privacy and Security > Cookies
• Firefox: Options > Privacy & Security > Cookies
• Safari: Preferences > Privacy > Cookies
• Edge: Settings > Privacy > Cookies

Opt-Out Tools:

• Google Analytics Opt-out: https://tools.google.com/dlpage/gaoptout

Note: Blocking essential cookies may affect website functionality, including the calculator.

5.1 We Do NOT Sell Your Data

We never sell, rent, or trade your personal information to third parties.

5.2 Service Providers (Processors)

We share data with trusted service providers who assist our business operations:

Google Analytics:

• Website analytics and usage tracking
• Privacy Policy: https://policies.google.com/privacy

Google Calendar:

• Discovery call scheduling and management
• Privacy Policy: https://policies.google.com/privacy

Payment Processors:

• Secure payment processing
• We do NOT store complete credit card information
• Processors maintain PCI-DSS compliance

Email Service Providers:

• Email communications and newsletter management
• Contact management

Hosting Providers:

• Website and data hosting (Webflow)
• Secure infrastructure

All service providers are required to:

• Protect your data
• Use it only for specified purposes
• Maintain confidentiality

5.3 Legal Requirements

We may disclose information when:

• Required by Serbian law or regulation
• Responding to court orders or legal process
• Protecting our rights, property, or safety
• Preventing fraud or security threats

5.4 Business Transfers

In the event of a merger, acquisition, or sale:

• Your information may be transferred to the new entity
• You will be notified of any such change
• Privacy protections will continue

5.5 With Your Consent

We may share information for specific purposes with your explicit permission.

6.1 Security Measures

We implement appropriate technical and organizational measures:

Technical Protections:

• SSL/TLS encryption for data transmission
• Secure server infrastructure
• Regular security updates
• Access controls and authentication
• Encrypted data storage where applicable

Organizational Protections:

• Restricted access to personal data (need-to-know basis)
• Employee confidentiality agreements
• Regular security training
• Data protection policies

6.2 Limitations

While we strive to protect your data:

• No internet transmission is 100% secure
• No storage system is completely impenetrable
• You are responsible for maintaining confidentiality of login credentials

7.1 How Long We Keep Your Data

Client Project Data:

• Active projects: Duration of engagement
• After project completion: 7 years (Serbian tax/business law requirement)
• Includes: contracts, invoices, payment records, communications, project files

Discovery Call Data:

• Call notes: 2 years or until engagement begins
• Recordings (if any): Deleted after 90 days unless project proceeds

Marketing Data:

• Newsletter subscribers: Until you unsubscribe or request deletion
• Inactive subscribers: Purged after 2 years of inactivity

Website Analytics:

• Google Analytics: Up to 26 months (default retention)
• Aggregated and anonymized

Completed Project Files:

• Client copy: Delivered upon full payment
• Our backups: Retained for 90 days after delivery
• Client responsibility: Maintain your own copies

7.2 Deletion After Retention Period

After retention period expires, data is:

• Securely deleted or anonymized
• Removed from active systems
• Purged from backups

Depending on your location (especially EEA, UK, Serbia), you may have the following rights:

8.1 Access

Request a copy of your personal data we hold

8.2 Correction

Request correction of inaccurate or incomplete information

8.3 Deletion ("Right to be Forgotten")

Request deletion of your data (subject to legal retention requirements - we must keep financial records for 7 years)

8.4 Portability

Request transfer of your data to another service provider in machine-readable format

8.5 Object

Object to processing of your data for specific purposes (e.g., marketing)

8.6 Restrict

Request limitation on how we use your data

8.7 Withdraw Consent

Withdraw consent for data processing where consent is the legal basis (e.g., marketing emails, non-essential cookies)

8.8 Lodge a Complaint

File a complaint with the Serbian Data Protection Authority:

Commissioner for Information of Public Importance and Personal Data Protection

To Exercise Your Rights:

Email us at: contact@bykreator.com

Subject line: "Data Privacy Request"

Include:

• Your full name
• Email address
• Specific request (access, deletion, etc.)
• Any relevant details

We will respond within 30 days.

Our Location:

Bykreator Studio is based in Serbia (Novi Sad).

If You Are Outside Serbia:

Your data may be transferred to and processed in Serbia. We ensure appropriate safeguards are in place for international transfers.

Adequacy:

Serbia is aligning its data protection framework with EU standards (GDPR compatibility). Serbian law provides strong data protection comparable to EU regulations.

Our services are not directed to individuals under 18.

We do not knowingly collect personal data from children.

If you believe we have collected data from a child under 18, please contact us immediately at contact@bykreator.com and we will delete it promptly.

11.1 Recording Policy

We may record discovery calls for:

• Quality assurance
• Training purposes
• Project documentation
• Clarification of project scope

11.2 Consent Required

We will always:

• Ask for your explicit consent before recording
• Inform you at the start of the call if recording
• Allow you to decline (call will proceed unrecorded)

11.3 Recording Retention

• Recordings stored securely
• Deleted after 90 days unless project proceeds
• If project proceeds, retained as project documentation (7 years)
• Never shared with third parties

We may update this Privacy Policy periodically to reflect:

• Changes in our practices
• Legal or regulatory requirements
• New services or features

When We Update:

• "Last Updated" date will change
• Changes posted on this page
• Significant changes: email notification to active clients
• Continued use after changes = acceptance

We encourage you to review this policy periodically.

For questions, concerns, or requests regarding this Privacy Policy or your personal data:

Bykreator Studio

Email: contact@bykreator.com

Address: Rumenački Put 57U, Novi Sad 21000, Serbia

Subject: "Privacy Inquiry"

For GDPR/Data Protection Requests (EU users):

Email: contact@bykreator.com

Subject: "GDPR Request"

Bykreator Studio complies with:

• Serbian Personal Data Protection Act
• General Data Protection Regulation (GDPR) for EU clients
• Industry best practices for data protection

Serbian Data Protection Authority:

Commissioner for Information of Public Importance and Personal Data Protection

Website: www.poverenik.rs

This Privacy Policy was created to ensure transparency and protect your rights regarding personal data processing.