Privacy Policy

1. Introduction

PolyDecypher FlexCo ("PolyDecypher", "we", "us", "our") is committed to protecting the privacy and security of personal data and customer data. This Privacy Policy explains how we collect, process, store, and protect information when you use our website, platform, and services, including the PolyCore platform and consulting offerings.

We process data in accordance with the EU General Data Protection Regulation (GDPR) and applicable Austrian and EU data protection laws.

2. Scope of this Policy

This Privacy Policy applies to:

Visitors to our website
Users of the PolyCore platform (Light, Basic, Premium, Enterprise)
Clients of our consulting services (PolyStart, PolyRelate, PolyServe, PolyResearch)
Business contacts, partners, and pilot customers

This policy does not cover third-party websites or services that may be linked from our platform.

3. Roles Under GDPR

Data Controller: PolyDecypher FlexCo
Data Processor: PolyDecypher FlexCo acts as a data processor when handling customer data uploaded to PolyCore on behalf of clients

For customer-owned datasets, the customer remains the data controller at all times.

4. Data We Collect

4.1 Personal Data

We may collect the following personal data:

Name, company name, job title
Business email address and contact details
Account credentials and authentication information
Communication data (emails, support requests, meeting notes)

We do not intentionally collect sensitive personal data.

4.2 Customer and Technical Data

When using PolyCore or consulting services, we may process:

Uploaded files, raw measurement data, metadata, reports, and derived datasets
Instrument outputs, test results, curves, spectra, and annotations
Project-specific configurations and models

Ownership of all uploaded raw data remains with the customer.

4.3 Usage and Log Data

We collect limited technical data for security and platform operation, such as:

Access logs and timestamps
IP addresses (short-term, security purposes only)
System performance and error logs

5. Purpose of Processing

We process data solely for legitimate business purposes, including:

Providing and operating the PolyCore platform
Delivering consulting services and reports
Secure storage, structuring, and visualization of customer data
Model training and analytics strictly within customer projects
Platform security, monitoring, and compliance
Communication, support, and account management

We do not sell, rent, or trade customer or personal data.

6. Legal Basis for Processing

Our processing activities rely on one or more of the following legal bases:

Performance of a contract
Legitimate business interests
Legal obligations
Explicit consent where required

7. Data Ownership and Customer Rights

Customers remain 100 percent owners of their raw data and uploaded content
PolyDecypher does not reuse, resell, or share customer data with third parties
Customer data is processed only within the agreed scope of services

Customers may request data export or deletion at any time. Requests are fulfilled within a maximum of 30 days unless legally required otherwise.

8. Data Sharing and Third Parties

We do not share customer data with third parties except:

Trusted infrastructure providers acting as subprocessors
Where legally required by authorities
With explicit customer authorization

All subprocessors are contractually bound by GDPR-compliant data processing agreements.

9. Data Location and Transfers

All data is stored and processed within the European Union
No data is transferred outside the EU unless explicitly agreed and legally compliant

10. Data Security

We apply industry-standard technical and organizational security measures, including:

End-to-end encryption for data in transit and at rest
Customer data isolation and access control
Role-based access and least-privilege principles
Continuous monitoring, logging, and backup procedures
ISO 27001-aligned infrastructure

11. Retention Periods

Personal data is retained only as long as necessary for the stated purposes
Customer data is retained according to contractual agreements
Upon contract termination, data can be exported or permanently deleted upon request

12. Cookies and Tracking

Our website uses only essential cookies required for functionality and security. We do not use third-party advertising trackers.

Details can be found in our Cookie Policy.

13. Your Rights Under GDPR

You have the right to:

Access your personal data
Rectify inaccurate data
Request erasure
Restrict or object to processing
Data portability
Withdraw consent at any time

Requests can be sent to the contact details below.

14. Contact Information

For privacy-related inquiries, requests, or complaints:

PolyDecypher FlexCo Email: office@polydecypher.at

You also have the right to lodge a complaint with your local data protection authority.

15. Changes to This Policy

We may update this Privacy Policy to reflect legal, technical, or business changes. The latest version will always be available on our website.

1. Introduction

We process data in accordance with the EU General Data Protection Regulation (GDPR) and applicable Austrian and EU data protection laws.

2. Scope of this Policy

This Privacy Policy applies to:

Visitors to our website
Users of the PolyCore platform (Light, Basic, Premium, Enterprise)
Clients of our consulting services (PolyStart, PolyRelate, PolyServe, PolyResearch)
Business contacts, partners, and pilot customers

This policy does not cover third-party websites or services that may be linked from our platform.

3. Roles Under GDPR

Data Controller: PolyDecypher FlexCo
Data Processor: PolyDecypher FlexCo acts as a data processor when handling customer data uploaded to PolyCore on behalf of clients

For customer-owned datasets, the customer remains the data controller at all times.

4. Data We Collect

4.1 Personal Data

We may collect the following personal data:

Name, company name, job title
Business email address and contact details
Account credentials and authentication information
Communication data (emails, support requests, meeting notes)

We do not intentionally collect sensitive personal data.

4.2 Customer and Technical Data

When using PolyCore or consulting services, we may process:

Uploaded files, raw measurement data, metadata, reports, and derived datasets
Instrument outputs, test results, curves, spectra, and annotations
Project-specific configurations and models

Ownership of all uploaded raw data remains with the customer.

4.3 Usage and Log Data

We collect limited technical data for security and platform operation, such as:

Access logs and timestamps
IP addresses (short-term, security purposes only)
System performance and error logs

5. Purpose of Processing

We process data solely for legitimate business purposes, including:

Providing and operating the PolyCore platform
Delivering consulting services and reports
Secure storage, structuring, and visualization of customer data
Model training and analytics strictly within customer projects
Platform security, monitoring, and compliance
Communication, support, and account management

We do not sell, rent, or trade customer or personal data.

6. Legal Basis for Processing

Our processing activities rely on one or more of the following legal bases:

Performance of a contract
Legitimate business interests
Legal obligations
Explicit consent where required

7. Data Ownership and Customer Rights

Customers remain 100 percent owners of their raw data and uploaded content
PolyDecypher does not reuse, resell, or share customer data with third parties
Customer data is processed only within the agreed scope of services

Customers may request data export or deletion at any time. Requests are fulfilled within a maximum of 30 days unless legally required otherwise.

8. Data Sharing and Third Parties

We do not share customer data with third parties except:

Trusted infrastructure providers acting as subprocessors
Where legally required by authorities
With explicit customer authorization

All subprocessors are contractually bound by GDPR-compliant data processing agreements.

9. Data Location and Transfers

All data is stored and processed within the European Union
No data is transferred outside the EU unless explicitly agreed and legally compliant

10. Data Security

We apply industry-standard technical and organizational security measures, including:

End-to-end encryption for data in transit and at rest
Customer data isolation and access control
Role-based access and least-privilege principles
Continuous monitoring, logging, and backup procedures
ISO 27001-aligned infrastructure

11. Retention Periods

Personal data is retained only as long as necessary for the stated purposes
Customer data is retained according to contractual agreements
Upon contract termination, data can be exported or permanently deleted upon request

12. Cookies and Tracking

Our website uses only essential cookies required for functionality and security. We do not use third-party advertising trackers.

Details can be found in our Cookie Policy.

13. Your Rights Under GDPR

You have the right to:

Access your personal data
Rectify inaccurate data
Request erasure
Restrict or object to processing
Data portability
Withdraw consent at any time

Requests can be sent to the contact details below.

14. Contact Information

For privacy-related inquiries, requests, or complaints:

PolyDecypher FlexCo Email: office@polydecypher.at

You also have the right to lodge a complaint with your local data protection authority.

15. Changes to This Policy

We may update this Privacy Policy to reflect legal, technical, or business changes. The latest version will always be available on our website.

1. Introduction

2. Scope of this Policy

3. Roles Under GDPR

4. Data We Collect

4.1 Personal Data

4.2 Customer and Technical Data

4.3 Usage and Log Data

5. Purpose of Processing

6. Legal Basis for Processing

7. Data Ownership and Customer Rights

8. Data Sharing and Third Parties

9. Data Location and Transfers

10. Data Security

11. Retention Periods

12. Cookies and Tracking

13. Your Rights Under GDPR

14. Contact Information

15. Changes to This Policy

Ready to unify your polymer test data – and qualify materials considerably faster?

Privacy Policy

1. Introduction

2. Scope of this Policy

3. Roles Under GDPR

4. Data We Collect

4.1 Personal Data

4.2 Customer and Technical Data

4.3 Usage and Log Data

5. Purpose of Processing

6. Legal Basis for Processing

7. Data Ownership and Customer Rights

8. Data Sharing and Third Parties

9. Data Location and Transfers

10. Data Security

11. Retention Periods

12. Cookies and Tracking

13. Your Rights Under GDPR

14. Contact Information

15. Changes to This Policy

Ready to unify your polymer test data – and qualify materials considerably faster?