Soverita is committed to protecting your privacy. This policy explains how we collect, use, and safeguard your personal data when you interact with our website and services. We believe privacy is a right, not a feature — and we apply that principle to our own operations, not just our product.

1. Data Controller

Soverita
Contact: stanimira@soverita.io
Jurisdiction: European Union

2. What Data We Collect

We collect personal data only when you voluntarily provide it through our contact form:

• Name
• Organisation (optional)
• Email address
• Message content (your description of your infrastructure and requirements)

We do not collect:

• Tracking cookies or advertising identifiers
• Analytics data via third-party services (no Google Analytics, no Hotjar, no Meta Pixel)
• Device fingerprints or behavioural profiles
• Data from third-party sources or data brokers

This website uses only technically necessary functionality. No consent banner is required because no tracking occurs.

3. Why We Collect It

We process your personal data solely for the following purposes:

• To respond to your enquiry and evaluate whether Soverita is appropriate for your needs
• To schedule and conduct technical conversations about your infrastructure
• To follow up on your request if you have asked us to do so

We do not use your data for marketing communications unless you explicitly opt in. We do not sell, rent, or share your data with third parties for their own purposes.

Legal basis (GDPR Article 6): Processing is based on your consent (Article 6(1)(a)), provided when you submit the contact form. For any follow-up communication after initial contact, processing is based on legitimate interest (Article 6(1)(f)) — specifically, our interest in responding to your business enquiry.

4. How Long We Keep It

Contact form submissions are retained for 12 months after the last interaction. After this period, all personal data from the submission is permanently deleted.

If a business relationship is established, relevant contact data is retained for the duration of the relationship plus any legally required retention period.

You may request deletion of your data at any time, regardless of the retention period. We will comply within 30 days.

5. Who Has Access

Your data is accessible only to the Soverita founding team. Specifically:

• No third-party data processors outside the EU are involved
• No cloud services outside the EU are used to store or process your data
• No subcontractors, resellers, or partners have access to your data
• No automated decision-making or profiling is performed on your data

6. Data Location

All personal data collected through this website is stored and processed within the European Union. No data is transferred to countries outside the EU/EEA. No US-headquartered cloud services are used in the processing chain.

7. Your Rights Under GDPR

Under the General Data Protection Regulation (EU 2016/679), you have the following rights:

• Right of access (Article 15) — request a copy of the personal data we hold about you
• Right to rectification (Article 16) — request correction of inaccurate personal data
• Right to erasure (Article 17) — request deletion of your personal data
• Right to restrict processing (Article 18) — request that we limit how we use your data
• Right to data portability (Article 20) — receive your data in a structured, machine-readable format
• Right to withdraw consent (Article 7(3)) — withdraw your consent at any time without affecting the lawfulness of prior processing
• Right to lodge a complaint (Article 77) — file a complaint with a supervisory authority in your EU member state

To exercise any of these rights, contact us at stanimira@soverita.io. We will respond within 30 days.

8. Security

We protect your personal data using appropriate technical and organisational measures, including encryption in transit (TLS), access controls, and secure storage within EU-based infrastructure. Given the nature of our business — sovereign cloud governance — we hold ourselves to the same standards we help our customers achieve.

9. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated on this page with an updated date. We encourage you to review this page periodically.

10. Contact

For any privacy-related questions, requests, or complaints:
stanimira@soverita.io