BMWCodex, operated by CodeOmnific (codeomnific.com) ("we," "us," or "our"), is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our website at bmwcodex.com and our subscription service (collectively, the "Service"). Please read this policy carefully. By using the Service, you consent to the practices described herein.
1. Information We Collect
1.1 Information You Provide
- Account information: When you register for an account, we collect your name and email address.
- Payment information: When you subscribe, payment details (such as credit card number and billing address) are collected and processed directly by our payment processor, Stripe. We do not store your full payment card details on our servers. We receive only a tokenized reference and basic billing information (such as the last four digits of your card and expiration date) from Stripe.
- Communications: If you contact us by email, we collect the content of your message and your email address.
1.2 Information Collected Automatically
- Log data: Our servers automatically record information when you access the Service, including your IP address, browser type, referring URL, pages visited, and the date and time of your visit.
- Usage data: We may collect information about how you interact with the Service, such as search queries and content viewed, to improve the user experience.
2. How We Use Your Information
We use the information we collect for the following purposes:
- Account management: To create and manage your account, authenticate your identity, and provide access to the Service.
- Subscription billing: To process payments, manage subscriptions, and send billing-related communications.
- Service improvement: To analyze usage patterns, diagnose technical issues, and improve the functionality and content of the Service.
- Communications: To send you transactional emails (such as account verification, password resets, and billing receipts) and, with your consent, occasional product updates.
- Security: To detect, prevent, and address fraud, abuse, and security incidents.
3. Third-Party Services
We use the following third-party services to operate the Service. These providers may process your data in accordance with their own privacy policies:
- Stripe — for payment processing and subscription management. Stripe handles all payment card data. See Stripe's Privacy Policy.
- Resend — for transactional email delivery (account verification, password resets, billing receipts). See Resend's Privacy Policy.
- Meilisearch — for powering the search functionality within the Service. Search queries and indexed content data are processed by Meilisearch to provide search results.
We do not sell, rent, or trade your personal information to third parties for marketing purposes.
4. Cookies and Similar Technologies
We use a minimal set of cookies that are essential for the operation of the Service:
- Session cookies: Used to maintain your authenticated session as you navigate the Service. These cookies expire when you close your browser or after a period of inactivity.
- CSRF token: A security cookie used to protect against cross-site request forgery attacks.
We do not use third-party tracking cookies, advertising cookies, or analytics cookies.
5. Data Retention
We retain your personal data for as long as necessary to fulfill the purposes described in this policy:
- Active accounts: Your account data (name, email, subscription status) is retained for the duration of your account.
- Canceled subscriptions: If you cancel your subscription but do not delete your account, we retain your account data so you may re-subscribe in the future.
- Deleted accounts: Upon your request to delete your account, we will remove your personal data from our active systems within 30 days. Some data may be retained in encrypted backups for a limited period as required for legal or operational purposes.
- Billing records: Transaction records may be retained as required by applicable tax and financial regulations.
6. Your Rights
Depending on your jurisdiction, you may have the following rights regarding your personal data:
- Right of access: You may request a copy of the personal data we hold about you.
- Right to rectification: You may request that we correct any inaccurate or incomplete personal data.
- Right to erasure: You may request the deletion of your personal data, subject to any legal obligations that require us to retain certain information.
- Right to data portability: You may request that we provide your personal data in a structured, commonly used, and machine-readable format.
- Right to object: You may object to the processing of your personal data in certain circumstances.
- Right to withdraw consent: Where processing is based on consent, you may withdraw your consent at any time.
To exercise any of these rights, please contact us at info@codeomnific.com. We will respond to your request within 30 days.
7. Security Measures
We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include encrypted data transmission (TLS/SSL), secure password hashing, access controls, and regular security reviews. However, no method of electronic transmission or storage is completely secure, and we cannot guarantee absolute security.
8. Children's Privacy
The Service is not intended for individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to promptly delete that information. If you believe a child under 16 has provided us with personal data, please contact us at info@codeomnific.com.
9. International Data Transfers
Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your jurisdiction. By using the Service, you consent to the transfer of your information to such countries. We take appropriate safeguards to ensure that your personal data remains protected in accordance with this Privacy Policy.
10. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date at the top of this page and, where appropriate, provide additional notice (such as via email). Your continued use of the Service after any changes constitutes your acceptance of the updated policy. We encourage you to review this page periodically.
11. Contact Information
If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at info@codeomnific.com.