top of page

Privacy Policy

Last updated: 1 June 2025

This Privacy Policy explains how "we", "our" or "us" collects, uses, stores and protects personal data when you visit https://redxedge.com (the "Site") or interact with our services.

1. Who is the data controller?

JurisdictionLegal entityRegistration No.AddressSupervisory Authority

European Union (general)

PP Xolo  OÜ Avirredy Hemesh  EE102156920 Paju tn 1a, 50603 Tartu, Tartu Maakond, Estonia

2. What personal data do we process & why?

CategoryExamplesPurposeLegal Basis (Art. 6 GDPR)Retention

Browsing dataIP address, device ID, cookies, analytics eventsSite security, performance analyticsLegitimate interest (Art. 6 (1)(f))26 months (Google Analytics)

Contact dataName, email, phone, company, message contentRespond to enquiries, schedule demosPre‑contractual steps (Art. 6 (1)(b))18 months after last contact.

Client account dataUser IDs, login email, usage logsProvide SaaS services, audit trailContract performance (Art. 6 (1)(b))Term of contract + 6 years

Marketing dataEmail preferences, open/click ratesSend newsletters & product updatesConsent (Art. 6 (1)(a))Until consent withdrawn

We do not collect special‑category data (Art. 9 GDPR) or biometric identifiers on this Site.

3. Cookies & similar tech

We use first‑party and third‑party cookies for:

  • Essential: session management, CSRF protection.

  • Analytics: Google Analytics 4 in IP‑anonymisation mode.

  • Marketing: LinkedIn Insight Tag (only if you opt‑in).

You can adjust preferences in the Cookie Banner or via your browser.
See our Cookie Notice for full details.

4. Who receives your data?

RecipientLocationSafeguard

AWS EU‑Central (Frankfurt)GermanyIntra‑EU; GDPR compliant

Microsoft Azure (West Europe)NetherlandsIntra‑EU; GDPR compliant

Google LLC (GA4)USAStandard Contractual Clauses (+ EU‑USA Data Privacy Framework)

HubSpot Ireland Ltd.IrelandIntra‑EU; GDPR compliant

We do not sell personal data.

5. International transfers

Data may be transferred outside the EEA to suppliers in the USA, Singapore and Canada under:

  • EU Standard Contractual Clauses (2021/914/EU), supplemented by extra safeguards; or

  • Adequacy decisions (e.g., Canada PIPEDA, EU‑US Data Privacy Framework).

6. Your rights (GDPR, LOPDGDD, Estonian PDA)

You can:

  1. Access your data.

  2. Rectify inaccurate data.

  3. Erase (“right to be forgotten”).

  4. Restrict or object to processing.

  5. Data portability (machine‑readable copy).

  6. Withdraw consent at any time.

  7. Lodge a complaint with your local supervisory authority (AKI or AEPD).

Submit requests to privacy@redxedge.com. We reply within one month (Art. 12 GDPR).
 

7. Data security

We apply WIX‑aligned controls: encryption in transit  & at rest , role‑based access (least privilege), 

8. Children

Our Site and services are not directed to children under 16. We do not knowingly process their data.

9. Changes to this Policy

We may update this Policy to reflect legal or operational changes. Material changes will be announced on the Site and, where appropriate, emailed to registered users.

10. Contact

Email: Info@redxedge.com
 

If you believe your data protection rights have been infringed, please reach out to us and we will take necessary action. 

bottom of page