Last updated: March 5, 2026

This Data Processing & GDPR Notice explains how Eyecay (“we”, “our”, “us”) handles personal data when providing services through https://eyecay.ky. This notice is intended to support transparency requirements for users in the European Economic Area (EEA), United Kingdom, and other regions with similar privacy laws.

1. Roles: Controller vs. Processor

• Website visitors: When you browse eyecay.ky and submit inquiries, Eyecay typically acts as a Data Controller for that information.
• Client service delivery: When we process information on behalf of a client (for example, during an audit, hosting, support, or reporting), Eyecay may act as a Data Processor and the client may be the Controller.

2. Lawful Bases for Processing (Where Applicable)

Where privacy laws require a legal basis (e.g., GDPR), we may process personal data under one or more of the following:

• Consent (e.g., when you opt in to certain cookies or communications)
• Contract (e.g., to provide requested services or respond to service inquiries)
• Legitimate interests (e.g., to secure and improve our Website and services, prevent abuse, and maintain operational logs)
• Legal obligation (e.g., compliance with applicable laws)

3. Categories of Data

Depending on your interaction with Eyecay, we may process:

• Contact details (name, email, phone, company)
• Communications (messages, support requests)
• Technical identifiers (IP address, device/browser info, timestamps)
• Service-related information you submit (URLs, site info, configuration details)
• Publicly accessible website data used for analysis (e.g., metadata, page structure, performance signals)

4. International Transfers

Eyecay may use infrastructure and service providers that process data in different countries. Where required, we take reasonable steps to ensure appropriate safeguards are in place (such as contractual protections) to support lawful transfers.

5. Subprocessors / Service Providers

We may use third-party providers to operate our Website and deliver services (for example: hosting, email delivery, analytics, security/CDN providers such as Cloudflare). These providers may process certain personal data only as needed to provide their services.

6. Data Retention

We keep personal data only as long as necessary for the purposes described in our Privacy Policy, including service delivery, security logging, compliance, and dispute resolution. Retention periods may vary depending on the type of data and service.

7. Security Measures

We apply reasonable measures to protect data, including:

• Access controls and least-privilege practices
• Security monitoring and logging
• Encryption in transit where supported (HTTPS/TLS)
• Infrastructure and application hardening practices where appropriate

No method of transmission or storage is 100% secure. We cannot guarantee absolute security.

8. Your Rights

Depending on your location and applicable law, you may have rights such as:

• Access to your personal data
• Correction of inaccurate data
• Deletion of data (in certain cases)
• Restriction or objection to certain processing
• Data portability (where applicable)
• Withdrawal of consent (where processing is based on consent)

9. How to Make a Request

To request access, deletion, correction, or other privacy actions, contact us using the email below. We may request verification to protect your information.

10. Contact

Email: [email protected]
Website: https://eyecay.ky