📜 Privacy Policy

Effective Date: June 30, 2025
Applies to: Credimi
Data Controller: Forkbomb B.V.
Note: Some of this document was generated with the help of AI

---

💻 Credimi app

1. Introduction

This Privacy Policy explains how Forkbomb B.V. ("we", "our", "us") collects, uses, and protects your personal data when you use the Credimi app ("the Dashboard"). By accessing or using the Dashboard, you agree to the terms of this policy.

2. Data Collection

Personal Data

The Dashboard may collect the following types of personal data:

• Email address
• IP address
• Billing information

Collection Methods

Data is collected through:

• Direct user input (e.g., registration or settings)
• Invitations sent to new users via email

The Dashboard does not collect personal data from third-party sources.

3. Data Processing

Purpose

Collected data is used for the following purposes:

• Creating and managing user accounts
• Enabling organization-level access and permissions
• Personalizing the user experience
• Administrative communication and billing

Automated Decision-Making

We do not use your data for automated decision-making or profiling.

Data Sharing

We do not sell or share your personal data with external parties for marketing or commercial purposes.

Third-Party Services for Testing and Compliance

To ensure technical interoperability, standards compliance, and security, we may use automated testing tools that send pseudonymized or synthetic data to third-party services. For example, we use the OpenID Conformance Test Suite to test compatibility with identity protocols.

These activities:

• Use non-production or synthetic test data
• Are executed in controlled environments
• Are strictly limited to development, testing, and certification purposes

4. Data Storage & Security

Storage Location

All personal data is stored on secure, cloud-based infrastructure located in the European Union.

Data Retention

Your data is retained for as long as your account remains active. You may request deletion at any time.

Security Measures

We implement appropriate technical and organizational measures to protect your data, including:

• Encrypted storage and communication (TLS, HTTPS)
• Access control and authentication
• Regular software updates and vulnerability scans

5. User Rights

You have the following rights under GDPR and other applicable privacy laws:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate or incomplete data
• Deletion: Request deletion of your data (the "right to be forgotten")

How to Exercise Your Rights

You can manage your data directly through the Dashboard interface or by contacting us at:

Email: info@forkbomb.eu

Identity Verification

At present, we do not require identity verification for exercising rights, but we may implement a KYC (Know Your Customer) process in the future.

6. Cookies & Analytics

The Dashboard uses cookies and similar technologies to improve functionality and analyze usage.

Analytics

We use Matomo (self-hosted) for analytics purposes. Matomo respects "Do Not Track" settings in your browser.

Managing Cookies

You can manage or disable cookies via your browser preferences.

7. International Data Transfers

We do not transfer your personal data outside the European Economic Area (EEA).

8. Minors

The Dashboard is not intended for children under the age of 16. We do not knowingly collect data from minors.

9. Updates to This Policy

We may update this Privacy Policy from time to time. Users will be notified of significant changes via email.

10. Contact

If you have questions, requests, or concerns about this Privacy Policy, please contact us at:

Forkbomb B.V.
Haparandadam 7-A1
1013AK Amsterdam
Netherlands
Email: info@forkbomb.eu

11. Legal Compliance

We comply with the General Data Protection Regulation (GDPR) and applicable privacy laws in the Netherlands.

---