Effective Date: May 24, 2025.
Yottabyte Studio https://yottabyte.studio
We are Yottabyte Studio, an independent web studio and technology platform providing digital product development services for businesses.
First and last name
Company name
Email and phone number
Order information
Legal data (to form a contract)
Authorization data (email, password hash)
IP address and technical metadata (browser, device)
History of orders and transactions
API-keys and actions on them
Cookies (minimally - only technical)
Session logs for protection and diagnostics
To provide and improve our services
For internal analytics and statistics
For legal compliance (e.g. accounting and taxation)
For security and abuse prevention
All data is transmitted over HTTPS.
API is protected from CSRF attacks.
Authorization is via JWT and session cookies.
Access to data is role-based (RBAC).
Passwords are stored in hashed form only (bcrypt).
Payment data is processed via third-party payment systems (WayForPay, Stripe) - we do not store card data.
We do not share your data with third parties, with the exception of:
Payment processors (for transaction processing only)
Public authorities (only by law)
Your data is stored on secure VPS servers in the EU.
We do not store data for longer than is necessary to provide services and comply with legal obligations.
You can:
Request access to your data
Correct or delete them
Withdraw your consent to processing
Receive a copy of your data in machine-readable format (on request)
To do this, email us at: info@yottabyte.studio
We may update this policy. All changes will be posted on this page.
The latest revision is May 24, 2025.