Privacy Policy

Last updated: April 5, 2026

This Privacy Policy explains what personal data Opineos processes, why it is processed, who receives it, and which rights are available to data subjects.

1. Scope and Roles

This policy applies to Opineos website, dashboard, API endpoints, and widget scripts. For feedback submitted through a customer widget, the workspace owner is generally the controller and Opineos acts as processor/service provider. For account and billing data, Opineos acts as controller.

2. Personal Data We Process

We may process account identity data (name, email), workspace settings, project/domain configuration, usage/security logs, billing-related identifiers, and feedback payload fields (message content, category/type, rating, optional contact info, and technical metadata such as IP and user agent).

3. Purpose of Processing

Data is processed to operate the service, authenticate users, secure infrastructure, deliver integrations, process billing and support requests, prevent abuse, and maintain and improve product reliability.

4. Legal Bases

Where applicable law requires a legal basis, processing relies on contract performance, legitimate interests, legal obligations, and consent where specifically requested.

5. Cookies and Local Storage

We use essential cookies and local storage for authentication, session continuity, security controls, and interface preferences. See Cookie Policy for more detail.

6. Processors and Integrations

We do not sell personal data. We share data only with service providers and enabled third-party integrations (for example payment, messaging, or issue tracking systems) as required to deliver requested functionality.

7. International Transfers

If data is transferred internationally, we apply commercially reasonable safeguards aligned with applicable legal requirements.

8. Data Retention

Data is retained while accounts/projects remain active and for limited periods required for backup, fraud prevention, legal compliance, and dispute handling. Retention periods may vary by data category and legal obligation.

9. Security Measures

We apply technical and organizational controls including access controls, environment separation, credential handling safeguards, and logging/monitoring to reduce unauthorized access risk. No system can guarantee absolute security.

10. Your Rights

Depending on jurisdiction, data subjects may request access, correction, deletion, restriction, objection, and portability. You may also withdraw consent where processing is consent-based.

11. Children

Opineos is not directed to children under the age required by applicable law, and we do not knowingly collect personal data from children for direct account use.

12. Updates and Contact

We may update this policy when product or legal requirements change. Material updates will be published on this page. For privacy requests or complaints, contact us using the details below.