Privacy Policy

Last updated: 30 April 2025

BELT Protocol (“we”, “us”, or “our”) is committed to protecting your personal data and respecting your privacy in accordance with the EU General Data Protection Regulation (GDPR — Regulation 2016/679) and applicable national data protection law.

This Privacy Policy explains what personal data we collect, why, how we use it, and what rights you have. Please read it carefully.

1. Data Controller

BELT Protocol
Email: info@beltprotocol.com

For any privacy-related enquiry or to exercise your rights, contact us at the address above.

2. What Data We Collect and Why

We only collect personal data that you voluntarily provide to us:

  • Contact form — name, email address, phone number, and message content. Legal basis: your consent (Art. 6(1)(a) GDPR) and our legitimate interest in responding to enquiries (Art. 6(1)(f) GDPR). You can withdraw consent at any time by contacting us.
  • Email correspondence — if you contact us by email, we process the data contained in that message. Legal basis: legitimate interest (Art. 6(1)(f) GDPR).

We do not collect any special categories of personal data (Art. 9 GDPR).

3. How We Use Your Data

  • To respond to your enquiries and requests.
  • To manage our business relationship with you.
  • To comply with legal obligations.

We will never sell, rent, or share your data with third parties for marketing purposes.

4. Data Retention

We retain contact form submissions and email correspondence for up to 24 months from the date of last contact, unless a longer period is required by law or legitimate business need. After this period, your data is securely deleted.

5. Third-Party Services and Data Transfers

We use the following sub-processors who may process your data on our behalf:

  • Vercel Inc. — website hosting (USA). Data transfers are governed by Standard Contractual Clauses (SCCs) in accordance with Art. 46 GDPR.
  • GitHub Inc. — content management (USA). Data transfers are governed by SCCs.

We do not use third-party analytics services (e.g. Google Analytics) or advertising networks that track users across websites.

6. Cookies and Similar Technologies

Our website uses only strictly necessary browser storage (localStorage) to remember your cookie consent preference. No tracking or profiling cookies are set. Please see our Cookie Policy for full details.

7. Your Rights Under GDPR

As a data subject in the EU/EEA, you have the following rights:

  • Right of access (Art. 15) — request a copy of the data we hold about you.
  • Right to rectification (Art. 16) — ask us to correct inaccurate data.
  • Right to erasure (Art. 17) — “right to be forgotten” in certain circumstances.
  • Right to restriction (Art. 18) — ask us to limit how we use your data.
  • Right to data portability (Art. 20) — receive your data in a structured format.
  • Right to object (Art. 21) — object to processing based on legitimate interest.
  • Right to withdraw consent — at any time, without affecting prior processing.

To exercise any right, contact us at info@beltprotocol.com. We will respond within 30 days. You also have the right to lodge a complaint with your national supervisory authority (e.g. ANSPDCP in Romania, Garante in Italy, or ICO in the UK).

8. Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. All data in transit is encrypted using TLS.

9. Children

Our website is not directed at children under 16. We do not knowingly collect personal data from minors. If you believe we have inadvertently collected such data, contact us immediately.

10. Changes to This Policy

We may update this Privacy Policy from time to time. The “Last updated” date at the top reflects the most recent revision. Continued use of the website after changes constitutes acceptance of the updated policy.

11. Contact

For any questions about this Privacy Policy or how we handle your data:
info@beltprotocol.com