Home / Privacy Policy

Privacy Policy

Last updated: January 22, 2026

Introduction

KubeHaven ("we," "our," or "us") is committed to protecting the privacy and security of your personal data. This Privacy Policy describes how we collect, use, process, and disclose your information, including personal data, in conjunction with your access to and use of our website and services.

This Privacy Policy complies with the General Data Protection Regulation (GDPR), the Personal Data Processing Law of Latvia, and guidelines issued by the Data State Inspectorate of Latvia. By accessing or using our services, you acknowledge that you have read and understood this Privacy Policy.

Data Controller

For the purposes of applicable data protection legislation, KubeHaven, located at Vestienas iela 6B, Latgales priekšpilsēta, Rīga, LV-1035, Latvia, is the data controller of the personal data we collect from you.

Categories of Personal Data We Collect

We collect and process the following categories of personal data:

1. Information You Provide to Us

  • Contact Information: When you complete our contact form, we collect your name, company name, email address, phone number, and any other information you choose to provide in your message.
  • Account Information: If you become a client, we may collect additional information necessary to establish and manage your account, including business contact details, billing information, and service preferences.
  • Service Usage Information: Information related to your use of our Managed Kubernetes services, including configuration preferences, support requests, and interaction with our platform.

2. Information We Collect Automatically

  • Device and Connection Information: When you visit our website, we automatically collect technical information about your device, including IP address, browser type and version, operating system, and device identifiers.
  • Usage Data: We collect information about how you interact with our website, such as pages visited, time spent on the site, links clicked, and features used.
  • Cookies and Similar Technologies: We use cookies and similar technologies to collect information about your browsing activities. For more information, please see our Cookie Policy.

Purposes of Processing

We process your personal data for the following purposes:

  • Providing and Improving Our Services: To deliver, maintain, and enhance the Managed Kubernetes platform and related services you request, to respond to your inquiries, and to improve our offerings.
  • Communication: To communicate with you regarding our services, support requests, updates, and important notices.
  • Marketing: With your consent, to provide you with information about our services, events, or offers that may be of interest to you. You can opt out of marketing communications at any time.
  • Security and Fraud Prevention: To protect our systems, detect fraud, and ensure the security of our platform and your data.
  • Legal Compliance: To comply with applicable laws, regulations, legal processes, or enforceable governmental requests.
  • Business Operations: To analyze trends, administer our website, and gather demographic information about our user base.

Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Performance of a Contract: Processing necessary for the performance of a contract with you or to take steps at your request before entering into a contract.
  • Legitimate Interests: Processing necessary for our legitimate interests, such as improving our services, preventing fraud, and ensuring the security of our systems, provided that such interests are not overridden by your interests or fundamental rights and freedoms.
  • Compliance with Legal Obligations: Processing necessary for compliance with legal obligations to which we are subject under EU or Member State law.
  • Consent: Processing based on your specific, informed, and unambiguous consent. You have the right to withdraw your consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.

Data Retention

We retain your personal data for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure, and the purposes for which we process your personal data.

Specific retention periods include:

  • Contact form submissions: 3 years from date of submission
  • Client account information: Duration of the business relationship plus 7 years for legal and accounting purposes
  • Technical logs and analytics: 13 months from collection

Data Sharing and Processors

We may share your personal data with the following categories of recipients:

  • Service Providers: Third-party vendors who perform services on our behalf, such as hosting providers, analytics providers, customer relationship management systems, and email service providers. These providers have access to your personal data only to perform these tasks on our behalf and are contractually obligated to protect your data.
  • Professional Advisors: Lawyers, auditors, bankers, and insurers who provide consultancy, banking, legal, insurance, and accounting services.
  • Authorities: Law enforcement or other government authorities when required by law or in response to legal process.
  • Business Transfers: In connection with any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company.

All third-party processors are subject to appropriate data processing agreements that ensure they process personal data in accordance with the GDPR and applicable Latvian data protection laws.

International Transfers

We primarily store and process your personal data within the European Economic Area (EEA). However, in some cases, we may transfer your data to service providers or business partners located outside the EEA. When we do so, we ensure appropriate safeguards are in place, such as:

  • Transferring data to countries that have been deemed to provide an adequate level of protection by the European Commission
  • Using specific contracts approved by the European Commission (Standard Contractual Clauses) that give personal data the same protection it has in Europe
  • Where applicable, ensuring transfers to the US are to entities certified under the EU-US Privacy Shield

Your Data Protection Rights

Under the GDPR and Latvian data protection laws, you have the following rights:

  • Right to Access: You have the right to request copies of your personal data.
  • Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
  • Right to Erasure: You have the right to request that we erase your personal data, under certain conditions.
  • Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
  • Right to Object to Processing: You have the right to object to our processing of your personal data, under certain conditions.
  • Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
  • Right to Withdraw Consent: Where we rely on consent as a legal basis, you have the right to withdraw consent at any time.

To exercise any of these rights, please contact our Data Protection Officer at dpo@zemgaleanalytics.com. We will respond to your request within one month. You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive, or excessive.

If you are not satisfied with our response to your request, you have the right to lodge a complaint with the Data State Inspectorate of Latvia (https://www.dvi.gov.lv).

Data Security

We have implemented appropriate technical and organizational measures to protect your personal data against unauthorized or unlawful processing, accidental loss, destruction, or damage. These measures include:

  • Encryption of personal data in transit and at rest
  • Regular testing and evaluation of the effectiveness of security measures
  • Access controls and authentication mechanisms
  • Regular backups and data recovery procedures
  • Staff training on data protection and security practices
  • Physical security measures at our data centers

While we strive to protect your personal data, no method of transmission over the Internet or electronic storage is 100% secure. Therefore, we cannot guarantee absolute security.

Children's Privacy

Our services are not intended for individuals under the age of 18, and we do not knowingly collect personal data from children. If you are a parent or guardian and believe that your child has provided us with personal data, please contact us, and we will take steps to delete such information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. The updated version will be indicated by an updated "Last updated" date. We encourage you to review this Privacy Policy frequently to stay informed about how we are protecting your information.

Contact Information

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:

KubeHaven
Vestienas iela 6B
Latgales priekšpilsēta, Rīga, LV-1035
Latvia
Phone: +37167726151
Email: dpo@zemgaleanalytics.com

Our Data Protection Officer can be reached at dpo@zemgaleanalytics.com for any data protection inquiries.