legal · gdpr

privacy policy

This is the short, plain-language version. No dark patterns, no fine print. If something here is unclear, email us and we'll rewrite it.

Last updated

10 April 2026

Version

v1 · 2026-04

Controller

Jakub Sikora (Choyce) — privacy@choyce.app

1. What we collect

Just your email address. That's it. We don't ask for a name, a company, or a job title. We don't track your location. We don't fingerprint your device.

2. Why we collect it

To send you one email when the Choyce private beta opens. No newsletter. No "you might also like". No marketing partners. If we ever want to send a second kind of email, we'll ask you first.

3. Lawful basis

Your explicit consent, under GDPR Article 6(1)(a). You tick the box on the waitlist form, we store the email. Untick, un-submit, no consent, no storage. Simple.

4. Where it's stored

We use Loops (Astrodon Corporation) to hold the waitlist. Loops is our data processor under a signed Data Processing Agreement, governed by Irish law. The landing page itself is hosted on Cloudflare Pages, with edge caching across the EU.

5. How long we keep it

Until the private beta launches, plus 90 days — or until you ask us to delete it, whichever comes first. After that, everything is purged.

6. Who can see it

Just Jakub (the controller) and the Loops platform (the processor). No third-party marketing. No "analytics partners". No resale. Ever.

7. Your rights

Under GDPR you have the right to:

• Access — ask for a copy of what we have on you.
• Rectification — fix anything wrong.
• Erasure — ask us to forget you. We will, within 30 days.
• Portability — ask for your data in a machine-readable format.
• Objection — tell us to stop processing your data.
• Withdraw consent — any time, as easily as you gave it.

To exercise any of these rights, email privacy@choyce.app with the word "privacy" in the subject line. We respond within 30 days (usually much sooner).

8. Cookies & analytics

The choyce landing page does not set any cookies. We use Plausible for privacy-friendly analytics — it's EU-hosted, cookieless, and does not collect any personal data. No consent banner is required under ePrivacy Article 5(3), but we disclose it here for transparency.

9. Complaints

If you're not happy with how we handle your data, you can lodge a complaint with an EU supervisory authority. Because our processor is governed by Irish law, the default authority is the Irish Data Protection Commission. Please try emailing us first — we'd rather fix it directly.

10. Changes to this policy

If we change anything material, we'll bump the consent version and either re-ask you for consent or send you an explanation email.

← back to choyce