Privacy Policy
Last updated: February 2026
Introduction
This Privacy Policy explains how sors.software ("we", "us", or "our") collects, uses, and protects your personal data when you use our website and contact form. We are committed to ensuring that your privacy is protected in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.
Data Controller
The data controller responsible for your personal data is:
sors Michał Trykoszko
ul. Bacieczki 219, 15-686 Białystok, Poland
Email: dev@sors.software
Phone: +48 537 224 218
Data We Collect
When you submit our contact form, we collect the following personal data:
| Field | Required | Purpose |
|---|---|---|
| Name | Yes | To address you in our response |
| Email address | Yes | To respond to your inquiry |
| Company name | No | To understand your business context |
| Project type | Yes | To understand the scope of your project |
| Budget range | Yes | To prepare an appropriate proposal |
| Timeline | Yes | To assess availability and scheduling |
| Project description | Yes | To understand your requirements |
How We Use Your Data
We use your personal data exclusively to:
- Respond to your inquiry and provide you with a project proposal
- Communicate with you about your potential project
- Maintain records of business communications
We do not use your data for marketing purposes unless you explicitly opt in. We do not sell, trade, or rent your personal data to third parties.
Legal Basis for Processing
We process your personal data based on your explicit consent, which you provide by checking the consent checkbox on our contact form (Article 6(1)(a) GDPR). You may withdraw your consent at any time by contacting us at dev@sors.software.
Data Retention
Your contact form submissions are stored in our database for the duration of our business correspondence and for up to 12 months after your last communication with us, unless a longer retention period is required by law. After this period, your data will be securely deleted from both our database and email systems.
Third-Party Service Providers
We use the following third-party services to operate our website and process your data. Each provider acts as a data processor on our behalf:
| Provider | Purpose | Data processed | Location |
|---|---|---|---|
| Vercel Inc. | Website hosting & serverless functions | IP address, request data, server logs | USA |
| Neon Inc. | Database storage for contact form submissions | Name, email, company, project details | EU (Frankfurt) |
| Resend Inc. | Transactional email delivery | Name, email, project details (in email content) | USA |
| Vercel Inc. | Website analytics (Vercel Analytics) | Anonymised page views, referrer, device info (cookieless) | USA |
| Google LLC | Website analytics (Google Analytics 4) | Anonymised usage data, cookies (see our Cookie Policy) | USA |
We do not sell, trade, or share your personal data with any parties beyond those listed above.
International Data Transfers
Some of our service providers (Vercel, Resend, Google) are based in the United States. When your data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, including the EU Standard Contractual Clauses (SCCs) adopted by the European Commission. Your contact form data is stored in a Neon database located in the EU (Frankfurt, Germany).
Your Rights
Under the GDPR, you have the following rights regarding your personal data:
- Right of access — request a copy of the personal data we hold about you
- Right to rectification — request correction of inaccurate data
- Right to erasure — request deletion of your personal data
- Right to restrict processing — request that we limit how we use your data
- Right to data portability — receive your data in a structured, machine-readable format
- Right to object — object to the processing of your personal data
- Right to withdraw consent — withdraw your consent at any time
- Right to lodge a complaint — file a complaint with a supervisory authority (in Poland: UODO — uodo.gov.pl)
To exercise any of these rights, contact us at dev@sors.software. We will respond within 30 days.
Data Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. This includes encrypted data transmission (HTTPS/TLS) and secure email delivery via authenticated SMTP.
Changes to This Policy
We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated "Last updated" date. We encourage you to review this policy periodically.
Contact Us
If you have any questions about this Privacy Policy or our data practices, please contact us:
sors Michał Trykoszko
ul. Bacieczki 219, 15-686 Białystok, Poland
Email: dev@sors.software
Phone: +48 537 224 218