Privacy Policy
This Privacy Policy explains how Einstore ("we", "us", "our") collects, uses, stores, and protects personal data when you use the Einstore platform, website, APIs, and related services (the "Service").
We are committed to protecting your privacy and handling your personal data in a transparent and lawful manner in accordance with the UK General Data Protection Regulation ("UK GDPR") and the Data Protection Act 2018.
1. Who We Are
Data Controller: Einstore
Legal entity: UnlikeOtherAI
Registered address: Available on request
Email: [email protected]
If you have any questions about this policy or your data, you can contact us using the details above.
2. Personal Data We Collect
We may collect and process the following categories of personal data:
2.1 Account & Identity Data
- Name
- Email address
- Username
- Organisation or company name
- Authentication credentials (hashed)
2.2 Technical & Usage Data
- IP address
- Device and browser information
- Operating system
- Log files and audit logs
- API usage metadata
- CI/CD integration metadata (non-code)
2.3 Uploaded Content & Metadata
- Application builds and related metadata
- Release notes and version information
- Distribution settings
- Access control lists
Note: We do not inspect or analyse application binaries beyond what is technically required to store, distribute, and deliver them.
2.4 Community & Communications Data
- Forum posts, comments, and messages
- Support requests
- Feedback and surveys
2.5 Billing & Transaction Data
- Billing contact details
- Subscription status
- Payment identifiers (processed by third-party payment providers; we do not store full card details)
3. How We Use Your Data
We use personal data only where legally permitted and for the following purposes:
- To provide and operate the Service
- To authenticate users and secure accounts
- To upload, store, and distribute application builds
- To integrate with CI/CD systems
- To manage subscriptions and billing
- To provide customer support
- To operate community features
- To monitor platform performance and security
- To comply with legal and regulatory obligations
4. Legal Bases for Processing
Under UK GDPR, we rely on the following lawful bases:
- Contract - processing necessary to provide the Service
- Legitimate interests - platform security, abuse prevention, service improvement
- Legal obligation - accounting, tax, and regulatory compliance
- Consent - where explicitly required (e.g. marketing communications)
5. How We Share Data
We do not sell personal data.
We may share data with:
- Cloud hosting and infrastructure providers
- Object storage and content delivery providers
- Payment processors
- Analytics and monitoring services
- Law enforcement or regulators where legally required
All third parties are required to comply with data protection laws and process data only on our instructions.
6. International Transfers
Where personal data is transferred outside the UK, we ensure appropriate safeguards are in place, such as:
- UK adequacy regulations
- Standard Contractual Clauses
- Equivalent contractual protections
7. Data Retention
We retain personal data only for as long as necessary:
- Account data: for the duration of the account plus a reasonable period
- Uploaded builds: until deleted by the user or account termination
- Logs and audit data: retained for security and compliance purposes
- Billing records: retained as required by law
8. Your Rights
Under UK GDPR, you have the right to:
- Access your personal data
- Rectify inaccurate data
- Request erasure ("right to be forgotten")
- Restrict processing
- Object to processing
- Data portability
- Withdraw consent at any time
To exercise your rights, contact us at [email protected].
9. Security Measures
We implement appropriate technical and organisational measures, including:
- Encryption at rest and in transit
- Access controls and audit logging
- Secure authentication mechanisms
- Regular security reviews
However, no system is completely secure, and you use the Service at your own risk.
10. Open Source & Self-Hosted Use
If you use a self-hosted or open-source version of Einstore:
- You are the data controller for any personal data processed
- This Privacy Policy applies only to our hosted Service
- You are responsible for your own compliance obligations
11. Children's Data
The Service is not intended for children under 16, and we do not knowingly collect personal data from children.
12. Changes to This Policy
We may update this Privacy Policy from time to time. Any changes will be posted on this page, and material changes will be communicated where appropriate.
13. Complaints
If you believe we have mishandled your data, you have the right to lodge a complaint with the UK Information Commissioner's Office (ICO):
ICO Website: https://ico.org.uk