Privacy Policy

1. Data Controller

The data controller responsible for this website is:

2. Collection and Storage of Personal Data

2.1 When Visiting the Website

When you visit our website for informational purposes, we collect only the personal data that your browser transmits to our server:

• IP address
• Date and time of request
• Time zone difference to Greenwich Mean Time (GMT)
• Content of the request (specific page)
• Access status/HTTP status code
• Amount of data transferred
• Website from which the request originated
• Browser and operating system

Legal Basis: Art. 6(1)(f) GDPR (legitimate interest in providing a functional website)

2.2 When Using Our Services

When you register and use our quantum computing services, we collect:

• Email address
• Name and organization (optional)
• Calculation data and results
• Platform usage data
• Payment information (processed securely via Stripe)

Legal Basis: Art. 6(1)(b) GDPR (contract performance) and Art. 6(1)(f) GDPR (legitimate interest in service improvement)

3. Purpose of Data Processing

We use your personal data for the following purposes:

• Providing quantum computing services
• User account management and authentication
• Billing and payment processing
• Technical support and customer service
• Platform improvement and security
• Compliance with legal obligations
• Communication about service updates

4. Data Retention

We retain your personal data only as long as necessary:

• Account Data: Until account deletion or 3 years of inactivity
• Calculation Data: Stored according to your subscription plan (immediate deletion available)
• Billing Records: 10 years (legal requirement)
• Server Logs: 90 days maximum
• Support Communications: 2 years after case closure

5. Data Sharing and Third Parties

We do not sell your personal data. We share data only with:

6. Data Security

We implement industry-standard security measures:

• End-to-end encryption for data in transit (TLS 1.3)
• Encryption at rest for stored data
• Regular security audits and penetration testing
• Access controls and authentication (OAuth 2.0)
• Regular backups with encrypted storage
• Employee training on data protection
• Incident response procedures

7. Your Rights

Under GDPR and applicable data protection laws, you have the right to:

To exercise these rights, contact us at privacy@mosaeq.com. We will respond within 30 days.

8. Cookies and Tracking

We use only essential cookies for:

• User authentication and session management
• Security and fraud prevention
• User preferences and settings

We do not use advertising or tracking cookies. For more information, see our Cookie Policy.

9. International Data Transfers

Your data is primarily stored in the European Union. If data is transferred outside the EU/EEA, we ensure adequate protection through:

• EU Standard Contractual Clauses (SCCs)
• Adequacy decisions by the European Commission
• Binding Corporate Rules where applicable

10. Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal data from children. If you believe we have inadvertently collected such data, please contact us immediately at privacy@mosaeq.com.

11. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes via email or through a notice on our platform. The "Last updated" date at the top indicates the most recent revision.

12. Contact Information