Privacy Policy

Last updated: 1st January 2026

Introduction

metavaria SARL ("we", "our", or "us") is committed to protecting your privacy and personal data. This privacy policy explains how we collect, use, and protect your information when you visit our website or use our services. We are the data controller for the purposes of data protection law.

Data We Collect

We collect various types of information to provide and improve our certification authority setup services. The data collection includes both information you provide directly and information collected automatically:

  • Contact Information: Name, email address, phone number, company name, and postal address when you contact us or request our services
  • Communication Data: Messages, enquiries, and correspondence when you communicate with us
  • Technical Information: IP address, browser type, operating system, and device information
  • Website Usage Data: Pages visited, time spent on our website, and interaction patterns
  • Cookie Data: Information collected through cookies and similar tracking technologies as described in our cookie policy

How We Use Your Information

We use your personal data for legitimate business purposes and how we use your information depends on how you interact with our services:

  • Service Provision: To provide certification authority setup guidance and consultancy services
  • Communication: To respond to your enquiries, provide support, and send service-related communications
  • Business Operations: To manage our business relationship with you and process payments
  • Website Improvement: To analyse website usage and improve our online services
  • Legal Compliance: To comply with legal obligations and protect our legitimate interests
  • Marketing: To send you relevant information about our services (with your consent where required)

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner. For detailed information about our use of cookies, please refer to our cookie policy.

Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

  • Consent: When you provide explicit consent for marketing communications or cookies
  • Contract: When processing is necessary for performing our services
  • Legitimate Interest: For business operations, website analytics, and service improvement
  • Legal Obligation: When required by law or regulation

Data Sharing and Third Parties

We do not sell your personal data. We may share your information with:

  • Service Providers: Third-party providers who assist with website hosting, analytics, and business operations
  • Professional Advisors: Legal, financial, and professional consultants when necessary
  • Legal Requirements: When required by law, regulation, or legal process
  • Business Transfer: In connection with any merger, acquisition, or business transfer

Data Retention

We retain your personal data for as long as necessary to fulfil the purposes outlined in this policy. Generally, we retain contact and communication data for up to 7 years for business and legal purposes. Website usage data and cookies are retained for shorter periods as specified in our cookie policy. We regularly review and delete data that is no longer needed.

Your Rights

Under GDPR and data protection laws, you have several rights regarding your personal data:

  • Access: Request access to your personal data and information about how we process it
  • Rectification: Request correction of inaccurate or incomplete personal data
  • Erasure: Request deletion of your personal data in certain circumstances
  • Restriction: Request restriction of processing in certain circumstances
  • Portability: Request transfer of your data to another organisation
  • Objection: Object to processing based on legitimate interests or for marketing purposes
  • Withdraw Consent: Withdraw consent where processing is based on consent

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption, access controls, regular security assessments, and staff training. However, no internet transmission is completely secure, and we cannot guarantee absolute security.

International Data Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data internationally, we ensure appropriate safeguards are in place, such as adequacy decisions, standard contractual clauses, or other legally recognised transfer mechanisms.

Contact Us

If you have questions about this privacy policy, wish to exercise your rights, or need to contact us regarding data protection matters, please contact us:

metavaria SARL

Avenue Monterey 6
4884 Differdange
Luxembourg

Email: privacy@metavaria.top
Phone: +352 26430309

Complaints

If you are not satisfied with how we handle your personal data or privacy concerns, you have the right to lodge a complaint with the Luxembourg data protection authority (Commission Nationale pour la Protection des Données) or your local data protection authority.

Changes to This Policy

We may update this privacy policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of significant changes by posting the updated policy on our website with a new "last updated" date. We encourage you to review this policy periodically.

Cookie Policy Reference

For detailed information about our use of cookies and tracking technologies, please see our comprehensive cookie policy, which forms part of this privacy policy.