Privacy Policy
Last Updated: January 15, 2025At PulseLumix, we believe that privacy isn't just a policy document you scroll past. It's about respecting the people who trust us with their information while using our keyword research tools. This document explains what we collect, why we collect it, and what choices you have.
We operate under Bulgarian data protection laws, which align with the General Data Protection Regulation (GDPR). That means you have strong rights when it comes to your personal information, and we take those rights seriously.
Questions About Your Privacy?
ul. "Veliko Tarnovo" 20
6304 Haskovo Center, Haskovo
Bulgaria
What Information We Collect
We're pretty straightforward about this. We only collect information that helps us provide better keyword research services or that's necessary to run the business properly.
Information You Provide Directly
- Account Details: When you sign up, we ask for your name, email address, and password. Pretty standard stuff for any online service.
- Payment Information: If you subscribe to our paid plans, we collect billing details. However, actual credit card numbers are handled by our payment processors – we don't store them ourselves.
- Research Data: The keywords you search for, projects you create, and preferences you set. This helps us show you relevant results and remember your settings.
- Support Communications: When you reach out for help, we keep records of those conversations to provide better assistance and improve our service.
Information We Collect Automatically
Like most websites, we gather some technical information when you use our platform. This includes:
- Device information (browser type, operating system, screen resolution)
- IP address and general location (usually just city-level)
- Pages you visit and features you use
- Time spent on different sections of the platform
- Technical errors or performance issues you encounter
Important: We don't sell your personal information to third parties. Period. Our business model is based on subscriptions, not data brokerage.
How We Use Your Information
Everything we collect serves a specific purpose. Here's what we actually do with your data:
| Purpose | What This Means | Legal Basis |
|---|---|---|
| Service Delivery | Providing keyword research tools, saving your projects, generating reports | Contract performance |
| Account Management | Creating and maintaining your account, processing payments, managing subscriptions | Contract performance |
| Platform Improvement | Analyzing usage patterns to fix bugs and develop new features | Legitimate interest |
| Communication | Sending service updates, responding to support requests, sharing relevant tips | Contract performance & consent |
| Security | Detecting fraud, preventing unauthorized access, protecting our systems | Legal obligation & legitimate interest |
We occasionally send educational content about keyword research and SEO topics. You can unsubscribe from these anytime – there's a link at the bottom of every email.
Data Sharing and Third Parties
We keep your data pretty close to the chest, but we do work with some external services that help us run the platform effectively.
Service Providers We Work With
- Payment Processors: To handle subscriptions and refunds securely
- Cloud Infrastructure: For hosting our platform and storing data reliably
- Analytics Tools: To understand how people use our service and where we can improve
- Email Services: For sending notifications and support responses
All these providers are contractually required to protect your information and can only use it for the specific services they provide to us. We don't just hand over data to anyone who asks nicely.
When We Might Disclose Information
There are a few situations where we might need to share information:
- If required by Bulgarian or EU law enforcement with proper legal documentation
- To protect the security or integrity of our service
- In the unlikely event of a business merger or acquisition (you'd be notified)
- With your explicit consent for a specific purpose
Your Rights and Choices
Under Bulgarian and EU law, you have significant control over your personal data. These aren't just theoretical rights – we've built systems to make them practical.
Access Your Data
Request a complete copy of the personal information we hold about you. We'll provide it in a readable format within 30 days.
Correct Inaccuracies
Update or fix any incorrect personal information. Most of this you can do directly in your account settings.
Delete Your Data
Request deletion of your personal information. We'll remove it unless we have a legal obligation to keep certain records.
Restrict Processing
Limit how we use your data in certain situations, like while we verify accuracy of contested information.
Data Portability
Receive your data in a structured, machine-readable format that you can transfer to another service.
Object to Processing
Object to certain types of processing, particularly for direct marketing purposes or profiling activities.
To exercise any of these rights, contact us through your account or email us directly. We'll respond within one month, though for complex requests we might need an additional two months (we'll let you know).
Data Security and Retention
Security isn't just about having fancy encryption – though we do use that. It's about building systems that protect your information at every level.
How We Protect Your Data
- Encryption: All data transmitted to and from our servers uses TLS encryption. Stored passwords are hashed using industry-standard algorithms.
- Access Controls: Only authorized team members can access user data, and only when necessary for support or system maintenance.
- Regular Audits: We review our security practices quarterly and conduct vulnerability assessments on our infrastructure.
- Backup Systems: We maintain secure backups to prevent data loss, with the same protection standards as our primary systems.
How Long We Keep Your Data
We don't keep information longer than necessary. Here's our general approach:
- Active account data is retained while your account remains open
- After account deletion, most data is removed within 30 days
- Billing records are kept for 7 years to comply with Bulgarian tax laws
- Aggregated analytics data (with no personal identifiers) may be retained longer for product development
- Support conversation records are kept for 3 years to maintain service quality
Cookies and Tracking
We use cookies – small text files stored on your device – to make the platform work properly and improve your experience. Let's be clear about what we use and why.
Essential Cookies
These keep the service functional. They remember you're logged in, store your preferences, and maintain security. You can't really opt out of these without breaking the platform.
Analytics Cookies
We use these to understand which features people actually use and where they get confused. This helps us build a better product. You can disable these in your account settings if you prefer.
Performance Cookies
These help us measure loading times and identify technical issues. They don't identify you personally – they just tell us things like "someone on Chrome in Sofia experienced a slow page load."
Most browsers let you control cookies through their settings. Keep in mind that blocking all cookies will affect how the platform works.
International Data Transfers
We're based in Bulgaria, which is part of the EU. However, some of our service providers operate servers in other countries. When we transfer data outside the European Economic Area, we make sure appropriate safeguards are in place.
This typically means using Standard Contractual Clauses approved by the European Commission, or working with providers certified under recognized data protection frameworks. Your data doesn't just wander off to random servers around the world without protection.
Children's Privacy
Our service isn't designed for children under 16. We don't knowingly collect information from anyone under that age. If you're a parent and discover your child has created an account, please contact us and we'll delete it promptly.
Changes to This Policy
We update this policy occasionally to reflect changes in our practices or legal requirements. When we make significant changes, we'll notify you via email and display a notice on the platform.
The "Last Updated" date at the top shows when the current version took effect. We recommend checking back periodically, especially if you haven't logged in for a while.
Complaints and Regulatory Authority
If you're not satisfied with how we've handled your privacy concerns, you have the right to lodge a complaint with the Bulgarian Commission for Personal Data Protection (CPDP).
That said, we'd appreciate the chance to address your concerns directly first. Most issues can be resolved through a straightforward conversation, and we genuinely want to make things right if we've made a mistake.