Privacy Policy

We respect your privacy. This Privacy Policy explains how Internet Tech Services ("we", "us", "our") collects, uses, discloses, and protects personal data in connection with the MacHealthCheck website and services. It is designed to meet the requirements of the EU General Data Protection Regulation (GDPR).

Identity of the Controller

Controller: Internet Tech Services
Contact: privacy@machealthcheck.com

What Data We Collect

• Contact data: name and email you submit (e.g., waitlist form).
• Technical data: IP address, device/browser information, and country code (via Cloudflare `CF-IPCountry`).
• Usage data: pages visited, timestamps, and basic interaction events.
• Network/error logs: DNS, network, and HTTP request metadata as configured in Cloudflare Gateway logs.
• Preference data (optional): declared operating system and preferred browser (if provided in forms).

Purposes and Legal Bases

• Provide and secure the service (legitimate interests Art. 6(1)(f)). We use your data to operate core site functions, protect accounts, prevent abuse, and keep the platform reliable (e.g., availability, security, troubleshooting). These activities are necessary to deliver the service you expect and are balanced against your rights.
• Communications and updates when you opt in (consent Art. 6(1)(a)). If you join the waitlist or subscribe, we send product updates or onboarding tips. You can withdraw consent at any time by contacting us; this won’t affect processing that happened before withdrawal.
• Diagnostics, performance, and fraud prevention (legitimate interests Art. 6(1)(f)). We analyze aggregate usage and technical signals to improve speed, fix bugs, and detect misuse (e.g., rate‑limiting, anomaly detection). We do not use this for automated decisions with legal or similarly significant effects.
• Compliance with legal obligations (Art. 6(1)(c)). In limited cases we process or retain certain data to meet legal, regulatory, or tax requirements, or to respond to lawful requests from authorities.

Why We Ask About Your OS and Browser (Optional)

We may ask for your operating system and preferred browser to better understand our users and improve MacHealthCheck. Providing this information is optional and is not required to join the waitlist or use our site.

• Tailor onboarding, help content, and emails to your environment (e.g., macOS vs. Windows).
• Prioritize compatibility and feature work where most users are (e.g., Safari vs. Chrome).
• Reproduce issues and support requests more quickly with environment context.
• Optimize UI/UX and performance for the most common browsers and devices.
• Validate trends by comparing self‑reported preferences with anonymous technical signals (e.g., user agent).

Legal basis: our legitimate interests in understanding and improving the service (Art. 6(1)(f)). You may choose not to provide this information or select an option such as “I prefer not to say”. You can also contact us to update or delete this data at any time.

Consent

Where processing is based on consent, we request a clear affirmative action (e.g., ticking a box or submitting a form). Silence, pre‑ticked boxes, or inactivity do not constitute consent. You may withdraw consent at any time without affecting prior lawful processing.

Transparency and Profiling

We do not conduct automated decision‑making that produces legal or similarly significant effects. We do not profile users to take decisions about them. We may observe aggregate usage to improve features without identifying individuals.

Retention

We retain personal data only as long as necessary for the purposes described or as required by law. When exact periods are not possible, we apply documented criteria such as legal limitation periods and operational needs.

Your Rights

• Access, rectification, erasure ("right to be forgotten"), and portability.
• Restriction and objection to processing, including for legitimate interests.
• Withdrawal of consent at any time where processing is based on consent.
• Right to lodge a complaint with a supervisory authority.

Information Provided at Collection

• The purposes of processing and our identity as controller.
• The period we store personal data, or the criteria used to determine it.
• Your rights (access, rectification, erasure, restriction, portability, objection) and how to exercise them.
• Your right to withdraw consent at any time where processing is based on consent.
• Your right to lodge a complaint with a supervisory authority.
• Whether provision of data is statutory/contractual or necessary to enter a contract, whether you must provide it, and consequences of not providing.
• The existence of automated decision‑making, including profiling, and meaningful information about the logic involved where applicable.

Restriction of Processing

You may request restriction where: accuracy is contested; processing is unlawful and you prefer restriction; data are needed for legal claims; or pending verification of overriding legitimate grounds following an objection.

Right to Erasure

• Data are no longer necessary for the purposes collected.
• You withdraw consent and there is no other legal ground.
• You object under Article 21(1) and there are no overriding legitimate grounds.
• Processing is unlawful.
• Erasure is required to comply with the appropriate law.
• Data were collected in relation to information society services offered to a child where applicable.

Right to Object

You may object at any time, on grounds relating to your particular situation, to processing based on our legitimate interests, including related profiling. We will stop processing unless we demonstrate compelling legitimate grounds that override your interests, rights, and freedoms, or the processing is for the establishment, exercise, or defense of legal claims.

Automated Decision‑Making and Profiling

We do not use automated decision‑making in the sense of Article 22(1) and (4) that produces legal or similarly significant effects. If this changes, we will provide meaningful information about the logic involved and the significance and envisaged consequences for you, and obtain consent where required.

Data Provision Requirements

Where personal data are necessary to provide the service or to enter into a contract, we will indicate which data are required and the possible consequences of failure to provide them (e.g., inability to register or receive updates).

Cloudflare and Logs

We use Cloudflare for security and performance. Cloudflare may add headers (e.g., `CF-IPCountry`) and maintain logs of DNS queries, network packets, HTTP requests, and network error reports. These logs help operate and secure the service. See Cloudflare’s privacy policy for details.

Data Recipients

Service providers processing data under contract (e.g., Cloudflare, email/form providers such as Formspree). We inform you of recipients upon request where feasible.

Security

We implement technical and organizational measures appropriate to the risk, including encryption in transit, access controls, and logging.

How to Exercise Your Rights

Contact us at privacy@machealthcheck.com. We may need to verify your identity before fulfilling requests.

Changes to This Policy

We may update this policy to reflect changes in our practices or legal requirements. We will post the updated version with an updated “Effective Date”.

Effective Date: 2025‑09‑23