Privacy Policy

1. Who We Are

UAB SmartOn Systems is a provider of cloud-based business management software, including POS systems, ERP, and related services. Our website: https://smarton.app. Data controller contact: [email protected].

2. What Data We Collect

We collect and process the following categories of personal information:

• Contact information (name, email address, phone number) provided via contact forms or account registration;
• Business information (company name, business type, address);
• Usage data (pages you visit, timestamps, IP address, browser type);
• Transaction data processed through the SmartOn platform on behalf of your business.

3. How We Use Your Data

We use your personal data for the following purposes:

• Providing and managing SmartOn services under our agreement;
• Responding to your enquiries and providing customer support;
• Sending important service-related communications (e.g., invoices, change notices);
• Improving our products and services based on usage analytics;
• Complying with legal obligations under Lithuanian and EU law.

4. Legal Bases (GDPR)

We process your data on the following legal bases:

• Contract performance — where processing is necessary to provide the services you have requested;
• Legitimate interests — for service improvement, security, and fraud prevention;
• Consent — for marketing communications, which you may withdraw at any time;
• Legal obligation — where processing is required to comply with applicable law.

5. Cookies and Analytics

Our website uses cookies and similar technologies to:

• Ensure the website functions correctly (essential cookies);
• Analyse visitor traffic using Google Analytics 4 (analytics cookies);
• Record anonymised session recordings using Microsoft Clarity.

You may control or disable cookies through your browser settings. Some website features may not function without certain cookies.

6. Data Sharing

We do not sell or rent your personal data. We may share data with:

• Service providers who help us deliver our services (e.g., hosting providers, email services), bound to protect your data;
• Payment partners when processing payments through the platform;
• Regulatory authorities where required by law.

7. Data Retention

We retain personal data for as long as necessary to fulfil the purposes for which it was collected — typically for the duration of your account plus 3 years. Financial records are retained for 10 years in accordance with Lithuanian accounting legislation.

8. Your Rights

Under GDPR you have the following rights:

• Right to access your personal data;
• Right to rectify inaccurate data;
• Right to erasure (right to be forgotten);
• Right to restrict processing;
• Right to data portability;
• Right to object to processing.

To exercise these rights, contact us at [email protected]. We will respond within 30 days. You also have the right to lodge a complaint with your local data protection authority.

9. Data Security

We implement appropriate technical and organisational measures to protect your data against unauthorised access, loss, or destruction. These include encryption, access controls, and regular security reviews.

10. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes by email or by displaying a notice on the platform. Continued use of the services after the effective date constitutes acceptance of the revised policy.

11. Contact

For questions about this policy or your data, contact us: