Privacy Policy

Last Updated: July 9, 2025 Version: 2.0.1

This Privacy Policy explains how "eSKYDAS" (hereinafter – "we", "us", "our") handles your data through our website (www.eskydas.com) and the "eSKYDAS" mobile application. Your privacy is of utmost importance to us, and we are committed to protecting your personal data.

1. Who We Are

App Name: eSKYDAS
Website Address: www.eskydas.com
Purpose: Cybersecurity education, training, and services for residents of Lithuania.
Data Controller: The developer of the app and website.

2. What Data We Process and Why We Use It

2.1. Data Processed through the "eSKYDAS" Mobile Application

The "eSKYDAS" app is designed to maximize your privacy. All your data related to learning progress and app usage is stored ONLY on your device. We do not collect or transmit this data to our servers.

  • Your Learning Progress Data (essential for app functionality):

    • What we process: Your learning journey (completed modules, test results, achievements, learning statistics, security task status, simulation results).

    • Why we process it: For the app to function correctly, for you to track your progress, and to provide a personalized learning experience.

    • Where we store it: Only on your phone or tablet.

    • How long we store it: As long as the app is installed on your device or until you delete the data through the app's settings.

  • Anonymous Usage Data (Optional, with your consent):

    • What we process: With your explicit consent, the app may collect anonymous data about how you use it (e.g., which parts of the app you use most often, technical information about app errors).

    • Important to know: This data is stored ONLY on your device. We do not see or receive it. It is used solely for improving the app's performance on your device.

    • Why we process it: To improve the app and your experience.

    • Where we store it: Only on your device.

  • Data Sent to External Services (with your explicit consent):

    • The app may send data to external services only with your explicit, separate consent and only to check if your email or password has been compromised.

    • "Have I Been Pwned" Service:

      • Purpose: Allows you to check if your email address or password has been leaked online.

      • What we send: Your entered email address is sent to the "Have I Been Pwned" service. We never send your full password. Instead, we send only a special, anonymized, and truncated part of your password.

      • Why we send it: To provide you with a security check feature.

      • Where we store it: This data is processed on external service servers and is not stored on our systems.

      • Privacy Policy: You can review the "Have I Been Pwned" privacy policy here: https://haveibeenpwned.com/Privacy

      • Data Transfer Outside the EU: The "Have I Been Pwned" service operates outside the European Union. Data transfer occurs only with your consent and by applying appropriate safeguards.

2.2. Data Processed through the "eSKYDAS" Website (www.eskydas.com)

When you visit our website, we collect certain information to ensure its functionality, provide services, and improve your experience.

  • Device Information (automatically collected):

    • What we process: Information about your browser, IP address, time zone, and some cookies installed on your device. We also collect information about the individual web pages you view, what websites or search terms referred you to the site, and how you interact with the site.

    • Why we process it: To identify potential misuse, gather statistical information about website usage, and improve its performance. This information is not aggregated in a way that identifies a specific individual.

    • Legal Basis: Our legitimate interests in ensuring website security and functionality.

  • Personal Data (provided by you):

    • What we process: If you wish to use certain website features (e.g., contact us via a contact form, subscribe to a newsletter, or order future services), you may need to provide personal data, such as your email address, first name, last name, and phone number.

    • Why we process it: To respond to your inquiries, send newsletters, or fulfill service contracts.

    • Legal Basis: Your consent (by subscribing to a newsletter or filling out a form) or for the performance of a contract (by ordering services).

3. Data Storage and Security

3.1. Data Security in the App

  • Core Principle: All your app data is stored ONLY on your device. We do not collect this data on our servers.

  • Safeguards: The app uses secure technologies to store data directly on your phone or tablet. Data is encrypted at the device level. Your data is not accessible to other apps without your consent. When the app is uninstalled, all data stored within it is automatically deleted from your device.

  • App Security Measures: All entered data is validated to prevent errors. Passwords are checked in an anonymized form. The app securely handles errors to prevent any data leakage.

3.2. Data Security on the Website

  • Information you provide is stored on our computer servers in a controlled, secure environment, protected from unauthorized access, use, or disclosure.

  • We implement reasonable administrative, technical, and physical safeguards to protect against unauthorized access, use, modification, and disclosure of personal data.

  • However, no data transmission over the Internet or wireless network can be guaranteed to be 100% secure.

4. Data Sharing

We do not share your personal data with third parties, except in the following cases:

  • With Service Providers: We may share data with service providers who help us perform website or service functions (e.g., website analytics, email sending services, payment processing). These providers are obligated to maintain the confidentiality of your data.

  • As Required by Law: When required by law or legal process, such as in response to a subpoena or similar legal process, and when we believe in good faith that disclosure is necessary to protect our rights, your safety or the safety of others, investigate fraud, or respond to a government request.

5. Your Rights (for EU Residents under GDPR)

If you are a resident of the European Union, you have the following rights regarding your personal data:

  • Right to Information: To know what data is processed and how it is used.

  • Right to Access: To obtain a copy of your data. In the app, you can view data in the progress section and export it in settings. For website data, you can contact us.

  • Right to Rectification: To correct inaccurate or incomplete data.

  • Right to Erasure (Right to be Forgotten): To delete all your data. In the app, you can do this via settings. For website data, please contact us.

  • Right to Data Portability: To export data in JSON format.

  • Right to Object: To withdraw consent for data processing at any time. In the app, you can do this in privacy settings.

  • Right to Restriction of Processing: To restrict the processing of certain data.

How to exercise your rights: For data stored in the app, you can use the functions available in the app's settings. For data processed on the website or any other questions, please contact us using the contact information provided below.

6. Links to Other Websites

Our website may contain links to other websites that are not owned or controlled by us. Please be aware that we are not responsible for the privacy practices of such other websites or third parties. We encourage you to be aware when you leave our website and to read the privacy statements of each website that may collect personal information.

7. Children's Privacy

  • The "eSKYDAS" app is not intended for children under 16 years of age.

  • We do not knowingly collect personal data from children.

  • If we become aware that we have inadvertently collected data from a child under 16, we will delete it immediately.

  • Parents or legal guardians with questions about their child's data can contact us.

8. Data Breach Notification

  • In the App: Since all your app data is stored only on your device and is not collected on our servers, data breaches related to our systems are not possible. The security of your device and the data stored on it depends on you. We recommend always using device lock (PIN, fingerprint, face recognition) and regularly updating your operating system.

  • On the Website: If a data breach occurs involving personal data collected on the website, we will take all necessary steps to inform you and the responsible authorities, as required by law.

9. Changes to this Privacy Policy

We may update this Privacy Policy from time to time.

  • We will inform you about significant changes that may affect your privacy directly in the app and/or by publishing a new Privacy Policy on our website.

  • Minor changes will be updated in this document.

  • You can always check the "Version" number and "Last Updated" date at the top of the document.

  • By continuing to use our app or website after changes, you agree to the updated Privacy Policy.

10. Contact Us

If you have any questions about this Privacy Policy, wish to exercise your rights, or report issues:

Data Controller:
Developer of the App and Website
Email: info@eskydas.com

Complaints:
If you believe we have violated your data protection rights, you can contact:
State Data Protection Inspectorate
Email: ada@ada.lt
Website: https://vdai.lrv.lt

This document has been prepared in accordance with the requirements of the European Union General Data Protection Regulation (GDPR) and the laws of the Republic of Lithuania.

Kontaktai

info@eskydas.com

© eSKYDAS 2025. All rights reserved.

Privatumo Politika

DUK