ພາບລວມ
FreeBillGen ເປັນບໍລິການຟຣີໂດຍ MB Libranet (Vilnius, Lithuania) ທີ່ freebillgen.com.
GDPR Articles 13/14.
Data controller
MB Libranet (Vilnius, Lithuania). [email protected].
GDPR Art. 37 ບໍ່ຕ້ອງການ DPO.
ຂໍ້ມູນ
FreeBillGen freebillgen.com ໃຊ້:
- ບັນຊີ. ຊື່, ອີເມວ, bcrypt hash. Lawful basis: Performance of contract.
- ໃບແຈ້ງໜີ້ + ລູກຄ້າ. ຂໍ້ມູນທີ່ທ່ານປ້ອນ. Lawful basis: Performance of contract.
- Session/security cookies. Session + CSRF. Lawful basis: Strictly necessary.
- Server logs. IP, user-agent. Lawful basis: Legitimate interests.
- VIES audit log. VAT validation record. Lawful basis: Legal obligation.
ຂໍ້ມູນບາງສ່ວນເປັນລູກຄ້າ.
ບໍ່ຂາຍຂໍ້ມູນ.
Sub-processors
Sub-processors ນ້ອຍ.
SMTP2GO
mail-eu.smtp2go.com.
Cloudflare Turnstile
/login /register/.
bunny.net
fonts.bunny.net.
EU VIES
ec.europa.eu.
Hosting (in-house)
EU dedicated, mPDF.
ບໍ່ມີ Google, Meta, analytics, error reporting.
ການເກັບຂໍ້ມູນ
ບັນຊີ + ໃບແຈ້ງໜີ້ - ຫຼັງລຶບ 30 ມື້.
Server logs 30 ມື້. VIES 10 ປີ.
GDPR ສິດທິ
GDPR rights: access, rectify, erase, restrict, portability, object.
Lithuanian DPA (State Data Protection Inspectorate of Lithuania, VDAI).
Automated decision
ບໍ່ມີ automated decision-making.
ຄວາມປອດໄພ
ມາດຕະການ (Art. 32 GDPR):
- bcrypt; passkey.
- TOTP 2FA.
- CSRF.
- Parameterised.
- HTTPS/TLS.
- CSP.
- Audit log.
- Encrypted.
International transfer
EU ພາຍໃນ:
- Cloudflare Turnstile - US.
- SMTP2GO - New Zealand (adequacy).
ບໍ່ມີການໂອນຍ້າຍອື່ນໆ.
ເດັກ
ບໍ່ສຳລັບເດັກ < 16.
ການປ່ຽນແປງ
ການປ່ຽນແປງສຳຄັນ - "last updated".