BrightLab Logo

Privacy Policy

Your privacy is our top priority. Discover how we protect your data.

Back to Legal Information
Privacy Policy
Last updated: 22 May 2025

Table of Contents

  1. Introduction
  2. Information We Collect
  3. Log and Device Data
  4. Usage and Activity Data
  5. How We Use Your Information
  6. Data Sharing
  7. Data Storage and Security
  8. Children's Privacy
  9. Data Retention
  10. International Data Transfers
  11. Your Rights
  12. GDPR Compliance
  13. CCPA/CPRA Compliance
  14. Cookies and Tracking
  15. Subprocessors and Third Parties
  16. Changes to This Policy
  17. Contact

Introduction

Your privacy is important to us. At BrightLab B.V. ("BrightLab", "we", "our"), we are committed to respecting your privacy and complying with all applicable data protection laws in the jurisdictions where we operate. This Privacy Policy explains how we collect, use, disclose, and protect your personal information across our digital products, websites, mobile applications, and services (collectively, the "Services").

Personal information refers to data that identifies or relates to an identifiable individual. This includes, but is not limited to, names, contact information, device data, and user activity within our platforms.

This Privacy Policy does not apply to third-party websites or services we may link to. We recommend reviewing their policies separately.

Information We Collect

We collect two types of information:

1. Information you provide directly

Examples include:

  • • Registration details (e.g., name, email address)
  • • Support inquiries and feedback submissions
  • • Voluntary data submitted via forms, surveys, or profile customization

2. Information collected automatically

This includes:

  • • Device information (e.g., model, OS version)
  • • App or website usage metrics
  • • IP address and general location
  • • Error logs and performance data

Log and Device Data

Our systems may log:

  • • Browser/app version
  • • Pages viewed and time spent
  • • Crash reports and diagnostics
  • • Language and regional settings

Device data may include:

  • • Device identifiers
  • • System configuration
  • • Session settings and preferences

Usage and Activity Data

Depending on the BrightLab product in use, we may collect:

  • • Engagement metrics (e.g., time spent, interactions)
  • • Custom user-defined goals or settings
  • • Feature usage patterns
  • • Inputs provided through educational tools or gamified systems

How We Use Your Information

We use your information to:

  • • Deliver and maintain our Services
  • • Personalize and improve user experience
  • • Respond to support requests
  • • Conduct analytics and internal research
  • • Comply with legal requirements
  • • Notify users of updates or features (with opt-out options)

We never sell your personal data. Any sharing is limited to essential service providers operating under strict data processing agreements.

Data Sharing

Your data may be shared with:

  • • Third-party service providers (e.g., analytics, cloud storage)
  • • Legal authorities when required
  • • Affiliates and contractors under data protection terms

All partners must meet our security and confidentiality standards.

Data Storage and Security

Data is primarily stored on servers within the European Union. We apply industry-standard security measures, including:

  • • HTTPS encryption
  • • Access control protocols
  • • Regular vulnerability scanning

No system is 100% secure. Users are encouraged to use strong passwords and safeguard access to their accounts.

Children's Privacy

Some BrightLab products are designed for family use and may include features suitable for children under supervision. We do not knowingly collect data from children under 13 without verified parental consent. Parents or guardians manage child accounts.

Data Retention

We retain your data only as long as necessary to provide our services or comply with legal obligations. Upon account deletion, we erase or anonymize data within a reasonable timeframe, unless retention is required by law.

International Data Transfers

Data may be processed outside your country of residence, including outside the EU. We ensure appropriate safeguards, such as:

  • • EU-based data hosting
  • • Standard Contractual Clauses (SCCs)
  • • Data minimization principles

Your Rights

Depending on your jurisdiction, you may have the right to:

  • • Access your data
  • • Correct or update data
  • • Request deletion or anonymization
  • • Object to or restrict processing
  • • Withdraw consent at any time
  • • Receive data in a portable format
  • • File a complaint with a relevant authority

To exercise your rights, email info@brightlab.dev

GDPR Compliance (EU/EEA Residents)

  • • BrightLab acts as Data Controller.
  • • Legal bases include consent, contractual necessity, legal obligations, and legitimate interests.
  • • You may exercise rights under Articles 12–23 of the GDPR.
  • • Cross-border transfers are secured using SCCs or equivalent safeguards.

CCPA/CPRA Compliance (California Residents)

California residents have the right to:

  • • Know what personal data we collect
  • • Access or delete their data
  • • Opt out of data sharing (we do not sell data)
  • • Receive equal service regardless of privacy choices

Submit requests via info@brightlab.dev with "California Privacy Request" in the subject line.

Cookies and Tracking

BrightLab Services may use cookies or similar technologies for:

  • • Session tracking
  • • User preferences
  • • Usage analytics

Users can manage cookies via their browser or device settings.

Subprocessors and Third Parties

We may work with subprocessors including:

  • Hosting: DigitalOcean (EU)
  • Analytics: Amplitude
  • Error Tracking: Bugsnag
  • Customer Support: Crisp
  • Email Delivery: SendGrid

All subprocessors are contractually obligated to follow data protection standards.

Changes to This Policy

We may update this Privacy Policy to reflect legal or operational changes. Updates will be published on our website or communicated via our Services. Continued use indicates acceptance. If legally required, we will obtain renewed consent.

Contact

For privacy-related questions or requests:

Email: info@brightlab.dev

Company: BrightLab B.V.

Location: Westmolendijk 73, 2985 XJ Ridderkerk, The Netherlands

This policy is designed to align with international privacy regulations including the GDPR (EU), UK GDPR, and CCPA/CPRA (US).