Privacy Policy

Privacy Policy

Effective from 17.January.2025

Welcome to Plain & Simple Solution!

This Privacy Policy has been developed taking into account Our awareness of the importance and significance of Your Personal Data. Maintaining Your privacy is Our top priority. The main purpose of this Policy is to help You understand how We Process and protect Your Personal Data when You use the Website.

We strive to ensure that You can use the Website with confidence that Your Personal Data is properly protected and Processed in accordance with legal requirements and standards. We promise to treat any Personal Data You provide to Us with the utmost care and strive to ensure that it is stored securely. 

This Privacy Policy is developed and operates taking into account the General Data Protection Regulation (GDPR), as well as other regulations and practices on the protection of Personal Data.

In order to make the most of Our Website, please carefully read this Policy before using the Website. 

By using the Website, providing any of Your Personal Data to Us, and agreeing to the terms of the Privacy Policy, You confirm that:

(I) You have read, understood, and agree to this Policy;

(II) You have reached the age from which the legislation of the country of Your stay allows You to give Consent to the Processing of Your Personal Data. In any case, in order to use the Website, You must be at least 16 years old (at least 13 years old in certain regions) or one of Your legal representatives or guardians must have read and agreed to the terms of the Privacy Policy on behalf of You.

If You do not agree with these Privacy Policy, or any part thereof, please refrain from using the Website.

1. For convenience, We use the following terms:

“Privacy Policy” – this document, which is available at the following link: https://plainandsimplesolution.com/privacy-policy/#website (hereinafter — “Privacy Policy”, “Policy”).

“Company” – DUBYCH SINGLE MEMBER P.C., legal address: Argous 107, 21100, Nafplio, Peloponnissos, Greece, individual tax identification number (AFM): 802428980 (hereinafter referred to as “Company”, “We”, “Us”, “Our”).

“Website” – the digital environment, in particular the website, available at the link https://plainandsimplesolution.com/, which is managed by the Company, where Users can interact with the Content posted on the Website (hereinafter referred to as “Website”, “Plain & Simple Solution”).

“Product” – various programs and applications developed by the Company, as listed on the Website. These may be available for download through widely recognized platforms such as Google Play and App Store, as well as other distribution channels specified by the Company on Our Website.

“Features” – functional capabilities, features, and offerings provided by the Company through the Website.

“Content” – any materials, information, media, or intellectual property presented on the Website. This includes, but is not limited to, text, images, graphics, videos, audio files, and any content posted on the Website.

“Personal Data” — any information relating to a natural person who is identified or can be identified using this information (hereinafter — “Personal Data”, “Data”).

“Processing of Personal Data” – any operation or set of operations which is performed on Personal Data or on sets of Personal Data, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction (hereinafter — “Process”, “Processing”, “Processing of Personal Data”).

“Subject of Personal Data” – a person who accesses, visits, uses, or interacts with the Website within the scope of its available functionality and in accordance with the documentation contained on the Website (hereinafter — “Subject of Personal Data”, “User”, “You”, “Your”).

“Consent” — any freely given, specific, informed, and unequivocal indication of the Subject of Personal Data wishes by which he or she, through clear affirmative actions, signifies agreement to the Processing of his or her Personal Data.

“Third Party” — a legal person, public authority, agency, or body other than the Subject of Personal Data, and persons who is authorized to Process Personal Data, other services which are integrated into the Website and individuals who can receive User lists or other information from the Website.

“Controller” – the Company, which determines the purposes and means of Processing of Personal Data, establishes the composition of this Personal Data and the procedures for its Processing.

“Processor” – the Company or other persons that are authorized by the Controller or by law to Process Personal Data on behalf of the Controller.

“General Data Protection Regulation” – European Parliament and Council Regulation № 2016/679 as of 27.04.2016 On the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter – “GDPR”).

“CCPA” – California, USA Consumer Privacy Act of 2018.

“CalOPPA” – The Internet Privacy Protection Act of 2003 of the State of California, USA.

2. Personal Data We Process when You use the Website

2.1. Personal Data You provide to Us personally:

When You choose to interact with the Website, We may collect and Process certain Personal Data that You provide to Us voluntarily. This occurs exclusively when You contact Us through the contact form available on the Website, and it is done entirely at Your discretion. The information You share with Us is provided freely, and We respect Your choice to engage with Us in this manner.

By reaching out to Us through the contact form, You may voluntarily disclose basic identifying details that allow Us to respond to Your inquiry promptly and effectively. Additionally, You will be required to provide Your contact information, in particular Your email address, which allows Us to identify You and communicate directly with You to resolve Your issue.

In addition to contact information, We may collect the content of the messages You send to Us. These messages might include details about Your request, feedback on the Website’s functionality, or any other information and Data You choose to share with Us. The information You provide in Your messages helps Us understand Your needs, tailor Our responses, and provide You with the most relevant and helpful information or assistance possible.

We value the information You share with Us and treat it with care, ensuring that it is only used for legitimate purposes. By sharing information in Your request, You help Us provide personalized support and ensure clear communication, which helps build a positive and effective relationship between You and the Company.

We collect only the Personal Data that You knowingly and voluntarily provide as the Subject of Personal Data. This includes information shared in messages sent to Us via the email provided on the Website or in this Policy, as well as through the contact form on the Website. The Processing of Your Personal Data occurs based on the legal basis specified in section 5 of the Policy, and in accordance with the purposes of Processing set forth herein.

2.2. Personal Data We Process automatically

We do not engage in the automatic collection of Your Personal Data on Our own. However, certain Data may be automatically Processed by Our third-party service provider, particularly Google Analytics. 

The list of Personal Data that We may automatically receive from You through Google Analytics when using Our Website may include:

• IP and MAC address of Your device, connecting software,
• unique device identifier (UDID),
• mobile equipment identifier (MEID),
• traffic Data,
• geolocation,
• server logs, login history, identity confirmation, page views, length of visit and Website navigation paths,
• operating system and browser type, browser language,
• device attributes, such as device model and screen dimensions, CPU core, storage size, SDK version, OS and app versions, and app package name,
• networking information, such as the name of the mobile operator or ISP, language, time zone,
• and information which is collected through Cookies, web-beacons and other tracking technologies.

It is important to emphasize that Google Analytics takes measures to anonymize Your Data in order to comply with privacy regulations, including the General Data Protection Regulation (GDPR). This ensures that Your Personal Data is processed in a way that respects Your privacy and aligns with the highest standards of data protection, and upholds the principles of transparency and security.

3. Children’s Privacy

Ensuring the privacy and safety of children online is a top priority for Us. We are committed to complying with the privacy laws, particularly concerning the protection of children’s Personal Data.

We knowingly do not Process the Personal Data of children under the age of 13 (applies to Users who are residents of countries with a reduced minimum age for Personal Data Processing) and children under 16, and We also do not offer them to use the Website. 

If We become aware that a person who has not reached the age from which it is permitted to Process their Personal Data has provided Us with their Personal Data without the Consent of a legal representative, guardian, or other person authorized to provide such Consent, We will take all necessary measures to delete such Data. If You believe We might have any information from or about a child under 16 (or 13 if applicable), please contact Us at info@plainandsimplesolution.com.  

We disclaim any responsibility or liability in the event that a person under the legal age for Personal Data Processing begins using the Website and provides their Personal Data without obtaining the necessary Consent from their legal representatives. 

It is the responsibility of such persons or their guardians to ensure that the appropriate Consent is obtained prior to using the Website. You must be of legal age to be in line with Our Privacy Policy, as well as with Our Terms of use.

4. Purposes of Personal Data Processing

We Process the Personal Data collected concerning You only for the specific and limited purposes specified below:

• keep things up & running (i.e., operate, deliver, and maintain Our Features): We use the Data We collect in order to operate, deliver, and maintain Our Features. We also use some of Your Personal Data to help keep Our Website up to date, for example, to make sure that Our Features work with the latest operating systems and devices.
• management and improvement of the Website: All the time, We try to improve the functions that support the operation of the Website. This allows Users to use the Website smoothly, quickly and efficiently,
• analytics: In order to enhance and refine Our Features, it is essential for Us to understand User trends, preferences, and the demand for particular functionalities,

• marketing: To provide You with updates, offers, and relevant information about Our Products and Website’s Features, tailored to Your interests and preferences, ensuring that You have access to solutions designed to enhance Your daily life,

• enhance the safety and security of Our Features: We may use Your Personal Data to enhance the safety and security of Our Features, and prevent fraud or other unauthorized or illegal activity. We monitor failures of the Website and create software solutions to eliminate them, detect violations of this Policy, and monitor the use, abuse and potential abuse of the Website,
• User support: Personal Data Processing is utilized for providing customer support Features, including responding to inquiries, resolving issues, and facilitating communication between Users and Our support team,
• enforce Our Terms of use: We use the Data We collect to enforce Our Terms of use, Policy and the law. This includes enforcing, investigating, and reporting conduct that violates Our Terms of use, Policy, or the law, responding to requests from law enforcement, and complying with legal requirements. In some cases, We may also use or share Your Personal Data to cooperate with law enforcement requests, escalate safety issues to law enforcement, industry partners, or others, or comply with Our legal obligations.

We do not use Your Personal Data for any purposes other than those specified in the Policy. Any further Processing of Your Personal Data will be carried out only with Your express Consent or in accordance with the requirements of the law.

5. Legal basis for Processing Your Personal Data

To Process Your Personal Data, We rely on the following lawful bases:

• performance of the contract — for the Processing of Personal Data necessary for the negotiation, conclusion, and performance of a contract (mainly, the Terms of use) with You,
• legitimate interest — for the Processing necessary for the development of Our Features, taking into consideration Your interests, rights, and expectations,
• legal obligation — for the Processing as required by applicable laws (for example, to comply with tax or KYC/AML regulations) or if requested by a law enforcement agency, court, supervisory authority, or another state-authorized public body,
• Consent — where You have provided explicit Consent for the Processing of Your Personal Data for specific purposes.

It’s important to note that We only Process Your Personal Data on lawful bases and will ensure that the Processing is fair, transparent, and proportionate to the purposes for which the Data is Processed. We will also respect Your rights and freedoms in accordance with applicable privacy laws.

6. Storage of Personal Data

6.1. How long do We keep Your Personal Data?

We will store Your Personal Data for the period necessary to fulfill the purposes set forth in the Policy. When determining the duration of such periods, We first decide whether We need to collect Personal Data at all, and, if such a need really exists, We keep it only for the period necessary to realize the purposes of collection, or until the moment You make a corresponding request to delete Your Personal Data.

The specific retention period for Your Personal Data may vary depending on factors such as the type of Personal Data, the purposes for which it was collected, and legal requirements. 

When We have no ongoing legitimate business need to Process Your Personal Data, We will either delete or anonymize such Data, or, if this is not possible (for example, because Your Personal Data has been stored in backup archives), then We will securely store Your Personal Data and isolate it from any further Processing until deletion is possible.

For analytics files and Cookies, they will be kept according to the policy of Our analytical system, in particular:

• Cookies used by Google Analytics may last for up to 2 (two) years, depending on the specific type. For more detailed information, please review Google’s policy at: https://policies.google.com/technologies/cookies.

6.2. Where do We store Your Personal Data?

We adhere to generally accepted industry standards to protect Your Personal Data both during transmission and after receipt.

When You provide Your Data through the contact form on Our Website, We securely store it in a database located on Our server. Access to this server is restricted to authorized personnel only, specifically to the administrator who operates under the terms of a Non-Disclosure Agreement (NDA), ensuring the confidentiality and protection of Your Data.

We take the protection of Your Personal Data very seriously. We take all commercially reasonable measures to prevent unauthorized access to Your Personal Data and those data obtained in the process of using the Website. Not only that, but We strive to protect Your Personal Data by various means in order to preserve its confidentiality and integrity, prevent unauthorized use or disclosure of Your Personal Data, and protect Your Personal Data from loss, misuse, disclosure, alteration, and / or destruction. 

Please note that no method of Data transferring over the Internet can provide a 100% guarantee of preventing information leakage. Any transmission is at Your own risk.

6.3. Security of Your Personal Data

We have put in place appropriate security measures to prevent Your Personal Data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. 

We apply the following security measures appropriate to the possible risks:

For email transmission, We utilize the WP-Mail-SMTP plugin (https://wpmailsmtp.com/). This plugin is connected to Our email account within the operational workspace of plainandsimplesolution, enabling the secure handling and delivery of messages through Our dedicated email system. By employing this setup, We ensure that Your Data remains within Our control throughout the entire process, reinforcing both security and privacy.

In the event of a Personal Data breach, We are committed to responding swiftly and in accordance with applicable Data protection laws, including the GDPR and relevant local regulations, by promptly assessing the breach, notifying the relevant supervisory authority, within 72 (seventy-two) hours of becoming aware of the breach, providing all necessary details. Unless the Personal Data breach is unlikely to result in a risk to the rights and freedoms of natural persons where the notification is not made within 72 (seventy-two) hours, it could be accompanied by reasons for the delay.

By adhering to these measures, We reaffirm Our commitment to maintaining the confidentiality, integrity, and availability of Your Personal Data at all times.

7. Do We transfer Your Personal Data to third parties?

We may engage Our employees to assist Us in providing support and managing the requests You submit to Us through the contact form on Our Website. These collaborations ensure that Your inquiries are addressed promptly and efficiently while maintaining the highest standards of data protection and confidentiality. It is important to note that employees do not have access to any of Our databases that may contain Your Data. You may request a list of such third parties from Us at any time.

We do not transfer Your Personal Data to third parties except when it is necessary to fulfill a legal obligation, upon Your explicit request, or in other circumstances outlined in this Policy. We understand the importance of protecting Your Personal Data, which You voluntarily and knowingly provide to Us, and We take all possible measures to ensure its security.

Also, We work with marketing and analytics service, specifically Google Analytics. To find out how Google Processes Your Personal Data, visit the link: https://policies.google.com/privacy.

We ensure that access to Your Personal Data is provided only to those third-party companies and individuals that can guarantee the highest level of data protection, confidentiality, and security, and who will use Your Personal Data solely for purposes consistent with this Policy and in compliance with applicable data protection laws. We limit the Data provided to such service providers to that reasonably necessary for them to perform their functions (a need-to-know basis).

Authorities. We reserve the right to disclose and / or report any Personal Data of the User, if this is required by any law of the Greece or the European Union or another normative legal act, or a confirmed legal requirement of state authority and / or local authorities, for the purpose of compliance with the requirements of the laws of Greece and the legislation of the European Union, protection of the integrity of the Website, to fulfill the requests of Users, state authorities and / or local authorities, or for the purpose of facilitating any investigation by law enforcement agencies or an investigation aimed at guaranteeing public (national) security. In some cases, We may also provide the User’s Personal Data to the authorities of the European Union (both national and supranational) and the authorities of other countries, if such provision of Personal Data is required by law, or in the event of an official request from such an authority as part of a criminal investigation.

8. Cross-border transfer of Personal Data

In the course of Our business operations, We may transfer Your Personal Data to third parties, including, but not limited to service providers and partners, located in countries outside of Your country of residence, including countries outside the European Union (EU), European Economic Area (EEA), Switzerland, and the United Kingdom of Great Britain and Northern Ireland, or which Process Personal Data there. This may occur when We use third-party services like Google Analytics, which may store and Process Personal Data on servers located in various jurisdictions.

Please be aware that when Your Personal Data is transferred to third countries, such countries may have Data protection laws that differ from, and in some cases provide less protection than, the Data protection laws in Your country. Nevertheless, We are committed to ensuring that any such transfer of Your Personal Data is conducted in full compliance with applicable Data protection regulations, including but not limited to the GDPR. Specifically, We use one of the following safeguards:

• Transfer based on adequacy decisions. Whenever possible, We rely on adequacy decisions issued by relevant authorities to transfer Personal Data to countries or international organizations that provide an adequate level of protection.
  • • European Commission: for transfers from the EU, adequacy decisions are adopted by the European Commission. You can access the full list of countries and international organizations that have been deemed adequate by the EC on their official website. 
    • UK Secretary of State: for transfers from the UK, adequacy decisions are adopted by the UK Secretary of State. The full list of countries with adequacy status is available on the website of the Information Commissioner’s Office (ICO). 
    • Federal Council (Switzerland): adequacy decisions for transfers from Switzerland are listed in Annex 1 of the Data Protection Ordinance (O-FADP), which details states, territories, or sectors with adequate data protection.
    • Additionally, We may transfer Personal Data to service providers in the United States that participate in the EU-U.S. Data Privacy Framework, which is subject to an adequacy decision by the European Commission. This also includes the UK Extension to the EU-U.S. Data Privacy Framework and the Swiss-U.S. Data Privacy Framework. These frameworks provide specific safeguards for transfers of Personal Data between the EU, UK, Switzerland, and the U.S. For more information on the Data Privacy Framework (DPF) program, please visit: https://www.dataprivacyframework.gov/.
• Transfer in the absence of adequacy decision. In cases where Personal Data is transferred to a country that has not been deemed to provide an adequate level of protection by the European Commission or other legal authorities, We will implement appropriate safeguards to protect Your Data, including but not limited to: Standard Contractual Clauses (SCCs), Binding Corporate Rules (BCRs), explicit Consent, other legal mechanisms.

• Third party whose services We use. We collaborate with the third-party service provider Google LLC to facilitate analytics and marketing activities. This may involve the cross-border transfer of Your Personal Data to ensure the effective operation of these services. Google LLC is certified under the EU-U.S., UK-U.S., and Swiss-U.S. Data Privacy Frameworks, which establish comprehensive safeguards for the processing and transfer of Personal Data between regions. 

By using Our Website, You Consent to the transfer, storage, and Processing of Your Personal Data outside Your country of residence, including to countries that may have different data protection laws than Your home jurisdiction.

We will take all necessary measures to ensure that Your Personal Data is treated securely and in accordance with this Policy.

9. How can You exercise Your right to privacy?

You, as a Subject of Personal Data, have the right to interact with Your Data directly or through a request to Us. This section describes these rights and how You can exercise them:

• right to access: You can request an explanation of the Processing of Your Personal Data, as well as details regarding the Processing activities such as the manner in which the Personal Data are Processed, the purpose for which the Processing is done, the recipients or the categories of Personal Data recipients, etc.,
• right to rectification: You have the right to obtain the correction, without justified delay, by the Company of inaccurate / unjustified Personal Data, as well as the completion of incomplete Personal Data,
• right to erasure (“right to be forgotten”): You can send Us a request to delete Your Personal Data from Our systems and / or databases. We will remove them unless otherwise provided by law,
• right to restrict the Processing: You may partially or completely prohibit Us from Processing Your Personal Data,
• right to Data portability: You can request to receive all the Personal Data You provided to Us in a structured way, commonly used and in an easy-to-read format, as well as the right for this Data to be transmitted by the Company to another Controller, to the extent that the conditions provided for by law are met, 
• right to object: You may object to the Processing of Your Personal Data,
• right not to be subject to an automated individual decision: the right not to be the subject of a decision taken solely on the basis of automated Processing activities, including the creation of profiles, which produce legal effects concerning the Subject of Personal Data or similarly affect him / her in a significant measure,
• right to withdraw Consent: You can withdraw Your Consent at any time,
• right to file a complaint: If Your request was not satisfied, You could file a complaint to the regulatory body of the National Supervisory Authority for the Processing of Personal Data or competent courts, to the extent You deem necessary.

To exercise Your rights, please contact Us using the following email address: info@plainandsimplesolution.com. Please note that before providing the information according to Your request, We may ask You to provide additional Data to confirm Your identity. This is a security measure to ensure that Personal Data is not disclosed to any person who has no right to receive it.
In the event that We receive Your request, We will endeavor to respond as soon as possible, but no later than 30 (thirty) calendar days from the date of receipt of the request.

10. Cookies

10.1. What are Cookies?

Cookies are small pieces of data (text files) or parts of program code that contain a unique User ID and information about how You use the Website. Cookies are transmitted through a server and stored on Your device when You visit and / or use the Website. They are stored on Your device when You use the Website. Cookies are transmitted through a server and stored locally on Your device to help enhance Your experience and track usage patterns. These technologies are passive, meaning they do not contain harmful programs, viruses, or spyware and cannot access other information on Your device. 

A Cookie consists of 2 parts: the name and the content or value of the Cookie. Moreover, the duration of existence of a Cookie is determined. Data stored using these technologies can only be accessed by the Website or services that store it, which ensures Data consistency and privacy across visits. Cookies themselves do not require Personal Data to be used and, in most cases, do not personally identify Users. 

On the Website, Data may be stored temporarily (“session data”) or for a longer period (“persistent data”). Session data is erased when You close the application. “Persistent Cookies” remain on the User’s device for a certain period of time specified in the Cookies. They are activated every time the User visits the Website.

Cookies may also be used to collect anonymous statistics about the experience of visiting the Website. The data collected is not personally identifiable and is limited to the minimum information necessary to optimize the performance of the Website.

In order to obtain additional general information about Cookies, You can check out information about HTTP Cookies, which is available at the following link

10.2. Consent to the use of Cookies

Cookies are not strictly necessary for visiting and / or using the Website (except for the “strictly necessary” type of Cookies) and will be used by Us only after obtaining Your Consent to their use. Once You agree to Our use of Cookies in a separate notice about the use of Cookies, We will consider Your Consent to be obtained. 

When You have given Us Your Consent to use Cookies when visiting and / or using the Website, the Processing of the Data collected by Cookies is carried out in accordance with Art. 6(1)(a) GDPR, in accordance with which the Processing shall be lawful only if and to the extent that at least one of the following applies: the Subject of Personal Data has given Consent to the Processing of his or her Personal Data for one or more specific purposes. You can familiarize Yourself with the text of the GPDR by following the link: https://eur-lex.europa.eu/eli/reg/2016/679/oj.

You may certainly change Your Cookie settings on Your device at any time. For more information, please read section 10.6. “How You can manage Your Cookies settings”.

10.3. The types of Cookies We collect:

• strictly necessary Cookies. These are essential for the Website’s functionality and the use of its Features, especially those related to security. Without these Cookies, it is impossible to ensure the proper functioning of the Website. They allow Users to freely use the Website and access various available Features,

• functional. Functional cookies allow the Website to remember Your preferences and settings, improving the user experience, such as saving Your chosen language or region,

• marketing. Marketing cookies allow Us to display personalized advertisement related to Our Products based on Your interests and activity on the Website, as well as measure the effectiveness of advertising campaigns,

• analytics. Analytical cookies are used to collect Data on how Users use the Website. This information helps Us improve Website performance and understand which sections are most interesting to Users.

10.4. The purposes of collecting Cookies.

The Website uses Cookies for the following purposes:

• ensuring the proper functioning of the Website,
• ensuring the security of Users while they are on the Website,
• adjusting and enhancing Your interaction experience with the Website,
• obtaining standard analytics information,
• detecting errors and identifying their causes to improve Website performance,
• collecting information about the number of visits to the Website,
• tracking user clicks and generating statistics on Website usage.

We assure You that all Data collected through Cookies is used solely for the purposes stated in this Policy, and Cookies in no way are harmful to You or Your device, as they do not make any changes to its configuration.

10.5. Services used to collect Cookies

Cookies utilized on the Website may be retained on the servers of their respective providers for varying durations. The storage duration of each Cookie is contingent upon its specific function and purpose. For instance:

Google Analytics

Google Analytics helps Us analyze how Users interact with the Website, providing insights into usage patterns and traffic. Cookies collected by Google Analytics may be stored for up to 2 (two) years, depending on the purpose. Google LLC automatically manages storage regions based on User location. Additional information about Google Analytics’ cookie policies can be found here.

10.6. How You can manage Cookies settings?

You can manage and control the privacy Cookies settings through Your desktop browser’s privacy or security settings.

To manage tracking and Data collection on different desktop browsers:

• For Chrome: go to Settings > Privacy and Security > Cookies and other site data to set Your preferences for cookies and tracking data,
• For Firefox: navigate to Settings > Privacy & Security and adjust options under Cookies and Website Data to control Data collection,
• For Safari: go to Preferences > Privacy and configure cookie management settings according to Your preferences.

For additional information about managing Website tracking and Сookie settings, You can visit Your browser’s support page.

PLEASE NOTE THAT CHANGES TO THE TRACKING AND DATA COLLECTION SETTINGS MAY RESULT IN LIMITED FUNCTIONALITY OF THE WEBSITE, WHICH COULD IMPACT YOUR USER EXPERIENCE.

11. External links

We may post active links to third-party websites that are not maintained by the Company, such as platforms where You can download Our Products directly to Your device. If You visit such websites, You should review their privacy policies and operating principles. We are not responsible for the Personal Data Processing policies and practices of other companies. Any information You provide to such companies is subject to their company policies. 

12. Dispute Resolution

Before filing a claim in court in disputes arising from the relationship between the User and Us, it is mandatory to submit a claim (a written proposal for voluntary settlement of the dispute). The recipient of the claim shall, within 30 (thirty) calendar days from the date of receipt of the claim, notify the applicant of the claim in writing about the results of the consideration of the claim.

In case of failure to reach a compromise, the dispute will be referred to the competent court of Greece. The Policy is governed by and interpreted in accordance with the laws of Greece.

13. Changes to the Policy

We have the right to make changes to this Policy at any time and for any reason by posting a new version of the Policy at the above link. We strongly recommend that You check the Policy and the date of the last change from time to time to stay informed of the latest changes.

If You do not agree with any changes made to the Policy, You must stop using the Website, and You can also request the deletion of Your Personal Data.

If there are material changes to the Policy or the Website that affect Your data privacy rights, We will notify You by displaying information on the Website and, if necessary, ask for Your Consent.

14. Contact information

If You have any comments, doubts, or questions regarding this Policy, please contact Us at info@plainandsimplesolution.com.

We will try to answer You as soon as possible, but no longer than within 30 (thirty) calendar days.

15. Additional information for residents of the United States of America

This section applies only if You are a resident of certain U.S. states that have implemented state-level privacy laws. You, as a Subject of Personal Data, have some special privacy rights. To use them, please contact Us at info@plainandsimplesolution.com.

Please note! Depending on the state and legislative requirements, We have from 30 (thirty) to 60 (sixty) days to exercise Your request, with the right to postpone it for 30 (thirty) days more.

If Your complaint is not satisfied, You can file a complaint with the Federal Trade Commission.

Also, You may submit a complaint as follows:

• For Colorado residents, to the Colorado AG at https://coag.gov/file-complaint/
• For Connecticut residents, to the Connecticut AG at https://www.dir.ct.gov/ag/complaint/
• For Montana residents: https://dojmt.gov/consumer/
• For Oregon residents: https://justice.oregon.gov/consumercomplaints/
• For Texas residents: https://oag.my.salesforce-sites.com/CPDOnlineForm
• For Utah residents: https://attorneygeneral.utah.gov/contact/complaint-form/
• For Virginia residents, to the Virginia Attorney General at https://www.oag.state.va.us/consumercomplaintform
• For residents of Florida at https://www.myfloridalegal.com/consumer-protection/consumer-complaint-form 

Your rights vary depending on the laws that apply to You, but may include:

Access to specific Data and the right to transfer Data

With certain exceptions, if You are a resident of the state of California, USA, You have the right to request a copy of the Personal Data (defined as Personal information for the purposes of this section) We have collected about You in the 12 (twelve) months prior to Your request. After receiving Your request and establishing Your identity, We will inform You of:

• categories of Personal information that We have collected about You;
• Our business or commercial purpose for collecting such Personal information;
• categories of Third Parties with whom We share this Personal information.

Also, if You are an Oregon resident, Delaware (effective from 01/01/2025), Minnesota (effective from 31/07/2025), Maryland (effective from 01/10/2025) You also have the right to receive a list of the specific Third Parties to which We have disclosed Personal Data in Our capacity as a Controller, provided that We are not required to disclose its trade secrets.

To exercise Your rights, You may submit the request by sending an email to: info@plainandsimplesolution.com. We will ensure that Your request is processed in accordance with the relevant legal requirements. We may require specific information from You to help Us confirm Your identity and process Your request. You have the right not to be discriminated against for exercising any of Your rights.

Non-discrimination

We will not discriminate against You for exercising Your rights related to the Processing of Your Personal information, as well as Your right to refuse to receive Our Features in the future, or for refusing to receive further marketing, informational / advertising materials from Us.

Do not sell and share my Personal information

California residents have the right under the California Consumer Privacy Act as well as California Privacy Rights Act to opt out of the “sale” and “share” of their Personal information by a company governed by CCPA. In this context, the word “sale” means any “selling, renting, releasing, disclosing, disseminating, making available, transferring or otherwise communicating orally, in writing, or by electronic means, a consumer’s personal information by the business to another business or a third party, for monetary or other valuable consideration”. If You are a resident of other US states that give You rights to opt out of “sale”, “share” and / or use of Personal information for “targeted advertising”, You may also find this information helpful.

In exceptional cases, We may share Your Personal information as it is described in section 7. We do not and will not “sell” Your Personal information, but We recognize that the CCPA defines “Personal information” in such a way that providing access to identifiers associated with You may be considered a “sale”. In the event that these Website visitor identifiers and inferences may be identified as a sale under the CCPA, please use the “Do not sell and share my Personal information” setting on the Website’s home page. After receiving Your request through the “Do not sell and share my Personal information” setting, the Company makes a corresponding entry in its database of Personal information / Website Users, which indicates that the Company is aware of the impossibility of further selling Your Personal information. Also, if You would like to record Your preference that We will not “sell” and “share” Your Personal information in the future, please contact Us via info@plainandsimplesolution.com.

Finally, if Your browser supports it, You can use the Universal Opt-Out Mechanism mentioned below.

We generally do not collect information that is considered sensitive Personal information (as defined under the CCPA). In the limited circumstances that We do, such as the collection of Your username and password, We do not collect this information for the purpose of inferring characteristics about You.

Universal Opt-Out Mechanism

For residents of California, Colorado, Connecticut (effective from 01/01/2025), New Hampshire (effective from 01/01/2025), Texas (effective from 01/01/2025), Montana (effective from 01/01/2025), New Jersey (effective from 15/01/2025), Minnesota (effective from 31/07/2025) We recognize the Global Privacy Control (“GPC”) signal. If You are using a browser setting or plug-in that sends an opt-out preference signal to each website You visit, We will treat that as a valid request to opt out. To download and use a browser supporting the GPC browser signal, click here: https://globalprivacycontrol.org/orgs. If You choose to use the GPC signal, You will need to turn it on for each supported browser or browser extension You use.

COPPA (Children Online Privacy Protection Act)

When it comes to the collection of Personal information from children under 13, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, the nation’s consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online.

Fair Information Practices

The Fair Information Practices Principles form the backbone of privacy law in the United States, and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect Personal Data.

In order to be in line with Fair Information Practices We will take the following responsive action, should a data breach occur:

• We will notify the Users via Website notification within 7 (seven) business days.

We also agree to the individual redress principle, which requires that individuals have a right to pursue legally enforceable rights against data Collectors and Processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or a government agency to investigate and / or prosecute non-compliance by Data Processors.

16. Additional information for residents of Canada

This section applies only to residents of Canada. The Company Processes Personal Data in accordance with the Personal Information Protection and Electronic Documents Act, Personal Information Protection Act of British Columbia, Personal Information Protection Act of Alberta, and Act respecting the protection of Personal information in the private sector of Quebec have the right to interact with its data directly or through a request to Us regarding privacy issues.

This section describes the privacy rights of Canadian residents and how they can exercise them:

To exercise Your rights, contact Us at the following email address: info@plainandsimplesolution.com. We have 30 (thirty) calendar days to exercise Your request from the moment it is received on Our contact email. 

We have the right to extend the 30-day period for providing an answer to the request for another 30 (thirty) calendar days in the event that:

• failure to respond within the initial 30 (thirty) calendar days may be considered unreasonable interference with Our business;
• We need additional time for consultation;

• We need additional time to convert the Personal Data into a format that is easy to read.

You have the right to file a complaint with the Office of the Privacy Commissioner of Canada (OPC) if We do not respond to Your request within the first 30 (thirty) days.

In the event of a leak of Your Personal Data, We will promptly notify You of such a case and the degree of threat to Your Personal Data. In accordance with PIPEDA, We will immediately notify the Office of the Privacy Commissioner of Canada (OPC) and keep a record of the leak that has occurred.

We may disclose Personal Data to third-party service providers and related corporations located outside of Canada for the purposes described in the Policy. The Policy requires that the Company share Your Personal Data abroad in a manner that requires the highest standards of confidentiality and security when transferring Personal Data abroad. Please note that when Personal Data is transferred abroad, it may be accessed by courts, law enforcement agencies, and national security agencies. Before disclosing Personal Data, We will assess possible risks that may adversely affect the protection of Personal Data. We ensure the appropriate level of integrity and protection of Personal Data when transferred to Third Parties, which is required by the provisions of PIPEDA, by entering into agreements with such companies, which provide for the limitation of the use of Personal Data by the Third Party solely for the purposes provided for in the agreement.

Accountability

The Company is accountable for all Personal Data in Our possession or control. We have established policies and procedures aimed at protecting the Personal Data of Users, Our clients and personnel. We have appointed a Privacy Officer to oversee privacy issues for the Company. We have also educated Our personnel about the Privacy Policy and their role in protecting the Personal Data of Users, Our clients, and personnel. 

If You have questions about Our privacy practices, You are free to contact the Privacy Officer at info@plainandsimplesolution.com.

17. Additional information for residents of Australia

This section applies only to residents of Australia. The Company Processes Personal Data in accordance with the Australian Privacy Act 1988 (“APA”) and the Data Breach Notification Guidelines (2018).

Prior to Processing Your Personal Data, the Company will inform You of the Personal Data controller, the basis and purpose of the Processing, and whether Your Personal Data will be transferred outside of Australia. The Company will not Process “sensitive data” without Your prior Consent. 

The Company will not send You marketing emails without Your Consent. 

We may disclose Personal Data to third-party service providers and related corporations located outside of Australia for the purposes set out in this Policy. It is the Company’s policy that the Company shares Your Personal Data overseas in a manner that requires the strictest privacy and security standards while transporting Personal Data overseas.

In the event of a breach of Your Personal Data, We will promptly notify You of such a breach and the extent of the threat to Your Personal Data. In accordance with the APA, We will immediately notify the Office of the Australian Information Commissioner (OAIC) of such a breach.

To request information about what Personal Data We are Processing about You, please contact Us at info@plainandsimplesolution.com. 

18. Additional information for residents of Ukraine

The conditions of this section apply only to residents of Ukraine, which is contained in the Privacy Policy and relates to specific requirements, in accordance with the provisions of the legislation of Ukraine, in particular, the Law of Ukraine “On Personal Data Protection” №2297-VI dd. 01.06.2010. 

Each User’s personal non-proprietary rights regarding Personal Data are inalienable and inviolable. 

The User, resident of Ukraine, has the following rights in relation to the provided Personal Data:

• to know about the sources of collection, location of the provided Personal Data, purposes of their Processing, and location of the Company,
• to receive information about the conditions for providing access to Personal Data, in particular, information about Third Parties to whom Your Personal Data is transferred,
• to access his / her Personal Data,
• to receive, no later than 30 (thirty) calendar days from the date of receipt of the request, except in cases provided for by law, a response on whether his or her Personal Data is Processed, as well as to receive the content of such Personal Data,
• to submit a reasoned request to the Controller with an objection to the Processing of his / her Personal Data,
• to submit a reasoned request to change or destroy his / her Personal Data by the Company if this Data is Processed illegally or is unreliable,
• to protect his / her Personal Data from unlawful Processing and accidental loss, destruction, damage due to intentional concealment, failure to provide or untimely provision, as well as to protect against the provision of information that is inaccurate or discrediting the honor, dignity and business reputation of the User,
• to file complaints about the Processing of Personal Data to the Ukrainian Parliament Commissioner for Human Rights or to the court,
• to apply legal remedies in case of violation of the legislation on the protection of Personal Data,
• to make warnings regarding the restriction of the right to Process his / her Personal Data when giving Consent,
• if We Process Your Personal Data on the basis of the User’s prior Consent to this Processing – to withdraw the Consent to the Processing of Personal Data, after which such Processing will cease,
• if the Personal Data is exclusively Processed automatically, including profiling, which may have legal consequences for the User – to receive protection from an automated decision.

In order to exercise any of the above rights, the User shall contact the Company in writing at the following email address: info@plainandsimplesolution.com. 

The Subject of Personal Data is obliged to submit a request for access to Personal Data to the Controller, in accordance with the requirements provided for in part 3 of article 16 of the Law of Ukraine “On Personal Data Protection” №2297-VI dd. 01.06.2010. The period for examining the request for its satisfaction will not exceed 10 (ten) business days from the date of its receipt. During this period, the Controller will inform the User submitting the request that the request will be granted, or the relevant Personal Data will not be provided, indicating the grounds specified in the relevant regulatory legal act. The request shall be satisfied within 30 (thirty) calendar days from the date of its receipt, unless otherwise provided by law.

The Controller will notify the Ukrainian Parliament Commissioner for Human Rights of the Processing of Personal Data that poses a particular risk to the rights and freedoms of Personal Data Subjects within 30 (thirty) business days from the date of commencement of such processing.

Do Not Sell or Share My Personal Information

This form is intended for California residents to exercise their privacy rights. To ensure the security of your information, we may require additional details for verification. We will process requests in compliance with applicable laws and within the legally required timeframe. If you need to submit multiple requests, please complete a separate form for each.

Please visit our Privacy Policy and California Notice for more information on our privacy practices for our customers.

Privacy Policy

Effective from 09.May.2025

Welcome to Family Errands!

This Privacy Policy has been developed taking into account Our awareness of the importance and significance of Your Personal Data. Maintaining Your privacy is Our top priority. The main purpose of this Policy is to help You understand how We Process and protect Your Personal Data when You use the Application.

We strive to ensure that You can use the Application with confidence that Your Personal Data is properly protected and Processed in accordance with legal requirements and standards. We promise to treat any Personal Data You provide to Us with the utmost care and strive to ensure that it is stored securely.

This Privacy Policy is developed and operates taking into account the General Data Protection Regulation (GDPR), as well as other regulations and practices on the protection of Personal Data.

In order to make the most of Our Application, please carefully read this Policy before using the Application. 

By using the Application, providing any of Your Personal Data to Us, and agreeing to the terms of the Privacy Policy, You confirm that:

(I) You have read, understood, and agree to this Policy;

(II) You have reached the age from which the legislation of the country of Your stay allows You to give Consent to the Processing of Your Personal Data. In any case, in order to use the Application, You must be at least 16 years old (at least 13 years old in certain regions) or one of Your legal representatives or guardians must have read and agreed to the terms of the Privacy Policy on behalf of You.

If You do not agree with these Privacy Policy, or any part thereof, please refrain from using the Application.

1. For Your convenience, We use the following terms:

“Privacy Policy” – this document, which is available at the following link: https://plainandsimplesolution.com/privacy-policy/#Family_Errands (hereinafter — “Privacy Policy”, “Policy”).

“Company” – DUBYCH SINGLE MEMBER P.C., legal address: Argous 107, 21100, Nafplio, Peloponnissos, Greece, individual tax identification number (AFM): 802428980 (hereinafter referred to as “Company”, “We”, “Us”, “Our”).

“Application” – product developed by the Company, specifically the application “Family Errands”, accessible to download on Google Play at the following link: https://play.google.com/store/apps/details?id=com.plainandsimplesolution.familyerrands (hereinafter referred to as “Application” “Family Errands”).

“User” – any individual who creates an Account through the Application, whether as the Head of the Family or as a Family member, who accesses, visits, uses, or interacts with the Application within the scope of its available functionality and in accordance with the documentation contained on the Application (hereinafter — “Subject of Personal Data”, “User”, “You”, “Your”).

“Head of the Family” – a User who creates an Account and subscribes to the Application and holds administrative privileges of his / her Family. This includes generating unique codes to invite individuals to join his / her Family as Family members.

“Family member” – a User who creates an Account and joins an existing Family using a unique code provided to him / her by the Head of the Family.

“Family” – a group of individuals created within the Application by the Head of the Family, consisting of up to 5 (five) Users, including the Head of the Family and up to 4 (four) Family members.

“Account” – an electronic profile accessible to the User through the Application, identified through Google. The Account allows the User to utilize the Features available on the Application.

“Features” – functional capabilities, features, and offerings provided by the Company through the Application.

“Content” – any materials, information, media, or intellectual property presented on the Application. This includes, but is not limited to, text, images, graphics, videos, audio files, and any content posted on the Application.

“Personal Data” — any information relating to a natural person who is identified or can be identified using this information (hereinafter — “Personal Data”, “Data”).

“Processing of Personal Data” – any operation or set of operations which is performed on Personal Data or on sets of Personal Data, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, a                               lignment or combination, restriction, erasure or destruction (hereinafter — “Process”, “Processing”, “Processing of Personal Data”).

“Consent” — any freely given, specific, informed, and unequivocal indication of the Subject of Personal Data wishes by which he or she, through clear affirmative actions, signifies agreement to the Processing of his or her Personal Data.

“Third Party” — a legal person, public authority, agency, or body other than the Subject of Personal Data, and persons who is authorized to Process Personal Data, other services which are integrated into the Application and individuals who can receive User lists or other information from the Application.

“Controller” – the Company, which determines the purposes and means of Processing of Personal Data, establishes the composition of this Personal Data and the procedures for its Processing.

“Processor” – the Company or other persons that are authorized by the Controller or by law to Process Personal Data on behalf of the Controller.

“Cookies” — files that are downloaded to the User’s device when the User utilizes the Application. 

“General Data Protection Regulation” – European Parliament and Council Regulation № 2016/679 as of 27.04.2016 On the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter – “GDPR”).

“CCPA” – California, USA Consumer Privacy Act of 2018.

“CalOPPA” – The Internet Privacy Protection Act of 2003 of the State of California, USA.

2. Personal Data We Process when You use the Application

2.1. Personal Data You provide to Us personally:

When You first download and open the Application, You will be prompted to review and confirm Your agreement with this Privacy Policy and the Terms of use. This essential step ensures transparency and helps You understand how We handle Your Personal Data and the rules governing the use of the Application. Additionally, You will be presented with a window for configuring Your Cookie preferences. For further details, please refer to section 10, which outlines the specific types of Cookies we use, and their purpose

During this step, You will also have the option to check a box indicating whether You wish to receive marketing messages from Us. If selected, We may use the email address linked to Your Google account to share updates, special offers, and promotions. For managing Our marketing communications, We use Freshmarketer — a third-party platform that will also have access to the following Data solely for the purpose of delivering these messages on Our behalf and in accordance with applicable privacy standards:

• Your name;
• Your email address;
• Your expressed preference regarding marketing communications (opt-in status);
• the language selected within the Application, in order to ensure communications are provided in the appropriate language.

If You have also consented to the use of Analytics Cookies, We may combine general insights from Your Application usage with Your marketing profile to deliver more relevant communications. For example, We may consider:

• whether You have created Your first affair;
• whether the in-app widget is enabled, and which scenario is selected;
• which language You have chosen in the Application;
• whether an Application update is available and installed.

Please note: We do not collect or Process the content of Your affairs (such as text, photos, or descriptions), nor do We transmit such content to any third party. Only metadata and general activity indicators are used — and solely if You have provided appropriate consent.

This limited Data is used to help tailor updates and messages to Your current usage stage within the Application, without performing detailed behavioral profiling or automated decision-making within the meaning of the GDPR.

You remain in full control of this preference, and You can opt-out of receiving marketing messages at any time by adjusting Your settings within the Application.

After confirming with Our policies, You can proceed to create an Account.

Personal Data We collect from You during Account creation includes:

• email: the email address associated with Your Google account,
• name: You can provide Us with the nickname on Your choice,
• avatar (photo): You can choose from default avatars We offer or upload a photo of Your choice.

The registration process involves logging in with Your Google account for a seamless and secure experience. 

Rest assured, We do not have access to Your Google account password or credentials. You log in directly to Your Google account through its secure authentication system. If You are already logged into Your Google account on Your device, the process is even more convenient, as Your credentials will automatically sync, allowing for a quick and hassle-free registration.

While using the Features of Our Application — such as creating affairs, shopping lists, or setting up reminders for events and plans — You may choose to share certain Personal Data with Your Family members. The Data You share, which may include affair details, reminders, or event information – such as the date of an individual’s birthday or other important occasions – is made available only to those Family members You select at Your sole discretion.

Rest assured, the Application is designed to provide You with full control over what information is shared and with whom. Your privacy and the security of Your Personal Data are paramount, and no Data will be shared beyond the Family members You have specifically chosen to include.

We do not store any Data that a User adds to the Application, such as holidays, affairs, reminders, or other items, until the User decides to enable synchronization across their devices or shares specific items with other Family members. Once synchronization is enabled or an item is shared, all the information the User has uploaded to the Application is stored on Our servers to ensure its availability across all devices linked to the User’s Account or shared with other Users. For more details about where and how long We store this Data, please refer to section 6 of this Policy.

Geolocation. Our Application allows Users to assign geolocation to specific affairs. Once a geolocation is set, the User’s device periodically (at predefined intervals) compares the User’s current coordinates with the geolocation associated with the affair. If the coordinates align within the specified radius, the User will receive a notification, ensuring that location-based reminders are timely and efficient.

Importantly, the Application is designed with privacy at its core. The device’s geolocation Data is neither transmitted to external servers nor stored in any persistent User’s local database. The location Data is only used locally on Your device to trigger reminders when necessary. Additionally, geolocation information cannot be shared with Family members or any other third party, guaranteeing that such Data remains entirely private and under the User’s exclusive control.

Additionally, when You choose to interact with the Application, We may collect and Process certain Personal Data that You provide to Us voluntarily. This occurs when You contact Us via Our email address, and it is done entirely at Your discretion. The information You share with Us is provided freely, and We respect Your choice to engage with Us in this manner.

By reaching out to Us, You may voluntarily disclose basic identifying details that allow Us to respond to Your inquiry promptly and effectively. 

 In addition to contact information, We may collect the content of the messages You send to Us. These messages might include details about Your request, feedback on the Application’s functionality, or any other information and Data You choose to share with Us. The information You provide in Your messages helps Us understand Your needs, tailor Our responses, and provide You with the most relevant and helpful information or assistance possible. For the purpose of managing and responding to these messages efficiently, We use Freshdesk — a customer support third-party platform that securely processes and stores such communication on Our behalf. This includes access to the content of Your messages, which may be processed by Freshdesk solely to ensure effective support and in accordance with applicable data protection regulations.

We greatly appreciate and value the feedback and opinions shared by Our Users through Our email or on third-party platforms, specifically Google Play. We may, at Our discretion, reserve the right to post reviews of Our Application on Our website for promotional and informational purposes. Specifically, these reviews may be published on Our website, available at: https://plainandsimplesolution.com/.

By submitting a review or rating the Application through Our email or via Google Play, You acknowledge and Consent to the potential public visibility of the content of Your review. This means that Your review may be made publicly available for visitors to the website to view and access. 

Your review may include information such as Your username on Google Play and the content of Your feedback. However, We do not modify, edit, or alter the text of Your review, except where required to remove inappropriate language or comply with applicable laws.

The use and publication of Your reviews are strictly in accordance with data protection regulations, such as the General Data Protection Regulation (GDPR) where applicable. This means that We only use use information voluntarily provided by You and do not collect or Process additional Personal Data related to Your review.

Please note that Your feedback plays an essential role in improving Our Application and informing potential Users about its Features and quality.

We do not claim any intellectual property rights over the content of Your review. The review remains solely Your intellectual property, and its publication on the mentioned website is intended solely to provide transparency and assist potential Users in making informed decisions. However, by submitting Your review, You grant Us a non-exclusive, worldwide, royalty-free license to use, display, and publish the review on the website for promotional and informational purposes.

If You would like Us to remove Your review from the website, please contact Us directly at
family-errands@plainandsimplesolution.com, and We will promptly address Your request.

We value the information You share with Us and treat it with care, ensuring that it is only used for legitimate purposes.

We collect only the Personal Data that You knowingly provide as the Subject of Personal Data. The Processing of Your Personal Data occurs based on the legal basis specified in section 5 of the Policy, and in accordance with the purposes of Processing set forth herein.

2.2. Personal Data We Process automatically

We collect the following Personal Data automatically to ensure the functionality and seamless operation of the Application:

• the date of Your last activity within the Application,
• the number of Family members in Your Family,
• the license details, including the activation and expiration dates,
• information on whether You have used the trial period,
• the status of Account synchronization (enabled or disabled),
• and information which is collected through Cookies.

Additionally, We utilize the services of a third-party provider, Google Analytics. Subject to Your Consent to Analytics Cookies, this service collects certain interaction Data within the Application, such as User clicks within the Application and the outcomes of those actions (e.g., whether a purchase window was opened, confirmed, or cancelled). This allows Us to better understand how Users engage with Our Features and how the Application performs in response to User actions.

Beyond this, We also collect event-based interaction Data internally through Our API. These events are selectively triggered when Users perform specific actions with measurable outcomes — such as abandoning a payment, adding a Family member, or encountering an error. Each event contains:

• User identifier,
• contextual metadata (e.g., status of the attempt, step where it failed),
• and the type of action (e.g., payment_abandoned, family_member_added, error_encountered).

These events are transmitted to Our secure backend infrastructure and are used to:

• update internal User records and statuses,
• analyze engagement trends and process performance,
• and trigger appropriate actions, such as internal notifications or support outreach.

In some cases, selected indicators derived from these events (e.g., hasAttemptedPaymentButFailed, isFamilyMembersExist) may be transmitted to Freshmarketer via API. These indicators serve to initiate targeted email workflows (e.g., reminder emails or contextual support tips).

Please note that all such event Data (e.g., clicks or interaction outcomes) is first transmitted to Our secure server via API, where it is stored and analyzed. Only selected events are then used to derive internal attributes representing User status or behavior. 

These attributes — not the raw event Data — may optionally be transmitted to Freshmarketer to trigger communication workflows. The decision to transmit such attributes is made internally, and not all collected events result in further Processing or external transmission.

You may opt out of this form of Data collection by revoking Your Consent to Analytics Cookies in the Application settings. Doing so will disable both internal tracking of interaction events and the corresponding downstream communication workflows, such as recommendation emails.

We independently collect and store daily statistics on Application usage to better understand User interactions and to provide them with relevant information regarding technical and operational aspects of the Application, based on their interactions. Such Data is essential to ensure We provide the best possible experience, taking into account the actions Users take within the Application. This Data is collected and processed in accordance with Your consent preferences, as described in the section 10 of this Policy.

These Data points are sent to Us in an anonymized format. Specifically, We receive a unique User code associated with the activity, but this code does not contain any information that would enable Us to identify the User personally. This ensures that while We can analyze User behavior to optimize and enhance the Application, individual User privacy is fully preserved. For more information on how Google Analytics collects and Processes Data, please refer to https://policies.google.com/privacy?hl=en. 

We do not use this interaction data for profiling that produces legal or similarly significant effects on You.

We Process Data solely to enhance the performance of the Application, provide accurate subscription management, and maintain a smooth User experience. It is never used beyond the scope of delivering and improving Our services.

3. Children’s Privacy

Ensuring the privacy and safety of children online is a top priority for Us. We are committed to complying with the privacy laws, particularly concerning the protection of children’s Personal Data.

We knowingly do not Process the Personal Data of children under the age of 13 (applies to Users who are residents of countries with a reduced minimum age for Personal Data Processing) and children under 16.

If We become aware that a person who has not reached the age from which it is permitted to Process their Personal Data has provided Us with their Personal Data without the Consent of a legal representative, guardian, or other person authorized to provide such Consent, We will take all necessary measures to delete such Data. If You believe We might have any information from or about a child under 16 (or 13 if applicable), please contact Us at family-errands@plainandsimplesolution.com.

We disclaim any responsibility or liability in the event that a person under the legal age for Personal Data Processing begins using the Application and provides their Personal Data without obtaining the necessary Consent from their legal representatives.

We further advise that Users, particularly minors, exercise caution when engaging in online activities. It is crucial to recognize the potential risks associated with online interactions and to take appropriate steps to safeguard Personal Data. 

It is the responsibility of such persons or their guardians to ensure that the appropriate Consent is obtained prior to using the Application. You must be of legal age to be in line with Our Privacy Policy, as well as with Our Terms of use.

4. Purposes of Personal Data Processing

We Process the Personal Data collected concerning You only for the specific and limited purposes specified below:

• Account registration and management: To create and manage Your Account, including verifying Your identity, providing access to the Application, and maintaining Your Account security.
• keep things up & running (i.e., operate, deliver, and maintain Our Features): We use the Data We collect in order to operate, deliver, and maintain Our Features. We also use some of Your Personal Data to help keep Our Application up to date, for example, to make sure that Our Features work with the latest operating systems and devices.
• Account synchronization: if a User chooses to synchronize his / her Account across multiple devices, it becomes necessary to transmit all his / her Data to Our servers. This enables seamless access to the User’s information from any of his / her synchronized devices.
• management and improvement of the Application: all the time, We try to improve the functions that support the operation of the Application. This allows Users to use the Application smoothly, quickly and efficiently,

• marketing: to provide You with updates, offers, and relevant information about Our Application’s Features, tailored to Your interests and preferences, ensuring that You have access to solutions designed to enhance Your daily life,

• enhance the safety and security of Our Features: We may use Your Personal Data to enhance the safety and security of Our Features, and prevent fraud or other unauthorized or illegal activity. We monitor failures of the Application and create software solutions to eliminate them, detect violations of this Policy, and monitor the use, abuse and potential abuse of the Application,
• User support: Personal Data Processing is utilized for providing customer support Features, including responding to inquiries, resolving issues, and facilitating communication between Users and Our support team,
• enforce Our Terms of use: We use the Data We collect to enforce Our Terms of use, Policy and the law. This includes enforcing, investigating, and reporting conduct that violates Our Terms of use, Policy, or the law, responding to requests from law enforcement, and complying with legal requirements. In some cases, We may also use or share Your Personal Data to cooperate with law enforcement requests, escalate safety issues to law enforcement, industry partners, or others, or comply with Our legal obligations.

We do not use Your Personal Data for any purposes other than those specified in the Policy. Any further Processing of Your Personal Data will be carried out only with Your express Consent or in accordance with the requirements of the law.

5. Legal basis for Processing Your Personal Data

To Process Your Personal Data, We rely on the following lawful bases:

• performance of the contract — for the Processing of Personal Data necessary for the negotiation, conclusion, and performance of a contract (mainly, the Terms of use) with You,
• legitimate interest — for the Processing necessary for the development of Our Features, taking into consideration Your interests, rights, and expectations,
• legal obligation — for the Processing as required by applicable laws or if requested by a law enforcement agency, court, supervisory authority, or another state-authorized public body,
• Consent — where You have provided explicit Consent for the Processing of Your Personal Data for specific purposes.

It’s important to note that We only Process Your Personal Data on lawful bases and will ensure that the Processing is fair, transparent, and proportionate to the purposes for which the Data is Processed. We will also respect Your rights and freedoms in accordance with applicable privacy laws.

6. Storage of Personal Data

6.1. How long do We keep Your Personal Data?

We will store Your Personal Data for the period necessary to fulfill the purposes set forth in the Policy. When determining the duration of such periods, We first decide whether We need to collect Personal Data at all, and, if such a need really exists, We keep it only for the period necessary to realize the purposes of collection, or until the moment You make a corresponding request to delete Your Personal Data.

The specific retention period for Your Personal Data may vary depending on factors such as the type of Personal Data, the purposes for which it was collected, and legal requirements. 

When We have no ongoing legitimate business need to Process Your Personal Data, We will either delete or anonymize such Data, or, if this is not possible (for example, because Your Personal Data has been stored in backup archives), then We will securely store Your Personal Data and isolate it from any further Processing until deletion is possible. 

As part of Our internal Data management practices, We perform regular deletion of any Data from backup archives every 365 days to ensure that unnecessary or outdated Personal Data is not retained beyond its useful life. While backup archives are essential for maintaining the security and integrity of Our systems, We recognize that Data deletion requests may be more difficult to implement directly within backup systems. To mitigate this, We proactively delete Data from backup archives on an annual basis, ensuring that Personal Data is not kept longer than necessary for technical purposes and remains in compliance with Our Data minimization principles. 

Additionally, to uphold Our commitment to transparency and Data minimization, We periodically review the necessity of retaining Personal Data within Our systems. For Users whose subscriptions have expired and whose Accounts remain inactive for more than 180 days, We will securely delete all associated Data to uphold Our privacy principles. The Data will be permanently deleted within a week following the expiration of the subscription and the 180-day inactivity period.

To ensure stable operations and secure debugging of Our Features, We maintain logs of all API calls made to Our systems. These logs may include technical metadata such as timestamps, status codes, IP addresses, delivery indicators, request and response bodies (which may contain Personal Data), and other diagnostic information.

We Process this Data solely for the purpose of:

• detecting and investigating errors in API method execution;
• analyzing system performance, including identifying unusually slow requests;
• identifying inefficient use of the API, such as redundant or duplicate requests initiated by the application.

All such logs are securely stored and retained for a period not exceeding 180 days. Earlier deletion may occur if the Data is deemed no longer necessary for the above-stated purposes. Upon expiry of this period, the logs are permanently deleted in accordance with Data minimization and security principles.

Data collected through Google Analytics is retained for a maximum of 26 months, depending on the time required for Processing purposes. Once the need for such Data ceases, it is promptly removed. For more detailed information, please refer to Google Analytics’ data retention policy: User and event data retention.

Since We also rely on Freshdesk to support certain internal processes, Data stored within this platform is retained for as long as Our account remains active on the platform. If any item is deleted by Us, the deletion takes effect immediately. However, Freshdesk retains logs of such actions for security and compliance purposes. These logs do not contain any Personal Data and are retained for 3 months, after which they are archived in a secure, restricted-access environment. Archived logs are automatically deleted after 21 days, unless exceptional access is explicitly granted by Freshdesk’s senior management in accordance with applicable laws. In case Our account on Freshdesk is terminated, all related Data will be permanently deleted within 90 days from the date of termination. To learn more, please refer to Freshdesk’s retention policy.

We also use another Freshworks product — Freshmarketer — any Data accessible through this platform is retained only for as long as necessary to fulfill the purposes for which it was collected. As a general rule, Data may be stored for up to six years from the date of provision. If certain Data is only relevant for a limited time — for example, in connection with a specific campaign or activity — it is not kept beyond that period. In cases where individuals opt out of marketing communications, their contact details may be kept indefinitely in a suppression list to ensure preferences are respected. In the event that an Account on the Application is deleted, all Data associated with the Account will be promptly removed from the Freshmarketer. For further details, please refer to Freshworks’ Privacy Notice.

Google Ads Сookies, including those related to ad storage, user data, and personalization, are retained for a maximum of 13 months. After this period, the Сookies are automatically deleted. For more details on Google’s cookie retention policies, please refer to Google’s Privacy Policy.

6.2. Where do We store Your Personal Data?

We adhere to generally accepted industry standards to protect Your Personal Data both during transmission and after receipt.

When You provide Your Data through the contact form and / or while utilizing the Features of Our Application, We securely store the Data in a database hosted on Our server within Google Cloud. The server is located in the europe-west4-a zone, specifically in Eemshaven, Netherlands, Europe. This choice ensures compliance with high Data protection standards and regional regulations. 

Additionally, daily backups of the Data are securely transferred to a virtual machine disk located in the europe-west4-a zone within Google Cloud infrastructure. This ensures secure and efficient storage of backups to prevent Data loss.

To learn more about Google Cloud host zones and their operational practices, please refer to: https://cloud.google.com/compute/docs/regions-zones. 

We also use Freshdesk and Freshmarketer, third-party tools from the Freshworks suite, to manage support communications and marketing campaigns. Both platforms are hosted on secure infrastructure — primarily Amazon Web Services (AWS), with some services also running on Google Cloud Platform (GCP).

Freshdesk ensures high availability and robust security through encrypted data storage (AES-256 for data at rest, TLS 1.2 for Data in transit), SSL across all plans, and infrastructure protected by biometric access controls and 24/7 surveillance. Key management is handled via AWS Key Management Service. Freshmarketer, which operates within the same ecosystem, follows similar security protocols. 

Freshdesk as well as Freshmarketer, have data centers located in multiple regions, including the US, EU, India, Australia, and MEA. For more details, you can refer to Freshdesk’s Security Overview, Freshworks Data Hosting and https://support.freshdesk.com/support/solutions/articles/235810-where-is-your-data-servers-located-.

We take the protection of Your Personal Data very seriously. We take all commercially reasonable measures to prevent unauthorized access to Your Personal Data and those Data obtained in the process of using the Application. Not only that, but We strive to protect Your Personal Data by various means in order to preserve its confidentiality and integrity, prevent unauthorized use or disclosure of Your Personal Data, and protect Your Personal Data from loss, misuse, disclosure, alteration, and / or destruction. 

Please note that no method of Data transferring over the Internet can provide a 100% guarantee of preventing information leakage. Any transmission is at Your own risk.

6.3. Security of Your Personal Data

We have put in place appropriate security measures to prevent Your Personal Data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. 

We apply the following security measures appropriate to the possible risks:

In the event of a Personal Data breach, We are committed to responding swiftly and in accordance with applicable Data protection laws, including the GDPR and relevant local regulations, by promptly assessing the breach, notifying the relevant supervisory authority, within 72 (seventy-two) hours of becoming aware of the breach, providing all necessary details. Unless the Personal Data breach is unlikely to result in a risk to the rights and freedoms of natural persons where the notification is not made within 72 (seventy-two) hours, it could be accompanied by reasons for the delay.

By adhering to these measures, We reaffirm Our commitment to maintaining the confidentiality, integrity, and availability of Your Personal Data at all times.

7. Do We transfer Your Personal Data to third parties?

We may engage service providers who assist Us in operating, supporting, and improving the Application, as well as in analyzing how it is used. These third-party providers offer services such as customer support, marketing and analytics. 

We work with analytics services, specifically Google Analytics to analyze User interactions and improve the functionality and performance of Our Application. To find out how Google Processes Your Personal Data, visit the link: https://policies.google.com/privacy. We also use Freshdesk to manage customer support communications and Freshmarketer for marketing automation. Both services are part of the Freshworks suite and may Process certain Personal Data as part of their functionality. For more information on how Freshworks handles Data, please refer to: https://www.freshworks.com/privacy/.

We ensure that all third-party providers Process Personal Data in accordance with applicable data protection laws and only for the purposes specified in this Privacy Policy.  

We may engage Our employees to assist Us in providing support and managing the requests You submit to Us through the contact form on Our Application. These collaborations ensure that Your inquiries are addressed promptly and efficiently while maintaining the highest standards of data protection and confidentiality. It is important to note that employees do not have access to any of Our databases that may contain Your Data. You may request a list of such third parties from Us at any time.

In addition to the involvement of third-party providers, certain Personal Data may be shared within the Application through its Family sharing functionality. This Feature allows Family members to view affairs, events, and other information that You explicitly choose to share with them. You retain full control over the shared content and can revoke access at any time. Once sharing is canceled, the selected affairs and events will no longer be visible to the Family members.

Additionally, You have the option to grant Family members permission to add, edit, or delete shared affairs and events. This permission can be managed and adjusted at any time, ensuring that You remain in control of how Your Data is accessed and used.

We do not transfer Your Personal Data to third parties except when it is necessary to fulfill a legal obligation, upon Your explicit request, or in other circumstances outlined in this Policy. We understand the importance of protecting Your Personal Data, which You voluntarily and knowingly provide to Us, and We take all possible measures to ensure its security.

We ensure that access to Your Personal Data is provided only to those third-party companies and individuals that can guarantee the highest level of data protection, confidentiality, and security, and who will use Your Personal Data solely for purposes consistent with this Policy and in compliance with applicable data protection laws. We limit the Data provided to such service providers to that reasonably necessary for them to perform their functions (a need-to-know basis).

Authorities. We reserve the right to disclose and / or report any Personal Data of the User, if this is required by any law of the Greece or the European Union or another normative legal act, or a confirmed legal requirement of state authority and / or local authorities, for the purpose of compliance with the requirements of the laws of Greece and the legislation of the European Union, protection of the integrity of the Application, to fulfill the requests of Users, state authorities and / or local authorities, or for the purpose of facilitating any investigation by law enforcement agencies or an investigation aimed at guaranteeing public (national) security. In some cases, We may also provide the User’s Personal Data to the authorities of the European Union (both national and supranational) and the authorities of other countries, if such provision of Personal Data is required by law, or in the event of an official request from such an authority as part of a criminal investigation.

8. Cross-border transfer of Personal Data

In the course of Our business operations, We may transfer Your Personal Data to third parties, including, but not limited to service providers and partners, located in countries outside of Your country of residence, including countries outside the European Union (EU), European Economic Area (EEA), Switzerland, and the United Kingdom of Great Britain and Northern Ireland, or which Process Personal Data there. This may occur when We use third-party services like Google Analytics, Google Ads, Freshdesk and Freshmarketer which may store and Process Personal Data on servers located in various jurisdictions.

Please be aware that when Your Personal Data is transferred to third countries, such countries may have Data protection laws that differ from, and in some cases provide less protection than, the Data protection laws in Your country. Nevertheless, We are committed to ensuring that any such transfer of Your Personal Data is conducted in full compliance with applicable Data protection regulations, including but not limited to the GDPR. Specifically, We use one of the following safeguards:

• Transfer based on adequacy decisions. Whenever possible, We rely on adequacy decisions issued by relevant authorities to transfer Personal Data to countries or international organizations that provide an adequate level of protection.
  • European Commission: for transfers from the EU, adequacy decisions are adopted by the European Commission. You can access the full list of countries and international organizations that have been deemed adequate by the EC on their official website. 
  • UK Secretary of State: for transfers from the UK, adequacy decisions are adopted by the UK Secretary of State. The full list of countries with adequacy status is available on the website of the Information Commissioner’s Office (ICO). 
  • Federal Council (Switzerland): adequacy decisions for transfers from Switzerland are listed in Annex 1 of the Data Protection Ordinance (O-FADP), which details states, territories, or sectors with adequate data protection.
  • Additionally, We may transfer Personal Data to service providers in the United States that participate in the EU-U.S. Data Privacy Framework, which is subject to an adequacy decision by the European Commission. This also includes the UK Extension to the EU-U.S. Data Privacy Framework and the Swiss-U.S. Data Privacy Framework. These frameworks provide specific safeguards for transfers of Personal Data between the EU, UK, Switzerland, and the U.S. For more information on the Data Privacy Framework (DPF) program, please visit: https://www.dataprivacyframework.gov/.
• Transfer in the absence of adequacy decision. In cases where Personal Data is transferred to a country that has not been deemed to provide an adequate level of protection by the European Commission or other legal authorities, We will implement appropriate safeguards to protect Your Data, including but not limited to: Standard Contractual Clauses (SCCs), Binding Corporate Rules (BCRs), explicit Consent, other legal mechanisms.

• Third party whose services We use. We collaborate with the third-party service provider Google LLC to facilitate analytics and marketing activities. This may involve the cross-border transfer of Your Personal Data to ensure the effective operation of these services. Google LLC is certified under the EU-U.S., UK-U.S., and Swiss-U.S. Data Privacy Frameworks, which establish comprehensive safeguards for the Processing and transfer of Personal Data between regions. We also use the services of Freshdesk and Freshmarketer, which are part of the Freshworks Inc. ecosystem. Depending on Your location, Our use of Freshworks products may involve the transfer of Personal Data to servers located outside of Your jurisdiction, including to the United States and other regions. Freshworks participates in and complies with the EU-U.S., UK-U.S., and Swiss-U.S. Data Privacy Frameworks and implements industry-standard safeguards, including encryption, secure data centers, and access controls, to ensure the lawful and secure transfer of Personal Data across borders. Where required, Freshworks also relies on SCCs approved by the European Commission and other relevant authorities to provide additional safeguards for cross-border Data transfers.

By using Our Application, You Consent to the transfer, storage, and Processing of Your Personal Data outside Your country of residence, including to countries that may have different data protection laws than Your home jurisdiction.

We will take all necessary measures to ensure that Your Personal Data is treated securely and in accordance with this Policy.

9. How can You exercise Your right to privacy?

You, as a Subject of Personal Data, have the right to interact with Your Data directly or through a request to Us. This section describes these rights and how You can exercise them:

• right to access: You can request an explanation of the Processing of Your Personal Data, as well as details regarding the Processing activities such as the manner in which the Personal Data are Processed, the purpose for which the Processing is done, the recipients or the categories of Personal Data recipients, etc.,
• right to rectification: You have the right to obtain the correction, without justified delay, by the Company of inaccurate / unjustified Personal Data, as well as the completion of incomplete Personal Data,
• right to erasure (“right to be forgotten”): You can send Us a request to delete Your Personal Data from Our systems and / or databases. We will remove them unless otherwise provided by law,
• right to restrict the Processing: You may partially or completely prohibit Us from Processing Your Personal Data,
• right to Data portability: You can request to receive all the Personal Data You provided to Us in a structured way, commonly used and in an easy-to-read format, as well as the right for this Data to be transmitted by the Company to another Controller, to the extent that the conditions provided for by law are met, 
• right to object: You may object to the Processing of Your Personal Data,
• right not to be subject to an automated individual decision: the right not to be the subject of a decision taken solely on the basis of automated Processing activities, including the creation of profiles, which produce legal effects concerning the Subject of Personal Data or similarly affect him / her in a significant measure,
• right to withdraw Consent: You can withdraw Your Consent at any time,
• right to file a complaint: If Your request was not satisfied, You could file a complaint to the regulatory body of the National Supervisory Authority for the Processing of Personal Data or competent courts, to the extent You deem necessary.

To exercise Your rights, please contact Us using the following email address: family-errands@plainandsimplesolution.com. Please note that before providing the information according to Your request, We may ask You to provide additional Data to confirm Your identity. This is a security measure to ensure that Personal Data is not disclosed to any person who has no right to receive it.
In the event that We receive Your request, We will endeavor to respond as soon as possible, but no later than 30 (thirty) calendar days from the date of receipt of the request.

10. Cookies

10.1. What are Cookies?

Cookies are small pieces of data (text files) or parts of program code that contain a unique User ID and information about how You use the Application. Cookies are transmitted through a server and stored on Your device when You use the Application. Cookies are transmitted through a server and stored locally on Your device to help enhance Your experience and track usage patterns. These technologies are passive, meaning they do not contain harmful programs, viruses, or spyware and cannot access other information on Your device. 

A Cookie consists of 2 parts: the name and the content or value of the Cookie. Moreover, the duration of existence of a Cookie is determined. Data stored using these technologies can only be accessed by the application that stores it, which ensures Data consistency and privacy across visits. Cookies themselves do not require Personal Data to be used and, in most cases, do not personally identify Users. 

On the Application, Data may be stored temporarily (“session data”) or for a longer period (“persistent data”). Session data is erased when You close the Application. “Persistent Cookies” remain on the User’s device for a certain period of time specified in the Cookies. They are activated every time the User visits the Application.

Cookies may also be used to collect anonymous statistics about the experience of visiting the Application. The data collected is not personally identifiable and is limited to the minimum information necessary to optimize the performance of the Application.

In order to obtain additional general information about Cookies, You can check out information about HTTP Cookies, which is available at the following link.

10.2. Consent to the use of Cookies

Cookies are not strictly necessary for visiting and / or using the Application (except for the “strictly necessary” type of Cookies) and will be used by Us only after obtaining Your Consent to their use. Once You agree to Our use of Cookies in a separate notice about the use of Cookies, We will consider Your Consent to be obtained. 

When You have given Us Your Consent to use Cookies when visiting and / or using the Application, the Processing of the Data collected by Cookies is carried out in accordance with Art. 6(1)(a) GDPR, in accordance with which the Processing shall be lawful only if and to the extent that at least one of the following applies: the Subject of Personal Data has given Consent to the Processing of his or her Personal Data for one or more specific purposes. You can familiarize Yourself with the text of the GPDR by following the link: https://eur-lex.europa.eu/eli/reg/2016/679/oj.

You may certainly change Your Cookie settings on Your device at any time. For more information, please read the section 10.6 “How You can manage Your Cookies settings”.

10.3. The types of Cookies We collect:

• Strictly necessary Cookies (necessary_storage). These Cookies are fundamental to the proper functioning of the Application and its core features, particularly those ensuring the security, stability, and accessibility of the Application.
• Targeting and Advertising Cookies (analytics_storage). These Cookies are used for measuring and analyzing the effectiveness of User interaction across the Application. They are deployed only upon obtaining the User’s explicit consent.

• Advertising Effectiveness Cookies (ad_storage). These Cookies facilitate the storage of advertising identifiers and technical data necessary to evaluate the effectiveness and reach of advertising campaigns. Such Processing is carried out solely after the User has provided appropriate consent.

• Advertising Analytics Cookies (ad_user_data). These Cookies permit the transmission of advertising identifiers and User engagement Data within the Application to third-party providers (e.g., Google). This facilitates detailed performance analysis of marketing efforts and the continuous optimization of ad-related strategies. The use of these Cookies requires the User’s express consent.

• Advertising Personalization Cookies (ad_personalization). Subject to the User’s prior consent, these Cookies are used to process behavioral Data for the purpose of delivering personalized and interest-based advertisements. This may include techniques such as remarketing to provide a more tailored advertising experience.

10.4. The purposes of collecting Cookies.

The Application uses Cookies for the following purposes:

• ensuring the proper functioning of the Application,
• ensuring the security of Users while they are on the Application,
• adjusting and enhancing Your interaction experience with the Application,
• obtaining standard analytics information regarding the use and performance of the Application,
• detecting errors, identifying their root causes, and improving the overall stability and responsiveness of the Application,
• collecting aggregated information about the number of visits and usage trends to better understand User behavior and improve service delivery,
• evaluating the effectiveness and reach of marketing campaigns,
• collecting information about the number of visits to the Application,
• enabling the delivery of personalized, interest-based advertising to Users, including remarketing and retargeting activities.

We assure You that all Data collected through Cookies is used solely for the purposes stated in this Policy, and Cookies in no way are harmful to You or Your device, as they do not make any changes to its configuration.

Upon Your Сonsent to the collection of Analytics Cookies, and in compliance with applicable data protection laws, We may use the daily statistics on Application usage to enhance Your experience. This may include sharing additional details, such as whether You’ve set up Your first affair or if an update to the Application is available. Such Data may be transmitted to Freshmarketer, a service provided by Freshworks Inc. for the purpose of delivering more personalized and relevant communication and improving Our support services. Freshworks may Process Your Data as a data Processor on Our behalf.

Additionally, with Your Consent to Analytics Cookies, the Application may register discrete interaction events (such as clicks and their outcomes) to enable limited backend-triggered processes. These event signals may include, for instance, an unsuccessful payment attempt, a skipped onboarding step, or repeated dismissal of a prompt. Such signals are used to:

• update internal system states (e.g., mark flows as completed or interrupted),
• and, in certain cases, securely relay high-level indicators — to Our third-party service provider Freshmarketer for inclusion in communication workflows.

Freshmarketer does not receive raw behavioral Data. Instead, it receives only derived signals (e.g., paymentFailed, onboardingSkipped) required to trigger specific communications with a specific User.

We do not perform continuous behavioral tracking or record full clickstream logs. No financial information or sensitive Personal Data is shared via these mechanisms.

Please rest assured that Your Data will be handled with the utmost care, in accordance with our Privacy Policy and Freshworks’ Privacy Notice, and You have the right to withdraw Your Consent or request Data deletion at any time.

You may revoke Your Consent to Analytics Cookies at any time via the Application settings, upon which all such tracking and associated support logic will be disabled.

10.5. Services used to collect Cookies

Cookies utilized on the Application may be retained on the servers of their respective providers for varying durations. The storage duration of each Cookie is contingent upon its specific function and purpose. For instance: 

• Google Analytics

Google Analytics helps Us analyze how Users interact with the Application, providing insights into usage patterns and traffic. Cookies collected by Google Analytics may be stored for up to 2 (two) years, depending on the purpose. Google LLC automatically manages storage regions based on User location. Additional information about Google Analytics’ cookie policies can be found here.

– Google Ads Services

We also use Cookies from Google Ads-related services, such as:

– ad_storage: used to store advertising identifiers and related technical data, enabling the measurement of the performance of Our advertising campaigns on third-party platforms (e.g., Google Search);

– ad_user_data: used to transmit advertising identifiers and App interaction data to Google for the purposes of analyzing campaign results and User acquisition performance;

– ad_personalization: used, upon Your consent, to deliver personalized advertisements about Our Application across other platforms and to facilitate remarketing based on Your engagement with the Application.

Users are encouraged to review the privacy policies and cookie documentation provided by these service providers for comprehensive insights into the storage durations and Data handling practices associated with their respective Cookies. 

10.6. How You can manage Cookies settings?

You can manage and control the use of Cookies in the Application in the following ways:

– upon first use of the Application, You will be presented with a Cookies banner that allows You to make an informed choice about which types of Cookies You consent to. This includes the option to accept or reject certain categories of Cookies, such as those used for analytics or advertising purposes;

– at any time thereafter, You may review and modify Your Cookie preferences in the Application’s settings section. These settings enable You to withdraw previously granted consent or adjust Your preferences regarding the use of optional Cookies.

PLEASE NOTE THAT CHANGES TO THE TRACKING AND DATA COLLECTION SETTINGS MAY RESULT IN LIMITED FUNCTIONALITY OF THE APPLICATION, WHICH COULD IMPACT YOUR USER EXPERIENCE.

11. External links

Users may post active links to websites that are not maintained by the Company, while creating affairs, events, shopping lists or setting-up any reminders. If You visit such websites, You should review their privacy policies and operating principles. We are not responsible for the Personal Data Processing policies and practices of other companies. Any information You provide to such companies is subject to their company policies. 

12. Dispute Resolution

Before filing a claim in court in disputes arising from the relationship between the User and Us, it is mandatory to submit a claim (a written proposal for voluntary settlement of the dispute). The recipient of the claim shall, within 30 (thirty) calendar days from the date of receipt of the claim, notify the applicant of the claim in writing about the results of the consideration of the claim.

In case of failure to reach a compromise, the dispute will be referred to the competent court of Greece. The Policy is governed by and interpreted in accordance with the laws of Greece.

13. Changes to the Policy

We have the right to make changes to this Policy at any time and for any reason by posting a new version of the Policy at the above link. We strongly recommend that You check the Policy and the date of the last change from time to time to stay informed of the latest changes.

If You do not agree with any changes made to the Policy, You must stop using the Application, and You can also request the deletion of Your Personal Data.

Users will be notified of any planned changes to the Policy at least 15 (fifteen) days prior to the changes taking effect and, if necessary, ask for Your Consent.

14. Contact information

If You have any comments, doubts, or questions regarding this Policy, please contact Us at
family-errands@plainandsimplesolution.com.

We will try to answer You as soon as possible, but no longer than within 30 (thirty) calendar days.

15. Additional information for residents of the United States of America

This section applies only if You are a resident of certain U.S. states that have implemented state-level privacy laws. You, as a Subject of Personal Data, have some special privacy rights. To use them, please contact Us at
family-errands@plainandsimplesolution.com.

Please note! Depending on the state and legislative requirements, We have from 30 (thirty) to 60 (sixty) days to exercise Your request, with the right to postpone it for 30 (thirty) days more.

If Your complaint is not satisfied, You can file a complaint with the Federal Trade Commission.

Also, You may submit a complaint as follows:

• For Colorado residents, to the Colorado AG at https://coag.gov/file-complaint/
• For Connecticut residents, to the Connecticut AG at https://www.dir.ct.gov/ag/complaint/
• For Montana residents: https://dojmt.gov/consumer/
• For Oregon residents: https://justice.oregon.gov/consumercomplaints/
• For Texas residents: https://oag.my.salesforce-sites.com/CPDOnlineForm
• For Utah residents: https://attorneygeneral.utah.gov/contact/complaint-form/
• For Virginia residents, to the Virginia Attorney General at https://www.oag.state.va.us/consumercomplaintform
• For residents of Florida at https://www.myfloridalegal.com/consumer-protection/consumer-complaint-form 

Your rights vary depending on the laws that apply to You, but may include:

Access to specific Data and the right to transfer Data

With certain exceptions, if You are a resident of the state of California, USA, You have the right to request a copy of the Personal Data (defined as Personal information for the purposes of this section) We have collected about You in the 12 (twelve) months prior to Your request. After receiving Your request and establishing Your identity, We will inform You of:

– categories of Personal information that We have collected about You,

– Our business or commercial purpose for collecting such Personal information,

– categories of Third Parties with whom We share this Personal information.

Also, if You are an Oregon resident, Delaware (effective from 01/01/2025), Minnesota (effective from 31/07/2025), Maryland (effective from 01/10/2025) You also have the right to receive a list of the specific Third Parties to which We have disclosed Personal Data in Our capacity as a Controller, provided that We are not required to disclose its trade secrets.

To exercise Your rights, You may submit the request by sending an email to:
family-errands@plainandsimplesolution.com. We will ensure that Your request is processed in accordance with the relevant legal requirements. We may require specific information from You to help Us confirm Your identity and process Your request. You have the right not to be discriminated against for exercising any of Your rights.

Non-discrimination

We will not discriminate against You for exercising Your rights related to the Processing of Your Personal information, as well as Your right to refuse to receive Our Features in the future, or for refusing to receive further marketing, informational / advertising materials from Us.

Do not sell and share my Personal information

California residents have the right under the California Consumer Privacy Act as well as California Privacy Rights Act to opt out of the “sale” and “share” of their Personal information by a company governed by CCPA. In this context, the word “sale” means any “selling, renting, releasing, disclosing, disseminating, making available, transferring or otherwise communicating orally, in writing, or by electronic means, a consumer’s personal information by the business to another business or a third party, for monetary or other valuable consideration”. If You are a resident of other US states that give You rights to opt out of “sale”, “share” and / or use of Personal information for “targeted advertising”, You may also find this information helpful.

In exceptional cases, We may share Your Personal information as it is described in section 7. We do not and will not “sell” Your Personal information, but We recognize that the CCPA defines “Personal information” in such a way that providing access to identifiers associated with You may be considered a “sale”. In the event that these Application visitor identifiers and inferences may be identified as a sale under the CCPA, please use the “Do not sell and share my Personal information” setting. After receiving Your request through the “Do not sell and share my Personal information” setting, the Company makes a corresponding entry in its database of Personal information / Application Users, which indicates that the Company is aware of the impossibility of further selling Your Personal information. Also, if You would like to record Your preference that We will not “sell” and “share” Your Personal information in the future, please contact Us via
family-errands@plainandsimplesolution.com.

We generally do not collect information that is considered sensitive Personal information (as defined under the CCPA). In the limited circumstances that We do, such as the collection of Your username and password, We do not collect this information for the purpose of inferring characteristics about You.

COPPA (Children Online Privacy Protection Act)

When it comes to the collection of Personal information from children under 13, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, the nation’s consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online.

Fair Information Practices

The Fair Information Practices Principles form the backbone of privacy law in the United States, and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect Personal Data.

In order to be in line with Fair Information Practices We will take the following responsive action, should a data breach occur:

– We will notify the Users via Website notification within 7 (seven) business days.

We also agree to the individual redress principle, which requires that individuals have a right to pursue legally enforceable rights against data Collectors and Processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or a government agency to investigate and / or prosecute non-compliance by Data Processors.

16. Additional information for residents of Canada

This section applies only to residents of Canada. The Company Processes Personal Data in accordance with the Personal Information Protection and Electronic Documents Act, Personal Information Protection Act of British Columbia, Personal Information Protection Act of Alberta, and Act respecting the protection of Personal information in the private sector of Quebec have the right to interact with its data directly or through a request to Us regarding privacy issues.

This section describes the privacy rights of Canadian residents and how they can exercise them:

To exercise Your rights, contact Us at the following email address:
info@plainandsimplesolution.com. We have 30 (thirty) calendar days to exercise Your request from the moment it is received on Our contact email. 

We have the right to extend the 30-day period for providing an answer to the request for another 30 (thirty) calendar days in the event that:

• failure to respond within the initial 30 (thirty) calendar days may be considered unreasonable interference with Our business,
• We need additional time for consultation,

• We need additional time to convert the Personal Data into a format that is easy to read.

You have the right to file a complaint with the Office of the Privacy Commissioner of Canada (OPC) if We do not respond to Your request within the first 30 (thirty) days.

In the event of a leak of Your Personal Data, We will promptly notify You of such a case and the degree of threat to Your Personal Data. In accordance with PIPEDA, We will immediately notify the Office of the Privacy Commissioner of Canada (OPC) and keep a record of the leak that has occurred.

We may disclose Personal Data to third-party service providers and related corporations located outside of Canada for the purposes described in the Policy. The Policy requires that the Company share Your Personal Data abroad in a manner that requires the highest standards of confidentiality and security when transferring Personal Data abroad. Please note that when Personal Data is transferred abroad, it may be accessed by courts, law enforcement agencies, and national security agencies. Before disclosing Personal Data, We will assess possible risks that may adversely affect the protection of Personal Data. We ensure the appropriate level of integrity and protection of Personal Data when transferred to Third Parties, which is required by the provisions of PIPEDA, by entering into agreements with such companies, which provide for the limitation of the use of Personal Data by the Third Party solely for the purposes provided for in the agreement.

Accountability

The Company is accountable for all Personal Data in Our possession or control. We have established policies and procedures aimed at protecting the Personal Data of Users, Our clients and personnel. We have appointed a Privacy Officer to oversee privacy issues for the Company. We have also educated Our personnel about the Privacy Policy and their role in protecting the Personal Data of Users, Our clients, and personnel. 

If You have questions about Our privacy practices, You are free to contact the Privacy Officer at
family-errands@plainandsimplesolution.com.

17. Additional information for residents of Australia

This section applies only to residents of Australia. The Company Processes Personal Data in accordance with the Australian Privacy Act 1988 (“APA”) and the Data Breach Notification Guidelines (2018).

Prior to Processing Your Personal Data, the Company will inform You of the Personal Data controller, the basis and purpose of the Processing, and whether Your Personal Data will be transferred outside of Australia. The Company will not Process “sensitive data” without Your prior Consent. 

The Company will not send You marketing emails without Your Consent. 

We may disclose Personal Data to third-party service providers and related corporations located outside of Australia for the purposes set out in this Policy. It is the Company’s policy that the Company shares Your Personal Data overseas in a manner that requires the strictest privacy and security standards while transporting Personal Data overseas.

In the event of a breach of Your Personal Data, We will promptly notify You of such a breach and the extent of the threat to Your Personal Data. In accordance with the APA, We will immediately notify the Office of the Australian Information Commissioner (OAIC) of such a breach.

To request information about what Personal Data We are Processing about You, please contact Us at
family-errands@plainandsimplesolution.com. 

18. Additional information for residents of Ukraine

The conditions of this section apply only to residents of Ukraine, which is contained in the Privacy Policy and relates to specific requirements, in accordance with the provisions of the legislation of Ukraine, in particular, the Law of Ukraine “On Personal Data Protection” №2297-VI dd. 01.06.2010. 

Each User’s personal non-proprietary rights regarding Personal Data are inalienable and inviolable. 

The User, resident of Ukraine, has the following rights in relation to the provided Personal Data:

– to know about the sources of collection, location of the provided Personal Data, purposes of their Processing, and location of the Company,

– to receive information about the conditions for providing access to Personal Data, in particular, information about Third Parties to whom Your Personal Data is transferred,

– to access his / her Personal Data,

– to receive, no later than 30 (thirty) calendar days from the date of receipt of the request, except in cases provided for by law, a response on whether his or her Personal Data is Processed, as well as to receive the content of such Personal Data,

– to submit a reasoned request to the Controller with an objection to the Processing of his / her Personal Data,

– to submit a reasoned request to change or destroy his / her Personal Data by the Company if this Data is Processed illegally or is unreliable,

– to protect his / her Personal Data from unlawful Processing and accidental loss, destruction, damage due to intentional concealment, failure to provide or untimely provision, as well as to protect against the provision of information that is inaccurate or discrediting the honor, dignity and business reputation of the User,

– to file complaints about the Processing of Personal Data to the Ukrainian Parliament Commissioner for Human Rights or to the court,

– to apply legal remedies in case of violation of the legislation on the protection of Personal Data,

– to make warnings regarding the restriction of the right to Process his / her Personal Data when giving Consent,

– if We Process Your Personal Data on the basis of the User’s prior Consent to this Processing – to withdraw the Consent to the Processing of Personal Data, after which such Processing will cease,

– if the Personal Data is exclusively Processed automatically, including profiling, which may have legal consequences for the User – to receive protection from an automated decision.

In order to exercise any of the above rights, the User shall contact the Company in writing at the following email address:
family-errands@plainandsimplesolution.com. 

The Subject of Personal Data is obliged to submit a request for access to Personal Data to the Controller, in accordance with the requirements provided for in part 3 of article 16 of the Law of Ukraine “On Personal Data Protection” №2297-VI dd. 01.06.2010. The period for examining the request for its satisfaction will not exceed 10 (ten) business days from the date of its receipt. During this period, the Controller will inform the User submitting the request that the request will be granted, or the relevant Personal Data will not be provided, indicating the grounds specified in the relevant regulatory legal act. The request shall be satisfied within 30 (thirty) calendar days from the date of its receipt, unless otherwise provided by law.

The Controller will notify the Ukrainian Parliament Commissioner for Human Rights of the Processing of Personal Data that poses a particular risk to the rights and freedoms of Personal Data Subjects within 30 (thirty) business days from the date of commencement of such processing.

Privacy Policy

Effective from 27.January.2025

Welcome to Board Assistant Power-Up!

This Privacy Policy has been developed taking into account Our awareness of the importance and significance of Your Personal Data. Maintaining Your privacy is Our top priority. The main purpose of this Policy is to help You understand how We Process and protect Your Personal Data when You use the Power-Up.

We strive to ensure that You can use the Power-Up with confidence that Your Personal Data is properly protected and Processed in accordance with legal requirements and standards. We promise to treat any Personal Data You provide to Us with the utmost care and strive to ensure that it is stored securely.

This Privacy Policy is developed and operates taking into account the General Data Protection Regulation (GDPR), as well as other regulations and practices on the protection of Personal Data.

In order to make the most of Our Power-Up, please carefully read this Policy before using the Power-Up. 

By using the Power-Up, providing any of Your Personal Data to Us, and agreeing to the terms of the Privacy Policy, You confirm that:

(I) You have read, understood, and agree to this Policy;

(II) You have reached the age from which the legislation of the country of Your stay allows You to give Consent to the Processing of Your Personal Data. In any case, in order to use the Power-Up, You must be at least 16 years old (at least 13 years old in certain regions) or one of Your legal representatives or guardians must have read and agreed to the terms of the Privacy Policy on behalf of You.

If You do not agree with these Privacy Policy, or any part thereof, please refrain from using the Power-Up.

1. For Your convenience, We use the following terms:

“Privacy Policy” – this document, which is available at the following link:https://plainandsimplesolution.com/privacy-policy/#Board_Assistant (hereinafter — “Privacy Policy”, “Policy”).

“Company” – DUBYCH SINGLE MEMBER P.C., legal address: Argous 107, 21100, Nafplio, Peloponnissos, Greece, individual tax identification number (AFM): 802428980 (hereinafter referred to as “Company”, “We”, “Us”, “Our”).

“Power-Up” – a digital product developed and owned by the Company, accessible through the Trello Marketplace or directly via the following link: https://trello.com/power-ups/685016dd47b5654ae385bba6 (hereinafter referred to as “Power-Up” “Board Assistant” “Board Assistant Power-Up”).

“Trello” – a web-based project and task management platform that allows its users to create, organize, and collaborate on visual boards, lists, and cards. The Power-Up functions as an enhancement to the Trello platform, which is governed by its own Terms of Service and Privacy Policy.

“User” – any individual who accesses or interacts with the Power-Up as a result of authorizing through the Power-Up (hereinafter referred to as the “User”, “You”, or “Your”).

“Account” – a technical profile generated in the Company’s system upon the User’s authorization of the Power-Up via Trello’s OAuth mechanism. This profile is necessary to enable and manage the Power-Up’s Features for the authorized User and is not a separate User Account in the traditional sense.

“Features” – the tools and functionalities made available to Users through the Power-Up, designed to enhance productivity, streamline board management, and automate repetitive actions within Trello.

“Content” – any materials, information, media, or intellectual property presented on the Power-Up. This includes, but is not limited to, text, images, graphics, videos, audio files, and any content posted on the Power-Up.

“Personal Data” — any information relating to a natural person who is identified or can be identified using this information (hereinafter — “Personal Data”, “Data”).

“Processing of Personal Data” – any operation or set of operations which is performed on Personal Data or on sets of Personal Data, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available,        alignment or combination, restriction, erasure or destruction (hereinafter — “Process”, “Processing”, “Processing of Personal Data”).

“Consent” — any freely given, specific, informed, and unequivocal indication of the Subject of Personal Data wishes by which he or she, through clear affirmative actions, signifies agreement to the Processing of his or her Personal Data.

“Third Party” — a legal person, public authority, agency, or body other than the Subject of Personal Data, and persons who is authorized to Process Personal Data, other services which are integrated into the Power-Up and individuals who can receive User lists or other information from the Power-Up.

“Controller” – the Company, which determines the purposes and means of Processing of Personal Data, establishes the composition of this Personal Data and the procedures for its Processing.

“Processor” – the Company or other persons that are authorized by the Controller or by law to Process Personal Data on behalf of the Controller.

“Cookies” — files that are downloaded to the User’s device when the User utilizes the Power-Up. 

“General Data Protection Regulation” – European Parliament and Council Regulation № 2016/679 as of 27.04.2016 On the protection of natural persons with regard to the Processing of Personal Data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter – “GDPR”).

“CCPA” – California, USA Consumer Privacy Act of 2018.

“CalOPPA” – The Internet Privacy Protection Act of 2003 of the State of California, USA.

2. Personal Data We Process when You use the Power-Up

2.1. Personal Data You provide to Us personally:

When You first access the Power-Up, You will be presented with an interface requesting that You review and accept this Privacy Policy and the Terms of use. This Consent screen ensures transparency and provides You with clear information regarding how Your Personal Data is Processed. 

Only after providing Your explicit Consent can You proceed to authorize the Power-Up through Trello’s OAuth authorization system. During this authorization process, Trello explicitly displays which types of Data the Power-Up will be able to access. By confirming the authorization, You allow Us to access Your Trello Data to the extent You permit.

Upon successful authorization, Trello securely transmits the permitted Data to Us via its official API. Based on this Data, We automatically generate a User Account in Our system. No separate registration or manual creation of login credentials is required.

We collect only the Personal Data that You knowingly provide as the Subject of Personal Data. The Processing of Your Personal Data occurs based on the legal basis specified in section 5 of the Policy, and in accordance with the purposes of Processing set forth herein.

The following Data is stored as a direct result of Your actions (authorization, configuration, subscription):

• Your Trello username;
• Your email address;
• Your User avatar (as publicly available in Trello);
• date of Account creation in Our system;
• date the Power-Up was added to a Trello board;
• date of the User’s last recorded activity;
• selected subscription plan;
• Trello token allowing the Power-Up to perform automated actions on the User’s behalf within Trello.

Although the OAuth token technically grants broader access, We only access and use Trello data required to perform the specific automation tasks You enable. We do not store Your card titles, card content, list names, custom field names — even if technically accessible through the API. Our use is limited to what is necessary for the automation Features explicitly activated by You.

If You reach out via the embedded “Support” form, We Process the following Data:

• Your name,
• Your email address,
• message content.

This information is used solely for responding to Your inquiry and is not linked to Your Trello Data.

2.2. Personal Data We Process automatically

To enable the Power-Up’s automation Features, We Process certain Data automatically retrieved from the Trello API, based on the automation configurations You actively set.

This includes:

• Trello User identifiers and metadata (ID, name, avatar, last activity) — for Users involved in automation rules,
• card IDs for which automation is applied,
• IDs of boards, lists, and workspaces involved in automation,
• automation settings selected by You in the interface,
• logs of API interactions (including request metadata and IP address),
• logs of payment transactions Processed via Stripe (including request and response data, but never payment credentials).

We collect and retain this Data only when a relevant Feature is activated. While We do not actively Process such Data after the Feature is deactivated, the Data may remain stored unless explicitly deleted in accordance with Our data retention practices as provided per section 6.1 of this Policy.

3. Children’s Privacy

Ensuring the privacy and safety of children online is a top priority for Us. We are committed to complying with the privacy laws, particularly concerning the protection of children’s Personal Data.

We knowingly do not Process the Personal Data of children under the age of 13 (applies to Users who are residents of countries with a reduced minimum age for Personal Data Processing) and children under 16.

If We become aware that a person who has not reached the age from which it is permitted to Process their Personal Data has provided Us with their Personal Data without the Consent of a legal representative, guardian, or other person authorized to provide such Consent, We will take all necessary measures to delete such Data. If You believe We might have any information from or about a child under 16 (or 13 if applicable), please contact Us at

board-assistant@plainandsimplesolution.com.

We disclaim any responsibility or liability in the event that a person under the legal age for Personal Data Processing begins using the Power-Up and provides their Personal Data without obtaining the necessary Consent from their legal representatives.

We further advise that Users, particularly minors, exercise caution when engaging in online activities. It is crucial to recognize the potential risks associated with online interactions and to take appropriate steps to safeguard Personal Data. 

It is the responsibility of such persons or their guardians to ensure that the appropriate Consent is obtained prior to using the Power-Up. You must be of legal age to be in line with Our Privacy Policy, as well as with Our Terms of use.

4. Purposes of Personal Data Processing

We Process the Personal Data collected concerning You only for the specific and limited purposes specified below:

• Account initialization and access management: to enable Your use of the Power-Up by creating and maintaining an internal User Account based on the information received from Trello during OAuth authorization. This includes ensuring secure identification and access to the Power-Up’s Features without requiring manual registration or login credentials,
• keep things up & running (i.e., operate, deliver, and maintain Our Features): to operate, deliver, and maintain the core Features of the Power-Up, including: executing automations You configure within Trello boards, ensuring compatibility with Trello’s API, adapting to technical updates (e.g., changes in operating systems, browser environments, or Trello’s architecture).
• management and improvement of the Power-Up: all the time, We try to improve the functions that support the operation of the Power-Up. This allows Users to use the Power-Up smoothly, quickly and efficiently,
• enhance the safety and security of Our Features: We may use Your Personal Data to enhance the safety and security of Our Features, and prevent fraud or other unauthorized or illegal activity. We monitor failures of the Power-Up and create software solutions to eliminate them, detect violations of this Policy, and monitor the use, abuse and potential abuse of the Power-Up,
• User support: Personal Data Processing is utilized for providing customer support Features, including responding to inquiries, resolving issues, and facilitating communication between Users and Our support team,
• enforce Our Terms of use: We use the Data We collect to enforce Our Terms of use, Policy and the law. This includes enforcing, investigating, and reporting conduct that violates Our Terms of use, Policy, or the law, responding to requests from law enforcement, and complying with legal requirements. In some cases, We may also use or share Your Personal Data to cooperate with law enforcement requests, escalate safety issues to law enforcement, industry partners, or others, or comply with Our legal obligations.

We do not use Your Personal Data for any purposes other than those specified in the Policy. Any further Processing of Your Personal Data will be carried out only with Your express Consent or in accordance with the requirements of the law.

5. Legal basis for Processing Your Personal Data

To Process Your Personal Data, We rely on the following lawful bases:

• performance of the contract — for the Processing of Personal Data necessary for the negotiation, conclusion, and performance of a contract (mainly, the Terms of use) with You,
• legitimate interest — for the Processing necessary for the development of Our Features, taking into consideration Your interests, rights, and expectations,
• legal obligation — for the Processing as required by applicable laws or if requested by a law enforcement agency, court, supervisory authority, or another state-authorized public body,
• Consent — where You have provided explicit and informed  Consent for the Processing of Your Personal Data for specific purposes.

It’s important to note that We only Process Your Personal Data on lawful bases and will ensure that the Processing is fair, transparent, and proportionate to the purposes for which the Data is Processed. We will also respect Your rights and freedoms in accordance with applicable privacy laws.

6. Storage of Personal Data

6.1. How long do We keep Your Personal Data?

We retain Your Personal Data only for as long as it is genuinely necessary to deliver the Power-Up’s functionality, ensure legal compliance, and provide You with a smooth and secure user experience.

If You actively use the Power-Up, Your Data remains in Our primary systems for the duration of Your use. Once You stop using the Power-Up, We begin a carefully timed process: Your Data will remain in Our primary database for up to 180 days, during which time You can return and continue using the service seamlessly. This retention period may be extended if You maintain an active paid subscription, even without visible activity, in order to ensure uninterrupted access to the Power-Up Features covered by Your paid subscription. After that period, unless reactivated, Your Personal Data is permanently deleted. Additionally, encrypted backups may be retained for an additional 180 days (a total of 360 days from Your last activity), after which they are also deleted in the normal course of Our system maintenance. 

This retention is managed through automated mechanisms — a background system that detects inactivity and initiates the Data deletion process accordingly. These practices help balance performance, safety, and Your right to privacy.

If You delete Your Trello account or revoke the Power-Up’s access, We delete Your Personal Data without undue delay — and in any case within 14 (fourteen) days — as required by Trello’s Power-Ups Compliance API. Backup copies may continue to exist temporarily after deletion, but only in encrypted form, excluded from any operational use, and subject to automated removal within Our standard retention cycle.

We check for such deletion and update events at least once every 14 (fourteen) days. In case of a user profile update (accountUpdated), We synchronize the relevant fields with the current User’s Trello account information.

These practices form part of Our responsibilities as an integrated third-party provider within the Trello ecosystem. You may also contact Us directly at board-assistant@plainandsimplesolution.com  to inquire about or verify the status of Your data deletion request.

As for payment-related information, all transactions and payment data are securely handled by Our trusted third-party provider, Stripe. We do not store Your payment credentials or billing details on our servers. Stripe may retain certain payment records in accordance with its own legal obligations and data retention policies, which You are encouraged to review separately.

If You delete Your Account or revoke the Power-Up’s access, payment-related records — including active or past subscriptions — may continue to be stored by Stripe under its own legal obligations (such as financial reporting, fraud prevention, and tax compliance). These records are Processed under Stripe’s role as an independent data Controller and are subject to Stripe’s own privacy policy. 

Deleting Your Account or disconnecting the Power-Up does not affect payment records stored by Stripe, as such Data is collected and retained independently by Stripe. 

If You return to the Power-Up after deletion, We may be able to reconnect Your prior subscription if a valid Stripe customer record still exists. To request restoration, please contact Our support team and provide the customer ID associated with Your previous subscription. We will review the request and, where technically feasible, restore access under Your new Account. 

This restoration process is entirely optional and depends on whether Stripe still holds the relevant Data.

At every step, We aim to minimize Data storage and preserve only what is necessary to support the core Features You rely on — nothing more.

6.2. Where do We store Your Personal Data?

We adhere to generally accepted industry standards to protect Your Personal Data both during transmission and after receipt.

When You provide Your Data through the contact form and / or while utilizing the Features of Our Power-Up, We securely store the Data in a database hosted on Our server within Google Cloud. The server is located in the europe-west4 zone. This choice ensures compliance with high Data protection standards and regional regulations. 

Additionally, daily backups of the Data are securely transferred to a virtual machine disk located in the europe-west4 zone within Google Cloud infrastructure. This ensures secure and efficient storage of backups to prevent Data loss.

To learn more about Google Cloud host zones and their operational practices, please refer to: https://cloud.google.com/compute/docs/regions-zones. 

We take the protection of Your Personal Data very seriously. We take all commercially reasonable measures to prevent unauthorized access to Your Personal Data and those Data obtained in the process of using the Power-Up. Not only that, but We strive to protect Your Personal Data by various means in order to preserve its confidentiality and integrity, prevent unauthorized use or disclosure of Your Personal Data, and protect Your Personal Data from loss, misuse, disclosure, alteration, and / or destruction. 

Please note that no method of Data transferring over the Internet can provide a 100% guarantee of preventing information leakage. Any transmission is at Your own risk.

6.3. Security of Your Personal Data

We have put in place appropriate security measures to prevent Your Personal Data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. 

We apply the following security measures appropriate to the possible risks:

In the event of a Personal Data breach, We are committed to responding swiftly and in accordance with applicable Data protection laws, including the GDPR and relevant local regulations, by promptly assessing the breach, notifying the relevant supervisory authority, within 72 (seventy-two) hours of becoming aware of the breach, providing all necessary details. Unless the Personal Data breach is unlikely to result in a risk to the rights and freedoms of natural persons where the notification is not made within 72 (seventy-two) hours, it could be accompanied by reasons for the delay.

By adhering to these measures, We reaffirm Our commitment to maintaining the confidentiality, integrity, and availability of Your Personal Data at all times.

7. Do We transfer Your Personal Data to third parties?

We take Your privacy seriously and treat Your Personal Data with the utmost care and responsibility. We do not sell or trade Your information, nor do We share it with any third parties for advertising or marketing purposes.

The Personal Data related to payments will be stored on servers managed by Stripe, Inc. (or its affiliated entities or subprocessors), a payment processing service headquartered in the United States. Stripe stores payment Data on its secure servers located in compliance with applicable data protection laws and standards, including in the United States. You can find out more about the privacy policy of Stripe, Inc. at the link: https://stripe.com/privacy.

In some instances, to ensure the proper functioning of the Power-Up, certain categories of Our employees (such as administrative staff) or third-party service providers (e.g., independent technical service providers, hosting providers, IT services, and communication services) may have access to Your Personal Data. You may request a list of such third parties from Us at any time.

We ensure that access to Your Personal Data is provided only to those third-party companies and individuals that can guarantee the highest level of data protection, confidentiality, and security, and who will use Your Personal Data solely for purposes consistent with this Policy and in compliance with applicable data protection laws. We limit the Data provided to such service providers to that reasonably necessary for them to perform their functions (a need-to-know basis).

The Company does not have access to Your Personal Data (payment card number, payment cardholder, CVV code, card validity period) that You provide to financial institutions when making payments through the websites of such institutions or with the help of widgets of such institutions placed on the Power-Up.

Authorities. We reserve the right to disclose and / or report any Personal Data of the User, if this is required by any applicable law as well as law of the European Union or another normative legal act, or a confirmed legal requirement of state authority and / or local authorities, for the purpose of compliance with the requirements of the laws of the Greece and the legislation of the European Union, protection of the integrity of the Power-Up, to fulfill the requests of Users, state authorities and / or local authorities, or for the purpose of facilitating any investigation by law enforcement agencies or an investigation aimed at guaranteeing public (national) security. In some cases, We may also provide the User’s Personal Data to the authorities of the European Union (both national and supranational) and the authorities of other countries, if such provision of Personal Data is required by law, or in the event of an official request from such an authority as part of a criminal investigation.

8. Cross-border transfer of Personal Data

We store and Process all Personal Data in the European Union, specifically within the Google Cloud infrastructure located in the europe-west4 region. This means that Your Data does not leave the EU for the purposes of hosting, storage, or internal Processing performed by Our systems. For more details on Google Cloud’s data protection commitments and security certifications in the europe-west4 region. 

The only exception to this geographic scope of Processing involves payment Processing, which is carried out by Stripe, Inc., a trusted third-party payment service provider. Stripe may Process certain Data related to subscription payments (e.g., billing identifiers, transaction metadata) on servers located outside the EU, including in the United States.

To ensure an adequate level of protection for such Data transfers, Stripe participates in the EU-U.S. Data Privacy Framework, the UK Extension to the EU-U.S. Data Privacy Framework, and the Swiss-U.S. Data Privacy Framework. These frameworks have been recognized by the European Commission, UK authorities, and the Swiss Federal Council as providing adequate safeguards for international data transfers.

By using Our services, You acknowledge and agree that certain data necessary for payment operations may be Processed outside of Your country of residence, subject to the safeguards mentioned above. We always ensure that any such transfer is conducted in full compliance with the GDPR and that appropriate contractual or regulatory protections are in place.

We do not use analytics, tracking tools, or other third-party platforms that involve additional international data transfers. Our commitment is to Process only the minimum Personal Data necessary to deliver Our services — and to do so securely, responsibly, and transparently.

If You have any questions about international data transfers or how We protect Your Personal Data, You are welcome to contact Our support team.

We will take all necessary measures to ensure that Your Personal Data is treated securely and in accordance with this Policy.

9. How can You exercise Your right to privacy?

You, as a Subject of Personal Data, have the right to interact with Your Data directly or through a request to Us. This section describes these rights and how You can exercise them:

• right to access: You can request an explanation of the Processing of Your Personal Data, as well as details regarding the Processing activities such as the manner in which the Personal Data are Processed, the purpose for which the Processing is done, the recipients or the categories of Personal Data recipients, etc.,
• right to rectification: You have the right to obtain the correction, without justified delay, by the Company of inaccurate / unjustified Personal Data, as well as the completion of incomplete Personal Data,
• right to erasure (“right to be forgotten”): You can send Us a request to delete Your Personal Data from Our systems and / or databases. We will remove them unless otherwise provided by law,
• right to restrict the Processing: You may partially or completely prohibit Us from Processing Your Personal Data,
• right to Data portability: You can request to receive all the Personal Data You provided to Us in a structured way, commonly used and in an easy-to-read format, as well as the right for this Data to be transmitted by the Company to another Controller, to the extent that the conditions provided for by law are met, 
• right to object: You may object to the Processing of Your Personal Data,
• right not to be subject to an automated individual decision: the right not to be the subject of a decision taken solely on the basis of automated Processing activities, including the creation of profiles, which produce legal effects concerning the Subject of Personal Data or similarly affect him / her in a significant measure,
• right to withdraw Consent: You can withdraw Your Consent at any time,
• right to file a complaint: If Your request was not satisfied, You could file a complaint to the regulatory body of the National Supervisory Authority for the Processing of Personal Data or competent courts, to the extent You deem necessary.

To exercise Your rights, please contact Us using the following email address:

board-assistant@plainandsimplesolution.com.

Please note that before providing the information according to Your request, We may ask You to provide additional Data to confirm Your identity. This is a security measure to ensure that Personal Data is not disclosed to any person who has no right to receive it.
In the event that We receive Your request, We will endeavor to respond as soon as possible, but no later than 30 (thirty) calendar days from the date of receipt of the request.

10. Cookies

10.1. What are Cookies?

Cookies are small text files or pieces of program code that are stored on Your device when You access and use the Power-Up. These files typically contain a unique identifier and basic information about how the Power-Up is used. Cookies are transmitted via a server and stored locally to improve functionality, maintain security, and provide a consistent user experience across sessions.

Cookies do not contain malware or spyware, cannot execute programs, and do not access other data stored on Your device. They are passive technologies used strictly for system-related purposes, helping Us to ensure that Our service runs efficiently, securely, and as expected.

Depending on their duration, Cookies can be:

• session Cookies, which are deleted once You close the Power-Up,
• persistent Cookies, which remain stored on Your device for a limited period and support consistent operation between sessions.

We use only essential (strictly necessary) Cookies, which are required to operate the Power-Up and ensure core functionality such as secure authentication, maintaining session integrity, and adapting to system environments. These Cookies do not track Your behavior and are not used for advertising or analytics.

In order to obtain additional general information about Cookies, You can check out information about HTTP Cookies, which is available at the following link.

10.2. Consent to the use of Cookies

Because We only use strictly necessary Cookies that are essential for the functioning of the Power-Up, We do not request Your prior Consent. These Cookies are exempt from Consent requirements under the EU ePrivacy Directive and applicable data protection laws, including the GDPR, as they are required for the operation of the service requested by the User.

You may, however, configure Your browser settings to block or delete these Cookies at any time. Please note that doing so may affect the availability or proper functioning of certain core Features of the Power-Up.

10.3. The types of Cookies We collect:

We use only the following category of Cookies:

• strictly necessary Cookies – these are essential to enable basic operations of the Power-Up. Without them, certain Features or services You request may not be available or may function improperly. These Cookies support session control, security Features, and load balancing, among other core functionalities.

10.4. The purposes of collecting Cookies.

The essential Cookies We use serve the following legitimate purposes:

• supporting secure and authenticated session management,
• enabling navigation and the proper rendering of interface components,
• ensuring compatibility with the User’s device and operating system,
• preventing fraudulent or unauthorized access;
• maintaining the availability and technical performance of the Power-Up.

These Cookies are necessary for delivering the Features as intended and for maintaining the stability and safety of the environment.

10.5. Services used to collect Cookies

We do not use third-party tools, plugins, or services to set or collect Cookies. All Cookies are set directly by the Power-Up and used solely for technical purposes. No external platforms (such as advertising, analytics, or tracking providers) are involved in Our Cookie-related operations.

10.6. How You can manage Cookies settings?

You can manage and control the privacy Cookies settings through Your desktop browser’s privacy or security settings.

To manage tracking and Data collection on different desktop browsers:

• For Chrome: Go to Settings > Privacy and Security > Cookies and other site data to set Your preferences for cookies and tracking data.
• For Firefox: Navigate to Settings > Privacy & Security and adjust options under Cookies and Site Data to control Data collection.
• For Safari: Go to Preferences > Privacy and configure cookie management settings according to Your preferences.

For additional information about managing website tracking and Сookie settings, You can visit Your browser’s support page.

PLEASE NOTE THAT CHANGES TO THE TRACKING AND DATA COLLECTION SETTINGS MAY RESULT IN LIMITED FUNCTIONALITY OF THE POWER-UP, WHICH COULD IMPACT YOUR USER EXPERIENCE.

11. External links

Please note that within Trello boards and cards where Our Power-Up is used, Users may include or share external links to websites, platforms, or third-party resources that are not under Our control. These links may appear in comments, descriptions, attachments, or other fields available in Trello.

We are not responsible for the content, Data practices, or privacy policies of such third-party websites or services. The inclusion of any external link does not imply Our endorsement or affiliation with the linked entity, unless expressly stated.

We strongly recommend that You review the privacy policies and terms of use of any third-party sites You visit via such links, as they may collect and Process Your Personal Data independently from Our Power-Up.

If You believe that a posted link is harmful, abusive, or violates this Policy, please contact Our support team so We may review the matter.

12. Dispute Resolution

Before filing a claim in court in disputes arising from the relationship between the User and Us, it is mandatory to submit a claim (a written proposal for voluntary settlement of the dispute). The recipient of the claim shall, within 30 (thirty) calendar days from the date of receipt of the claim, notify the applicant of the claim in writing about the results of the consideration of the claim.

In case of failure to reach a compromise, the dispute will be referred to the competent court of Greece. The Policy is governed by and interpreted in accordance with the laws of Greece.

13. Changes to the Policy

We have the right to make changes to this Policy at any time and for any reason by posting a new version of the Policy at the above link. We strongly recommend that You check the Policy and the date of the last change from time to time to stay informed of the latest changes.

If You do not agree with any changes made to the Policy, You must stop using the Power-Up, and You can also request the deletion of Your Personal Data.

Users will be notified of any planned changes to the Policy at least 15 (fifteen) days prior to the changes taking effect and, if necessary, ask for Your Consent.

14. Contact information

If You have any comments, doubts, or questions regarding this Policy, please contact Us at

board-assistant@plainandsimplesolution.com.

We will try to answer You as soon as possible, but no longer than within 30 (thirty) calendar days.

15. Additional information for residents of the United States of America

This section applies only if You are a resident of certain U.S. states that have implemented state-level privacy laws. You, as a Subject of Personal Data, have some special privacy rights. To use them, please contact Us at

board-assistant@plainandsimplesolution.com.

Please note! Depending on the state and legislative requirements, We have from 30 (thirty) to 60 (sixty) days to exercise Your request, with the right to postpone it for 30 (thirty) days more.

If Your complaint is not satisfied, You can file a complaint with the Federal Trade Commission.

Also, You may submit a complaint as follows:

• For Colorado residents, to the Colorado AG at: https://coag.gov/file-complaint/
• For Connecticut residents, to the Connecticut AG at: https://www.dir.ct.gov/ag/complaint/
• For Montana residents: https://dojmt.gov/consumer/
• For Oregon residents: https://justice.oregon.gov/consumercomplaints/
• For Texas residents: https://oag.my.salesforce-sites.com/CPDOnlineForm
• For Utah residents: https://attorneygeneral.utah.gov/contact/complaint-form/
• For Virginia residents, to the Virginia Attorney General at: https://www.oag.state.va.us/consumercomplaintform
• For residents of Florida at: https://www.myfloridalegal.com/consumer-protection/consumer-complaint-form 

Your rights vary depending on the laws that apply to You, but may include:

Access to specific Data and the right to transfer Data

With certain exceptions, if You are a resident of the state of California, USA, You have the right to request a copy of the Personal Data (defined as Personal information for the purposes of this section) We have collected about You in the 12 (twelve) months prior to Your request. After receiving Your request and establishing Your identity, We will inform You of:

– categories of Personal information that We have collected about You,

– Our business or commercial purpose for collecting such Personal information,

– categories of Third Parties with whom We share this Personal information.

Also, if You are an Oregon resident, Delaware, Minnesota (effective from 31/07/2025), Maryland (effective from 01/10/2025) You also have the right to receive a list of the specific Third Parties to which We have disclosed Personal Data in Our capacity as a Controller, provided that We are not required to disclose its trade secrets.

To exercise Your rights, You may submit the request by sending an email to:

board-assistant@plainandsimplesolution.com.

We will ensure that Your request is processed in accordance with the relevant legal requirements. We may require specific information from You to help Us confirm Your identity and process Your request. You have the right not to be discriminated against for exercising any of Your rights.

Non-discrimination

We will not discriminate against You for exercising Your rights related to the Processing of Your Personal information, as well as Your right to refuse to receive Our Features in the future, or for refusing to receive further marketing, informational / advertising materials from Us.

Do not sell and share my Personal information

Under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), California residents have the right to opt out of the “sale” or “sharing” of their Personal information. “Sale” refers to the disclosure of Personal information to a third party for monetary or other valuable consideration. “Sharing” refers to the disclosure of personal information for cross-context behavioral advertising.

We do not sell or share Your Personal information as those terms are defined under the CCPA and CPRA. We do not use any third-party advertising or analytics services, and We do not disclose Your Data to third parties for marketing purposes. The only third party with access to Personal Data is Our payment Processor (Stripe), which acts solely as a service provider on Our behalf and does not use Your Data for any purpose other than Processing transactions.

If You are a resident of California or any U.S. state that grants similar rights, and You would like to ensure Your preference is recorded, You may contact us at

board-assistant@plainandsimplesolution.com. We will log Your request and confirm that Your information is not being sold or shared.

We do not collect sensitive Personal information as defined under the CCPA.

COPPA (Children Online Privacy Protection Act)

When it comes to the collection of Personal information from children under 13, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, the nation’s consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online.

Fair Information Practices

The Fair Information Practices Principles form the backbone of privacy law in the United States, and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect Personal Data.

In order to be in line with Fair Information Practices We will take the following responsive action, should a data breach occur:

– We will notify the Users via Website notification within 7 (seven) business days.

We also agree to the individual redress principle, which requires that individuals have a right to pursue legally enforceable rights against data Collectors and Processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or a government agency to investigate and / or prosecute non-compliance by Data Processors.

16. Additional information for residents of Canada

This section applies only to residents of Canada. The Company Processes Personal Data in accordance with the Personal Information Protection and Electronic Documents Act, Personal Information Protection Act of British Columbia, Personal Information Protection Act of Alberta, and Act respecting the protection of Personal information in the private sector of Quebec have the right to interact with its data directly or through a request to Us regarding privacy issues.

This section describes the privacy rights of Canadian residents and how they can exercise them:

To exercise Your rights, contact Us at the following email address:

board-assistant@plainandsimplesolution.com. We have 30 (thirty) calendar days to exercise Your request from the moment it is received on Our contact email. 

We have the right to extend the 30-day period for providing an answer to the request for another 30 (thirty) calendar days in the event that:

• failure to respond within the initial 30 (thirty) calendar days may be considered unreasonable interference with Our business,
• We need additional time for consultation,

• We need additional time to convert the Personal Data into a format that is easy to read.

You have the right to file a complaint with the Office of the Privacy Commissioner of Canada (OPC) if We do not respond to Your request within the first 30 (thirty) days.

In the event of a leak of Your Personal Data, We will promptly notify You of such a case and the degree of threat to Your Personal Data. In accordance with PIPEDA, We will immediately notify the Office of the Privacy Commissioner of Canada (OPC) and keep a record of the leak that has occurred.

We may disclose Personal Data to third-party service providers and related corporations located outside of Canada for the purposes described in the Policy. The Policy requires that the Company share Your Personal Data abroad in a manner that requires the highest standards of confidentiality and security when transferring Personal Data abroad. Please note that when Personal Data is transferred abroad, it may be accessed by courts, law enforcement agencies, and national security agencies. Before disclosing Personal Data, We will assess possible risks that may adversely affect the protection of Personal Data. We ensure the appropriate level of integrity and protection of Personal Data when transferred to Third Parties, which is required by the provisions of PIPEDA, by entering into agreements with such companies, which provide for the limitation of the use of Personal Data by the Third Party solely for the purposes provided for in the agreement.

Accountability

The Company is accountable for all Personal Data in Our possession or control. We have established policies and procedures aimed at protecting the Personal Data of Users, Our clients and personnel. We have appointed a Privacy Officer to oversee privacy issues for the Company. We have also educated Our personnel about the Privacy Policy and their role in protecting the Personal Data of Users, Our clients, and personnel. 

If You have questions about Our privacy practices, You are free to contact the Privacy Officer at

board-assistant@plainandsimplesolution.com.

17. Additional information for residents of Australia

This section applies only to residents of Australia. The Company Processes Personal Data in accordance with the Australian Privacy Act 1988 (“APA”) and the Data Breach Notification Guidelines (2018).

Prior to Processing Your Personal Data, the Company will inform You of the Personal Data Controller, the basis and purpose of the Processing, and whether Your Personal Data will be transferred outside of Australia. The Company will not Process “sensitive data” without Your prior Consent. 

The Company will not send You marketing emails without Your Consent. 

We may disclose Personal Data to third-party service providers and related corporations located outside of Australia for the purposes set out in this Policy. It is the Company’s policy that the Company shares Your Personal Data overseas in a manner that requires the strictest privacy and security standards while transporting Personal Data overseas.

In the event of a breach of Your Personal Data, We will promptly notify You of such a breach and the extent of the threat to Your Personal Data. In accordance with the APA, We will immediately notify the Office of the Australian Information Commissioner (OAIC) of such a breach.

To request information about what Personal Data We are Processing about You, please contact Us at

board-assistant@plainandsimplesolution.com. 

18. Additional information for residents of Ukraine

The conditions of this section apply only to residents of Ukraine, which is contained in the Privacy Policy and relates to specific requirements, in accordance with the provisions of the legislation of Ukraine, in particular, the Law of Ukraine “On Personal Data Protection” №2297-VI dd. 01.06.2010.

Each User’s personal non-proprietary rights regarding Personal Data are inalienable and inviolable. 

The User, resident of Ukraine, has the following rights in relation to the provided Personal Data:

– to know about the sources of collection, location of the provided Personal Data, purposes of their Processing, and location of the Company,

– to receive information about the conditions for providing access to Personal Data, in particular, information about Third Parties to whom Your Personal Data is transferred,

– to access his / her Personal Data,

– to receive, no later than 30 (thirty) calendar days from the date of receipt of the request, except in cases provided for by law, a response on whether his or her Personal Data is Processed, as well as to receive the content of such Personal Data,

– to submit a reasoned request to the Controller with an objection to the Processing of his / her Personal Data,

– to submit a reasoned request to change or destroy his / her Personal Data by the Company if this Data is Processed illegally or is unreliable,

– to protect his / her Personal Data from unlawful Processing and accidental loss, destruction, damage due to intentional concealment, failure to provide or untimely provision, as well as to protect against the provision of information that is inaccurate or discrediting the honor, dignity and business reputation of the User,

– to file complaints about the Processing of Personal Data to the Ukrainian Parliament Commissioner for Human Rights or to the court,

– to apply legal remedies in case of violation of the legislation on the protection of Personal Data,

– to make warnings regarding the restriction of the right to Process his / her Personal Data when giving Consent,

– if We Process Your Personal Data on the basis of the User’s prior Consent to this Processing – to withdraw the Consent to the Processing of Personal Data, after which such Processing will cease,

– if the Personal Data is exclusively Processed automatically, including profiling, which may have legal consequences for the User – to receive protection from an automated decision.

In order to exercise any of the above rights, the User shall contact the Company in writing at the following email address:

board-assistant@plainandsimplesolution.com. 

The Subject of Personal Data is obliged to submit a request for access to Personal Data to the Controller, in accordance with the requirements provided for in part 3 of article 16 of the Law of Ukraine “On Personal Data Protection” №2297-VI dd. 01.06.2010. The period for examining the request for its satisfaction will not exceed 10 (ten) business days from the date of its receipt. During this period, the Controller will inform the User submitting the request that the request will be granted, or the relevant Personal Data will not be provided, indicating the grounds specified in the relevant regulatory legal act. The request shall be satisfied within 30 (thirty) calendar days from the date of its receipt, unless otherwise provided by law.

The Controller will notify the Ukrainian Parliament Commissioner for Human Rights of the Processing of Personal Data that poses a particular risk to the rights and freedoms of Personal Data Subjects within 30 (thirty) business days from the date of commencement of such Processing.