Pocket Terminal LogoPocket Terminal
Legal

Privacy Policy

Last updated: March 29, 2025

This Privacy Policy explains how Simlina OÜ ("we", "us", "our"), the company behind Pocket Terminal, collects, uses, and protects personal data when you use our website at pocketterminal.com and the Pocket Terminal platform. We are committed to complying with the EU General Data Protection Regulation (GDPR).

1. Data Controller

The data controller responsible for your personal data is:

Simlina OÜ
Tallinn, Estonia
Email: support@pocketterminal.com

2. What Data We Collect

2.1 Account Data

When you create a Pocket Terminal account, we collect your email address. This is required to create and identify your account and to communicate with you about the service.

2.2 Business & Transaction Data

Data you enter into the Pocket Terminal platform — such as product listings, inventory records, sales transactions, and staff information — is stored and processed to provide the service. This data belongs to you and is never shared with third parties for their own purposes.

2.3 Payment Data

Subscription payments are processed by Stripe. We do not store your full card number, CVV, or other sensitive payment credentials on our servers. Stripe's handling of your payment data is governed by the Stripe Privacy Policy.

2.4 Technical & Log Data

We may collect standard server logs including IP addresses, browser type, and access timestamps for security and operational purposes. This data is not used for tracking or profiling.

3. How We Use Your Data

We use your personal data for the following purposes:

  • To provide and maintain the service — account creation, authentication, and access control.
  • To communicate with you — transactional emails such as account confirmations, billing receipts, and service alerts.
  • To process payments — via Stripe for subscription billing.
  • To ensure security — detecting and preventing fraudulent or abusive activity.
  • To improve the service — aggregated, anonymized usage analytics to understand how features are used.

4. Legal Basis for Processing (GDPR)

We rely on the following legal bases under GDPR Article 6:

  • Contract performance (Art. 6(1)(b)) — processing your email address and business data is necessary to provide the Pocket Terminal service you have signed up for.
  • Legitimate interests (Art. 6(1)(f)) — server log data for security and fraud prevention.
  • Legal obligation (Art. 6(1)(c)) — retaining billing records as required by applicable law.

5. Cookies

Pocket Terminal uses session cookies solely to keep you logged in to your account. These cookies are strictly necessary for the service to function and do not track your activity across other websites. We do not currently use advertising, analytics, or third-party tracking cookies.

You can delete cookies via your browser settings at any time. Doing so will log you out of your account.

6. Data Sharing & Third Parties

We do not sell, rent, or share your personal data with third parties for marketing purposes. We use the following third-party processors:

  • Stripe — payment processing. Stripe is certified to PCI DSS Level 1 and operates under GDPR-compliant data processing agreements.
  • Cloud infrastructure providers — servers used to host and store application data, selected to meet GDPR requirements including data processing agreements.

7. Data Retention

We retain your account data for as long as your account is active. If you delete your account, your personal data will be removed within 30 days, except where we are required to retain it for legal obligations (e.g. billing records retained for 7 years under Estonian accounting law).

8. International Data Transfers

Simlina OÜ is based in Estonia (EU). Where data is processed by third-party service providers outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission.

9. Your Rights Under GDPR

As a data subject under GDPR, you have the following rights:

  • Right of access — request a copy of the personal data we hold about you.
  • Right to rectification — request correction of inaccurate or incomplete data.
  • Right to erasure — request deletion of your personal data ("right to be forgotten").
  • Right to data portability — receive your data in a structured, machine-readable format.
  • Right to restrict processing — ask us to limit how we use your data.
  • Right to object — object to processing based on legitimate interests.

To exercise any of these rights, contact us at support@pocketterminal.com. We will respond within 30 days.

10. Right to Lodge a Complaint

If you believe your data protection rights have been violated, you have the right to lodge a complaint with the Estonian supervisory authority:

Andmekaitse Inspektsioon (Data Protection Inspectorate)
Website: www.aki.ee
Email: info@aki.ee

11. Data Security

We implement industry-standard security measures including TLS/SSL encryption in transit and encryption at rest. Access to personal data is restricted to authorised personnel only. However, no method of transmission over the internet is 100% secure.

12. Children's Privacy

Pocket Terminal is a business tool intended for use by adults. We do not knowingly collect personal data from individuals under the age of 18. If you believe a minor has submitted data to us, please contact us and we will promptly delete it.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or a prominent notice within the platform. The "last updated" date at the top of this page reflects the most recent revision. Continued use of the service after changes constitutes acceptance of the updated policy.

14. Contact

For any privacy-related questions or requests, please contact:

Simlina OÜ — Pocket Terminal Support
Email: support@pocketterminal.com

Back to Pocket Terminal