Effective date: June 10, 2023

Last updated: March 27, 2026

Privacy Policy

Contents

  1. Introduction
  2. Data Controller
  3. Categories of Personal Data
  4. Principles of Data Processing
  5. Purpose of Data Processing
  6. Legal Basis for Processing
  7. Analytics
  8. Cookies
  9. Data Retention
  10. Data Sharing
  11. International Data Processing
  12. Security Measures
  13. Rights of Individuals
  14. Withdrawal of Consent
  15. Data Request Procedure
  16. Automated Decision-Making
  17. External Links
  18. Changes to This Policy
  19. Contact

1. Introduction

This Privacy Policy explains how ToyLess.dev (“the Website”, “we”, “us”, or “our”) collects, processes, and protects personal data when individuals visit the website or communicate through its available forms.

ToyLess.dev provides web development services including website creation, technical maintenance, optimization, and full-cycle development of digital products.

This Privacy Policy applies to all visitors and individuals interacting with the website.

2. Data Controller

The controller responsible for processing personal data on this website is:

ToyLess.dev Contact email: hello@toyless.dev

The controller determines the purposes and means of processing personal data.

3. Categories of Personal Data

Information provided directly by users

When submitting a contact request:

  • name
  • email address
  • message content

When subscribing to updates:

  • email address

Automatically collected information

When visiting the website certain technical information may be collected automatically, including:

  • IP address
  • browser type and version
  • operating system
  • device type
  • pages visited
  • date and time of the visit
  • referring source

This information is used for technical diagnostics, website performance monitoring, and analytics.

4. Principles of Data Processing

Personal data is processed according to generally accepted data protection principles including:

Lawfulness, fairness and transparency - personal data is processed in a lawful and transparent manner.

Purpose limitation - data is collected for specified and legitimate purposes and is not further processed in a manner incompatible with those purposes.

Data minimization - only personal data necessary for the intended purposes is collected.

Accuracy - reasonable steps are taken to ensure personal data remains accurate and up to date.

Storage limitation - data is retained only for as long as necessary for the stated purposes.

Integrity and confidentiality - appropriate technical and organizational measures are implemented to protect personal data.

5. Purpose of Data Processing

Personal data may be processed for the following purposes:

  • responding to inquiries submitted through the website
  • communicating with potential clients regarding web development services
  • providing information about services
  • maintaining communication with website visitors
  • sending updates or informational communications when users subscribe
  • improving website performance, security, and usability
  • analyzing aggregated website usage patterns

6. Legal Basis for Processing

Personal data may be processed based on one or more of the following legal grounds:

Consent - when users voluntarily submit personal information through forms or subscribe to updates.

Legitimate interests - to operate, maintain, secure, and improve the website.

Pre-contractual communication - when users contact the website regarding potential services.

7. Analytics

The website may use Vercel Analytics to obtain aggregated information about website usage.

Vercel Analytics provides privacy-oriented analytics and does not rely on tracking cookies or persistent user identification.

The collected data is used solely to understand general usage patterns and improve website functionality.

8. Cookies

The website may use limited technical mechanisms required for the proper functioning of the website infrastructure.

At the time of publication of this Privacy Policy, the website does not intentionally use tracking or marketing cookies.

If cookies or similar technologies are introduced in the future, this Privacy Policy may be updated accordingly.

9. Data Retention

Personal data is retained only for the period necessary to fulfill the purposes described in this Privacy Policy.

Typical retention practices include:

  • contact inquiries — retained as long as necessary to respond and maintain communication
  • newsletter subscriptions — retained until the user unsubscribes or requests deletion
  • technical and analytics data — retained in aggregated or anonymized form for statistical purposes

10. Data Sharing

Personal data is not sold or transferred to third parties for marketing purposes.

However, certain service providers may process data to support the operation of the website, including:

  • hosting and infrastructure providers
  • analytics services
  • technical service providers

Such providers process personal data only to the extent necessary to provide their services.

11. International Data Processing

Services supporting the operation of the website may rely on infrastructure located in multiple jurisdictions.

Where such processing occurs, reasonable measures are applied to ensure appropriate protection of personal data.

12. Security Measures

Technical and organizational safeguards are implemented to protect personal data from unauthorized access, misuse, loss, or disclosure.

These safeguards include:

  • encrypted HTTPS communication
  • secure hosting infrastructure
  • restricted access to stored data
  • monitoring for unauthorized activity

Additional information about security practices may be available in the Data Protection section of this website.

13. Rights of Individuals

Individuals may have certain rights regarding their personal data under applicable data protection regulations, including the General Data Protection Regulation (GDPR).

These rights may include:

  • the right to access personal data
  • the right to request correction of inaccurate data
  • the right to request deletion of personal data
  • the right to restrict processing
  • the right to object to certain types of processing
  • the right to request data portability where applicable
  • the right to lodge a complaint with a supervisory authority

14. Withdrawal of Consent

Where personal data is processed based on consent, individuals may withdraw their consent at any time.

Withdrawal of consent does not affect the lawfulness of processing carried out before the withdrawal.

Requests to withdraw consent may be submitted using the contact information provided in this Privacy Policy.

15. Data Request Procedure

Requests regarding personal data may be submitted by contacting the email address listed in this Privacy Policy.

To process such requests, it may be necessary to verify the identity of the requester to prevent unauthorized disclosure of personal data.

Requests may include:

  • access to stored personal data
  • correction of inaccurate information
  • deletion of personal data
  • restriction of processing where applicable

Requests will be reviewed and addressed within a reasonable timeframe.

16. Automated Decision-Making

The website does not perform automated decision-making or profiling that produces legal or similarly significant effects on individuals.

17. External Links

The website may contain links to external websites or services.

ToyLess.dev does not control and is not responsible for the privacy practices of third-party websites.

Users are encouraged to review the privacy policies of those websites.

18. Changes to This Policy

This Privacy Policy may be updated periodically to reflect operational, legal, or technical changes.

The updated version will be published on this page with a revised Last updated date.

19. Contact

For questions regarding this Privacy Policy or requests concerning personal data, please contact:

Email: hello@toyless.dev