Privacy Policy
Last updated
February 22, 2026
Overview
Struklio operates the marketing website at struklio.com (the “Website”) and the Struklio mobile application available on iOS and Android (the “App”). This Privacy Policy explains what personal data we collect, why we collect it, how we store and protect it, and what rights you have regarding your data. It is written to comply with the EU General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and the disclosure requirements of the Apple App Store and Google Play Store.
Scope
Website
The Struklio marketing website is a static informational site. It does not use cookies, contact forms, user accounts, or third-party analytics scripts. No personal data is collected through this website. We retain only aggregated, anonymous server-level access logs (e.g. page view counts) for capacity planning purposes.
Mobile application
All personal data processing occurs within the Struklio mobile App. When you create an account, build projects, upload content, or interact with features inside the App, we collect and process data as described below. Our legal bases for processing include performance of a contract (providing the service you signed up for), legitimate interest (security monitoring, improving reliability), and consent (optional marketing communications).
Data we collect
| Category | Examples | Purpose | Legal Basis | Retention |
|---|---|---|---|---|
| Account information | Name, email address, profile photo, password (hashed), workspace name and members | Create, authenticate, and secure your account | Contract | Duration of active account + 90 days after deletion |
| User-generated content | App screens, components, design assets, uploaded images and files, project configurations | Provide the app-building functionality you use Struklio for | Contract | Until you delete the content, or account deletion + 30 days |
| Payments & billing | Billing name, invoice history, VAT/tax IDs, subscription plan | Process subscriptions, issue invoices, comply with tax law | Contract / Legal obligation | 7 years after last transaction (tax compliance) |
| Usage data | Features used, session duration, interaction patterns within the App | Improve the product and understand how features are used | Legitimate interest | 24 months in aggregated form |
| Device & diagnostics | Device model, OS version, app version, crash logs, error reports | Maintain reliability, diagnose bugs, and provide technical support | Legitimate interest | 12 months |
| Communications | Support emails, in-app support messages | Respond to your questions and resolve issues | Legitimate interest | Duration of support case + 12 months |
How we use your data
- Provide and operate the App — deliver the features you use to build and manage your mobile app projects.
- Store and sync your content — securely persist your screens, assets, uploaded files, and project data so you can access them across sessions and devices.
- Process payments — manage your subscription, charge applicable fees, and issue invoices.
- Customer support — respond to your questions, troubleshoot issues, and resolve support tickets.
- Security and abuse prevention — monitor for unauthorized access, fraud, and other security incidents.
- Improve the service — analyze aggregated usage patterns to fix bugs, improve performance, and guide product development.
- Service communications — send essential transactional emails such as account confirmations, password resets, billing receipts, and critical service notices (e.g. downtime, security alerts). Marketing emails are only sent with your explicit opt-in consent and you can unsubscribe at any time.
No data collection on the website
The Struklio marketing website does not collect personal data, use cookies, set local storage, or embed third-party tracking or analytics scripts. All personal data processing described in this policy takes place exclusively within the Struklio mobile application.
Data storage and infrastructure
Your data is stored and processed using Amazon Web Services (AWS). Specifically:
- Databases and object storage — your account information, project data, and uploaded files are stored in AWS services (such as Amazon RDS, DynamoDB, and S3) within data centers located in the EU (Stockholm, eu-north-1).
- Backups — encrypted backups of your data are maintained on AWS for disaster recovery purposes and are retained for up to 30 days.
We select AWS services and configurations that meet high standards for data protection, availability, and compliance.
Sharing and third-party processors
We do not sell, rent, or trade your personal data to any third party.
We share data only with the following categories of service providers, solely to the extent necessary to operate the Struklio service:
| Processor | Purpose |
|---|---|
| Amazon Web Services (AWS) | Cloud infrastructure, data storage, backups, computing |
| Payment processor (e.g. Stripe) | Subscription billing and payment processing |
| Email service provider | Transactional and service emails |
Each processor is bound by a Data Processing Agreement (DPA) and is required to handle data in accordance with applicable privacy laws.
We may also disclose personal data if required to do so by law, court order, or governmental authority, or where necessary to prevent fraud or protect the safety of our users.
International transfers
Our primary infrastructure is hosted on AWS in the EU (Stockholm). If you access the App from outside the EU, your data will be transferred to and processed in the EU. For any transfers of personal data outside the European Economic Area, we rely on appropriate safeguards such as the European Commission’s Standard Contractual Clauses (SCCs).
Security
We take reasonable technical and organizational measures to protect your data, including:
- Encryption of data in transit (TLS) and at rest (AES-256 via AWS).
- Secure password hashing using industry-standard algorithms.
- Role-based access controls limiting who within our team can access user data.
- Regular security reviews of our infrastructure and application code.
- Automated monitoring and alerting for unusual activity.
No system is 100% secure. If we become aware of a data breach affecting your personal information, we will notify you and relevant authorities as required by applicable law.
Your rights
Depending on your jurisdiction, you may have the following rights regarding your personal data:
- Access — request a copy of the personal data we hold about you.
- Rectification — ask us to correct inaccurate or incomplete data.
- Deletion — request that we delete your personal data. You can also delete your content directly within the App at any time.
- Restriction — ask us to limit how we process your data in certain circumstances.
- Objection — object to processing based on legitimate interest.
- Data portability — receive your data in a structured, machine-readable format.
- Withdraw consent — where processing is based on consent, you may withdraw it at any time.
- Complaint — lodge a complaint with your local data protection supervisory authority.
To exercise any of these rights, email us at privacy@struklio.com with your account email address. We will respond within 30 days.
Data retention
We retain your personal data only for as long as necessary to fulfill the purposes described in this policy. When you delete content in the App, it is removed from our active databases. Backups containing deleted data are purged within 30 days. If you delete your account, all associated personal data is removed within 90 days, except where longer retention is required by law (e.g. financial records).
Children
Struklio is not directed at children under the age of 16. We do not knowingly collect personal data from anyone under 16. If we discover that a child under 16 has created an account, we will promptly delete the account and all associated data. If you believe a child under 16 is using Struklio, please contact us at privacy@struklio.com.
Changes to this policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we will notify you by posting the updated policy on this page and, where appropriate, via an in-app notification or email. We encourage you to review this page periodically. The “Last updated” date at the top indicates when the most recent changes were made.
Contact
If you have any questions about this Privacy Policy or how we handle your data:
- Email: privacy@struklio.com
- Company: Struklio
This policy applies to the Struklio website and mobile application. By using our services, you acknowledge that you have read and understood this Privacy Policy.