Punapai
Privacy Policy
Last updated: 20 February 2026

1. What This Policy Covers

This Privacy Policy explains what personal data we collect, why we collect it, and how we protect it when you use Punapai ("Service"). We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

GOBYTE SOFTWARE LTD, registered in England and Wales, is the data controller responsible for your data.

2. What Data We Collect

We collect only what we need to run the Service:

  • Account details: your name, email address, and password (stored encrypted — we never see your actual password)
  • Content you create: landing pages, text, images, and other content you build with Punapai
  • Usage information: which features you use and how you interact with the Service
  • Technical information: your IP address, browser type, device, and operating system — collected automatically when you visit
  • Visitor data from your landing pages: if you enable email collection on your pages, we store the email addresses submitted by your visitors on your behalf

3. Why We Collect Your Data

We use your data for these purposes:

  • To run the Service: log you in, save your work, and display your landing pages
  • To improve Punapai: understand how the Service is used so we can make it better
  • To keep things secure: detect and prevent fraud, abuse, and technical issues
  • To communicate with you: send important account updates and respond to your questions

4. Our Legal Basis (UK GDPR)

Under UK GDPR, we must have a lawful reason to process your data. Ours are:

  • Contract: we need your data to provide the Service you signed up for
  • Legitimate interests: to improve the Service, ensure security, and prevent fraud
  • Consent: for optional things like marketing emails (you can opt out at any time)
  • Legal obligation: when the law requires us to process or retain data

5. Who We Share Your Data With

We never sell your personal data. We only share it with:

  • Service providers: companies that help us run Punapai (hosting, email delivery, analytics) — they only access data needed to do their job
  • Law enforcement: only when legally required

6. International Transfers

If your data is transferred outside the UK (for example, to cloud servers), we make sure it is protected using Standard Contractual Clauses approved by the ICO.

7. How Long We Keep Your Data

Your account data: we keep it for as long as your account is active. If you delete your account, we remove your personal data within 30 days, except where we are legally required to keep it longer.

Visitor data collected through your landing pages: if you use the email collection feature on your landing pages, the email addresses collected from your visitors are stored on our servers. For free accounts, collected email addresses are automatically deleted 30 days after the associated project expires. It is your responsibility to export any collected data before expiration.

Expired project data: when a free plan project expires, all associated data — including landing page content, uploaded assets (images, files), and collected visitor email addresses — is permanently deleted.

8. Your Rights

You have the following rights over your data under UK GDPR:

  • See your data: request a copy of the personal data we hold about you
  • Fix your data: ask us to correct anything that is wrong
  • Delete your data: ask us to erase your personal data
  • Limit processing: ask us to temporarily stop using your data
  • Take your data: receive your data in a portable format
  • Object: tell us to stop processing your data for a specific purpose
  • Withdraw consent: if you previously gave consent, you can take it back at any time

To exercise any of these rights, email us at stefanos@gobyte.software.

9. Cookies

We use essential cookies to keep you logged in and the Service working. We may also use analytics cookies to understand usage patterns. You can control cookies through your browser settings.

10. How We Protect Your Data

We use industry-standard security measures to protect your data, including encryption, secure servers, and access controls. No system is 100% secure, but we take reasonable steps to keep your information safe.

11. Changes to This Policy

We may update this policy from time to time. If we make significant changes, we will notify you by email or through the Service.

12. Complaints

If you are not happy with how we handle your data, you can complain to the Information Commissioner's Office (ICO) at ico.org.uk.

13. Get in Touch

For any privacy questions, email us at stefanos@gobyte.software.

GOBYTE SOFTWARE LTD, registered in England and Wales.

Back to registration
Back to home