Last updated: July 08, 2025

This Privacy Policy describes Our policies and procedures on the collection, use and disclosure of Your information when You use the Service and tells You about Your privacy rights and how the law protects You.

We use Your data to provide and improve the Service. By using the Service, You agree to the collection and use of information in accordance with this Privacy Policy.

Interpretation and Definitions

Interpretation

The words of which the initial letter is capitalized have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.

Definitions

For the purposes of this Privacy Policy:

• Account means a unique account created for You to access our Service or parts of our Service.
• Affiliate means an entity that controls, is controlled by or is under common control with a party, where “control” means ownership of 50% or more of the shares, equity interest or other securities entitled to vote for election of directors or other managing authority.
• Application refers to a software program or SAAS Software provided by the Company downloaded or installed by You.
• Company (referred to as either “the Company”, “We”, “Us” or “Our” in this Agreement) refers to Deview Studios, which is owned by “BuzzMaker” Ltd., a Bulgarian company, registered in the Commercial Register at the Registry Agency with UIC: 206569003, having its seat and registered address at: Republic of Bulgaria, 18 “Mile Popyordanov”’ Street, entrance 1, floor 3, apartment 4, e-mail address: support@deview-studios.com and website: https://deview-studios.com/.
• Cookies are small files that are placed on Your computer, mobile device or any other device by a website, containing the details of Your browsing history on that website among its many uses.
• Country refers to: Bulgaria
• Device means any device that can access the Service such as a computer, a cellphone or a digital tablet.
• Personal Data is any information that relates to an identified or identifiable individual.
• Data is any non-personal information that relates to the work process of an individual or a company represented by an individual. This does not include information that relates to an identified or identifiable individual.
• Service refers to the Application or the Website or both.
• Service Provider means any natural or legal person who processes the data on behalf of the Company. It refers to third-party companies or individuals employed by the Company to facilitate the Service, to provide the Service on behalf of the Company, to perform services related to the Service or to assist the Company in analyzing how the Service is used.
• Usage Data refers to data collected automatically, either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a page visit).
• Website refers to Deview Studios, accessible from https://deview-studios.com
• You means the individual accessing or using the Service, or the company, or other legal entity on behalf of which such individual is accessing or using the Service, as applicable.
• Marketplace is a platform through which the Application can be obtained, installed and licensed.

Collecting and Using Your Information

Types of Data Collected

Personal Data

The Company uses a variety of Personal Data while you interact with the Application, to deliver a better and more relevant experience for you. This is limited to the following list:

• Name – Individual’s name.
• Account name – account names used in the Application or Marketplace.
• E-mail address – Electronic e-mail address

For the following list of Applications, we store personally identifiable data (PII), as described. We ensure that this data is protected and used solely for the purposes described in this Privacy Policy.

• Passwords & Secrets Vault – this includes, all secrets, in encrypted format, that are input in the application’s user interface.
• IMAP Email Connector – this includes all connection settings to IMAP and SMTP accounts, in encrypted format.

Processing of special categories of personal data (“sensitive data”): We do not collect and record special categories of personal data, such as personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, as well as genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person’s sex life or sexual orientation. You shall not provide such sensitive data to the Company. If you negligently or intentionally provide sensitive data to Us, We will immediately delete such data.

Legal basis for the collection and processing of personal data

The legal basis for collecting and processing of the personal data in most cases is one of the following:

• for the realization of the legitimate interests of the Company such as understanding how you use the Application in order to improve the Application. In this case, the Company ensures that the legitimate interests of the Company are not overridden by your interests or fundamental rights and freedoms.
• for the realization of the legitimate interests of the Company, whose legitimate interests are to reply to the received messages, as well as to keep the received messages. In this case, the Company ensures that the legitimate interests of the Company are not overridden by your interests or fundamental rights and freedoms.
• for actions preceding the conclusion of a contract and undertaken at your request, namely providing more information on the services offered by the Company in connection with a possible conclusion of a contract with you.
• for actions preceding the conclusion of a contract and undertaken at your request, namely providing more information on the services offered by the Company in connection with a possible conclusion of a contract with you;
• for fulfilling legal obligations such as the purpose of issuing invoices.

Tracking Technologies and Cookies

We use Cookies and similar tracking technologies to track the activity on Our Service and store certain information. Tracking technologies used are beacons, tags, and scripts to collect and track information and to improve and analyze Our Service. The technologies We use may include:

• Cookies or Browser Cookies. A cookie is a small file placed on Your Device. You can instruct Your browser to refuse all Cookies or to indicate when a Cookie is being sent. However, if You do not accept Cookies, You may not be able to use some parts of our Service. Unless you have adjusted Your browser setting so that it will refuse Cookies, our Service may use Cookies.

Cookies can be “Persistent” or “Session” Cookies. Persistent Cookies remain on Your personal computer or mobile device when You go offline, while Session Cookies are deleted as soon as You close Your web browser. You can learn more about cookies on TermsFeed website article.

We use both Session and Persistent Cookies for the purposes set out below:

• Necessary / Essential Cookies

Type: Session Cookies

Administered by: Us

Purpose: These Cookies are essential to provide You with services available through the Website and to enable You to use some of its features. They help to authenticate users and prevent fraudulent use of user accounts. Without these Cookies, the services that You have asked for cannot be provided, and We only use these Cookies to provide You with those services.

• Cookies Policy / Notice Acceptance Cookies

Type: Persistent Cookies

Administered by: Us

Purpose: These Cookies identify if users have accepted the use of cookies on the Website.

A list of cookies that the We use on this Website is provided in the table below.

Use of Your Information

The Company may use Information for the following purposes:

• To provide and maintain our Service, including to monitor the usage of our Service.
• To manage Your Account: to manage Your registration as a user of the Service. The Data You provide can give You access to different functionalities of the Service that are available to You as a registered user.
• For the performance of a contract: the development, compliance and undertaking of the purchase contract for the products, items or services You have purchased or of any other contract with Us through the Service.
• To contact You: To contact You by email, telephone calls, SMS, or other equivalent forms of electronic communication, such as a mobile application’s push notifications regarding updates or informative communications related to the functionalities, products or contracted services, including the security updates, when necessary or reasonable for their implementation.
• To provide You with news, special offers and general information about other goods, services and events which we offer that are similar to those that you have already purchased or enquired about unless You have opted not to receive such information.
• To manage Your requests: To attend and manage Your requests to Us.
• For business transfers: We may use Your information to evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of Our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which Data held by Us about our Service users is among the assets transferred.
• For other purposes: We may use Your information for other purposes, such as data analysis, identifying usage trends, determining the effectiveness of our promotional campaigns and to evaluate and improve our Service, products, services, marketing and your experience.

We may share Your data in the following situations:

• With Service Providers: We may share Your data with Service Providers to provide services on our behalf, monitor and analyze the use of our Service or to contact You.
• For business transfers: We may share or transfer Your data in connection with, or during negotiations of, any merger, sale of Company assets, financing, or acquisition of all or a portion of Our business to another company.
• With business partners: We may share Your data with Our business partners to offer You certain products, services or promotions.
• With Your consent: We may disclose Your data for any other purpose with Your consent.
• Legal requirements: We may disclose your Data and any other information if required to do so by law.

Some of our solutions might share non-personal data with service providers. The following is a breakdown of service providers per Application. Please note that not all service providers are necessary used for every application.

Issue AI Analytics for Jira Cloud

• Heroku – https://www.heroku.com/
• OpenAI – https://openai.com/
• Microsoft – https://www.microsoft.com/

Wordsmith AI for Confluence Cloud

• Heroku – https://www.heroku.com/
• OpenAI – https://openai.com/

Universal Integration Toolkit for monday.com

• Heroku – https://www.heroku.com/

Business Card Scanner for monday.com

• Heroku – https://www.heroku.com/
• OpenAI – https://openai.com/
• PDF.co – https://pdf.co/

AI Image Scanner for monday.com

• Heroku – https://www.heroku.com/
• OpenAI – https://openai.com/
• PDF.co – https://pdf.co/

PDF Scanner for monday.com

• Heroku – https://www.heroku.com/
• OpenAI – https://openai.com/
• PDF.co – https://pdf.co/

Passwords & Secrets Vault for monday.com

• Heroku – https://www.heroku.com/

Personalized AI Sales Emails for monday.com

• Heroku – https://www.heroku.com/
• OpenAI – https://openai.com/

IMAP Email Connector for monday.com

• Heroku – https://www.heroku.com/

Dynamic Column Values for monday.com

• Heroku – https://www.heroku.com/
• OpenAI – https://openai.com/

Period for which the personal data will be stored

The Company will retain Your Information only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use Your Information to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.

For example:

Inquiries and correspondence by email, the “Support” function: The Company stores the personal data and the communication received by e-mail and the “Support” function of the Application for a period necessary to answer to the received message and to satisfy your request, as well as for one calendar year after the Company has answered to the received message and satisfied your request.

Upon stopping the use of the Application, the Company will minimize the personal data and will keep only such data that is required to keep to comply with laws. In such cases, the Company will store the personal data of the individuals who have used the Application and stopped using the Application for a period of ten years after they have stopped using the Application, which is the term stipulated by law for storing invoices for clients.

In other situations, not specified above, the Company will store the personal data for no longer than needed considering the following criteria, namely: – if the Company is obliged by a legal norm to continue with the processing of the personal data; – if appropriate industry rules exist on the period for which the personal data shall be stored; – purpose for storing of the personal data both currently and in the future; – if the Company and you have concluded an agreement and the Company is obliged to continue to process the personal data in order to comply with the obligations under the agreement; – purposes for using of the personal data currently and in the future; – if it is necessary to contact you in the future; – if the Company has any legal ground to continue to process the personal data; – any other sufficient grounds.

Protection of personal data

The Company undertakes appropriate technical and organizational measures to protect the personal data against accidental or unlawful destruction, or against accidental loss, unauthorized access, alteration, or dissemination, as well as against other unlawful forms of processing, including the following:

• using only secure and protected servers and folders for storing personal data;
• verifying and confirming the identification of the individual inquiring access to his/her personal data before granting access to such personal data;
• the Company provides individuals with a secure connection when sending personal data.

Your rights

Right of access: You have the right to obtain from Us confirmation as to whether or not Your personal data is being processed. If We process Your personal data We shall provide a copy of Your personal data undergoing processing.

Right to rectification: You have the right to obtain from Us without undue delay the rectification of Your inaccurate personal data. Taking into account the purposes of the processing, You have the right to have incomplete personal data completed, including by means of providing a supplementary statement.

Right to erasure (‘right to be forgotten’): You have the right to obtain from Us the erasure of Your personal data without undue delay and We have the obligation to erase Your personal data without undue delay where one of the stated in article 17 of the GDPR grounds applies.

Right to restriction of processing: You have the right to obtain from Us restriction of processing where one of the stated in article 18 of the GDPR grounds applies. If the processing has been restricted, such personal data shall, with the exception of storage, only be processed with Your consent or for the establishment, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State. We will inform You before the restriction of processing is lifted.

Right to data portability: You have the right to receive the Your personal data, which You have provided to Us, in a structured, commonly used and machine-readable format and have the right to transmit those data to another Data Controller without hindrance from the Provided to which the personal data have been provided, if the processing is based on consent or on a contract.

Right to object: You have the right to object on grounds relating to Your particular situation, at any time to the processing of Your personal data. According to Article 21, Paragraph 4 of the GDPR the right to object shall be explicitly brought to Your attention and shall be presented clearly and separately from any other information. For compliance with this obligation, more information about the right to object can be found in the section below titled “Right to object to the processing of personal data”.

Right of withdrawal of consent: You have the right at any time to withdraw the consent You have given. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.

Profiling rights: You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning You or similarly significantly affects You.

Right to be informed about the personal data breach: You have the right to be informed without undue delay about the personal data breach when the personal data breach is likely to result in a high risk to Your rights and freedoms.

Right to lodge a complaint with a supervisory authority: Without prejudice to any other administrative or judicial remedy, You have the right to lodge a complaint with the supervisory authority, in particular in the Member State of Your habitual residence, place of work or place of the alleged infringement if  You consider that the processing of Your personal data infringes the GDPR.

 Right to an effective judicial remedy against a supervisory authority: Without prejudice to any other administrative or non-judicial remedy, You have the right to an effective judicial remedy against a legally binding decision of a supervisory authority concerning You. Proceedings against a supervisory authority shall be brought before the courts of the Member State where the supervisory authority is established.

 Right to an effective judicial remedy against the Controller or processor:  Without prejudice to any available administrative or non-judicial remedy, including the right to lodge a complaint with a supervisory authority, You have the right to an effective judicial remedy where You consider that Your rights under the GDPR have been infringed as a result of the processing of Your Personal Data in non-compliance with the GDPR. Proceedings against Use or a Data processor, acting on Our behalf, shall be brought before the courts of the Member State where We or the Data processor have an establishment. Alternatively, such proceedings may be brought before the courts of the Member State where You have habitual residence.

Right to compensation and liability: If You have suffered material or non-material damage as a result of an infringement of the GDPR, You have the right to receive compensation from Us or Data processor, acting on Our behalf, for the damage suffered. Court proceedings for exercising the right to receive compensation shall be brought before the courts of the Member State where We or the Data processor has an establishment. Alternatively, such proceedings may be brought before the courts of the Member State where You have habitual residence.

In the event that We refuse to fulfill the obligations set forth in para. 3 of Art. 54, Art. 55, para. 3 and 4 and Art. 56, para. 6 and 7 of the Personal Data Protection Act, You have the right to exercise Your rights through the Personal Data Protection Commission.

Procedure to exercise these rights: You can exercise Your right to withdraw the given consent, right of access, right to rectification, right to erasure, right to restriction of processing, right to data portability, right to object and profiling rights, by submitting a written request to Us (either by post at the address specified in Our identification above or by e-mail), which should contain the following information:

1. Your name, address, and other data We need to identify You;
2. a description of the request;
3. a signature, date of submission of the request and e-mail address.

The request shall be filed by You personally. We keep the requests filed by the individuals in a separate register. When You exercise the right of access to Your personal data We shall verify Your identity before responding to the request. This is necessary to minimize the risk of unauthorized access and identity theft. If We cannot identify You from the collected information, then We have the right to require a copy of Your documentation (such as Your ID card, driving license and other documents containing personal data that identify You) in order to verify the Your identity. We will consider Your request and provide You with the information on action taken on Your request within one month of receipt of the request. This period may be extended by two months where necessary, taking into account the complexity and number of the requests. We shall inform You of any such extension within one month of receipt of the request, together with the reasons for the delay. Where You make the request by electronic form means, the information shall be provided by electronic means where possible, unless otherwise requested by You. In case We do not take action on Your request, We shall inform You without delay and at the latest within one month of receipt of the request of the reasons for not taking action and the possibility of lodging a complaint with a supervisory authority and seeking a judicial remedy. We shall communicate any rectification or erasure of personal data or restriction of processing to each recipient to whom the personal data have been disclosed unless this proves impossible or involves disproportionate effort.

Right to object to processing of personal data

You have the right to object on grounds relating to Your particular situation, at any time to the processing of Your Personal Data. According to Article 21, Paragraph 4 of the GDPR the right to object shall be explicitly brought to Your attention and shall be presented clearly and separately from any other information. For compliance with this obligation, more information about the right to object will be provided in this section of the Privacy Policy.

You have the right to object on grounds relating to Your particular situation, at any time to processing of Your personal data which is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in Us or processing is necessary for the purposes of Our legitimate interests or by a third party, except where such interests are overridden by the Your interests or fundamental rights and freedoms which require protection of Your personal data, in particular where You are a child, including profiling based on any of these provisions. We shall no longer process Your personal data unless We demonstrate compelling legitimate grounds for the processing which override Your interests, rights and freedoms or for the establishment, exercise or defence of legal claims. You can exercise this right by submitting a written request to Us, either by post at the address specified in Our identification above or by e-mail.

Where personal data are processed for direct marketing purposes, You have the right to object at any time to the processing of Your personal data for such marketing, which includes profiling to the extent that it is related to such direct marketing. Where You object to processing for direct marketing purposes, Your personal data shall no longer be processed for such purposes. You can exercise this right by submitting a written request to Us, either by post at the address specified in Our identification above or by e-mail requiring Us to stop sending You marketing information or by clicking the unsubscribe link contained at the bottom of the e-mail We send You.

Compliance with the CCPA

The practices of the Company comply with the California Consumer Privacy Act of 2018 (CCPA). Under the CCPA, We identify ourselves as a Business (“data controller” under the GDPR) when We process personal data of California consumers for Our own purposes. We do not sell personal information of individuals.

Disclosure of Your Data

Business Transactions

If the Company is involved in a merger, acquisition or asset sale, Your Information may be transferred. We will provide notice before Your Information is transferred and becomes subject to a different Privacy Policy.

Law enforcement

Under certain circumstances, the Company may be required to disclose Your Information if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency).

Other legal requirements

The Company may disclose Your Information in the good faith belief that such action is necessary to:

• Comply with a legal obligation
• Protect and defend the rights or property of the Company
• Prevent or investigate possible wrongdoing in connection with the Service
• Protect the personal safety of Users of the Service or the public
• Protect against legal liability

Children’s Privacy

Our Service does not address anyone under the age of 14. We do not knowingly collect identifiable information from anyone under the age of 14. If You are a parent or guardian and You are aware that Your child has provided Us with Information, please contact Us. If We become aware that We have collected Information from anyone under the age of 14 without verification of parental consent, We take steps to remove that information from Our servers.

If We need to rely on consent as a legal basis for processing Your information and Your country requires consent from a parent, We may require Your parent’s consent before We collect and use that information.

Links to Other Websites

Our Service may contain links to other websites that are not operated by Us. If You click on a third party link, You will be directed to that third party’s site. We strongly advise You to review the Privacy Policy of every site You visit.

We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.

Changes to this Privacy Policy

We may update Our Privacy Policy from time to time without notice. The new Privacy Policy will be posted on this page when changes occur.

The “Last updated” date at the top of this Privacy Policy will reflect the most recent changes.

You are encouraged to review this Privacy Policy periodically for any updates. Changes to this Privacy Policy are effective immediately upon posting on this page.

Contact Us

If you have any questions about this Privacy Policy, You can contact us:

• Through our service desk: https://deview-studios.atlassian.net/servicedesk/customer/portal/2
• By email: support@deview-studios.com
• By submitting a request through the form on our website: https://deview-studios.com/#deview-support