Privacy Policy

Controller and contacts

Controller

Bruno Domingo

Privacy

privacy@pecpilot.com

Security

security@pecpilot.com

Privacy role

The customer is controller for mailbox and document content; PECPilot acts as processor on customer instructions and as controller for account, security and service operations data.

Data We Process

Account identifiers, tenant metadata, mailbox connection metadata, encrypted mailbox credentials, mail metadata, source messages and attachments imported from connected mailboxes, parsed document metadata, invoices, SDI events, audit logs and operational diagnostics.

Where data is stored

Data is processed and stored on infrastructure located in the European Union.

Why We Process Data

Purposes

Account operation, invite-only onboarding, mailbox synchronization, document detection and parsing, export generation, support, abuse prevention, security monitoring and service reliability.

Legal bases

Contract performance and pre-contractual measures; legitimate interest for security, reliability and abuse prevention; legal obligation where retention or cooperation with authorities is required.

Recipients

Authorized PECPilot operators and the subprocessors listed in the DPA/subprocessors page. Data is not sold.

Subprocessor list

Retention

Account

Account and tenant data is retained for the duration of the beta and for up to 30 days after account closure or the end of the beta, unless a longer retention period is required by law or to establish, exercise, or defend legal claims.

Mailbox configuration

Mailbox configurations and related settings are retained while the account remains active or until disconnection or deletion is requested, subject to the technical time required for removal from active systems and backups.

Imported mail data

Imported PEC messages, attachments, and related metadata are retained while the account remains active or until deletion or disconnection is requested, subject to the technical time required for removal from active systems and backups.

Documents

Derived documents, extracted data, and related events are retained while the account remains active or until deletion or disconnection is requested, subject to the technical time required for removal from active systems and backups.

Sync jobs

Synchronization job data is retained for up to 90 days, unless a longer period is required for technical, security, or legal defense purposes.

Resolved alerts

Resolved operational alerts are retained for up to 90 days, unless a longer period is required for technical, security, or legal defense purposes.

Audit logs

Technical, security, and audit logs are retained for up to 90 days, unless a longer retention period is required by law or to establish, exercise, or defend legal claims.

Backups

Backups are retained for up to 30 days according to the infrastructure provider retention cycle and are overwritten or deleted at the end of the retention period.

Deletion

Mailbox disconnect removes stored mailbox credentials and stops synchronization. Imported mailbox data can be reset from the mailbox detail page; optional object purge removes stored source files for that mailbox scope. Residual backups expire through the backup retention window.

End of beta

At the end of the beta, PECPilot will either ask the customer to opt in to continued service or schedule account closure. If the customer does not continue, mailbox credentials are removed, synchronization stops, exports remain available for a short offboarding window, and imported data is deleted according to the retention and backup windows.

Your Rights

You can request access, correction, deletion, restriction, objection, and portability where applicable. You can lodge a complaint with the competent supervisory authority. Requests: privacy@pecpilot.com