Privacy Policy

Last update: 28.02.2024


This Privacy Policy describes how the “StartupSoft LLC” (hereinafter – the “Team”, “We”, “Our” and “Us”) may use your personal data (sometimes referred to as «personal information», «personally identifiable information» or «PII»), and provides information about your rights in relation to personal data (hereinafter – the “Privacy Policy”) in a situation when you visit our website (available at, or when you contact Us, or visiting Our social media profiles: LinkedIn, X, Instagram, Medium and Facebook. Hereinafter, visitors of our website and social media profiles are collectively referred to as “User(s)”.

StartupSoft LLC, the owner and operator of the website: (hereinafter – the “Website”). We are the “Controller” of the User(s) personal data (1) when We provide the following services to the User(s): Product Development Outsource, Product Development Outstaff, QA, UI/UX, and other custom service packages (collectively, the “Services”), (2) when contacting potential Our User(s) who are interested in Our Services, and (3) when the User(s) interacts with our Website.

We are required under data protection legislation to notify Our User(s) of the information contained in this Privacy Policy. This Privacy Policy does not in any way imply the conclusion of a principal cooperative agreement or any other relationship between Us and the User(s).

The legal basis for Our Privacy Policy is set forth in the section “GROUNDS FOR COLLECTION OF PERSONAL DATA”.

Please read Our Privacy Policy carefully to get a clear understanding of how we collect, use, protect, or otherwise handle your personally identifiable information in accordance with our Website.

Notice: Our Website may contain links to other websites that are not operated by Us. If a User(s) clicks on a third-party link on Our Website, such User(s) will be directed to that third-party’s website. We strongly recommend that the User(s) review the privacy policy of each website that the User(s) visit. We have no control over and assume no responsibility for, the content, privacy policies, or practices of any third-party websites and/or services located outside Our Website.


The terms used, such as “controller”, “processor”, “third-party”, “personal data breach”, “personal data” or their “processing”, refer to the definitions in Article 4 of the GDPR.

The term “User” covers all categories of persons affected by data processing. These include our business partners, customers, potential customers, suppliers and other visitors to Our Website. The terms used, such as “Users” are to be understood gender-neutral.


The User(s) directly provide Us with most of the personal data we collect. We collect and process the following personal data:

  • Personal data: We do not collect personal data such as name, date of birth, personal email address, telephone number, company name and Curriculum Vitae (in the case of employment), when the User(s) visits our Website, unless the User(s) intentionally provide them through the contact forms for communication with us (for more details, see the “Contact Us” section) and hereby give full consent to the collection and processing of the User’s personal data. We will use this personal data to respond to such User’s request and subsequently send the User several promotional or informational emails regarding Our Services. If the User(s) do not wish to receive such emails, an unsubscribe option will be provided in the email or, if the User(s) wishes, may send an email with a request to [email protected]. Sometimes, we also collect and process personal data that is public knowledge about a certain User(s) during a personal research process of the User(s) on LinkedIn or another social network.
  • Non-personally identifiable information (such as the type of browser, referring website, date, and time of each User request, and other log data). Our purpose in collecting such information is to better understand how our Website is used and to maintain its proper functionality and usefulness for each User(s).


When the User uses Our Website, browses Our Services, and uses the available systems (in particular, to create contact requests sent via the contact form), so-called “cookies”* are created when the User browses these web pages.

*These are text files of small size that are stored the User’s device, through which the User browses the websites. They are commonly used to ensure the operation of websites and other services provided over the Internet, and to improve and develop these websites, which is done by reading the contents of these files.

We collect information contained in “cookies”, such as the date of the User’s connection to the Website or the IP-address of the device from which the User connects to the Website, which is data that shows how the User(s) use Our Websites. This information is used for administrative and statistical purposes and aimed at improving Our Website and enhancing User’s user experience. In addition, this automatically processed data may be used to analyse the behaviour of the content User(s) on Our Website (e.g., time spent on the Website) or to personalise the content of the Website’s web pages, in particular by providing online advertising.

The User(s) are not obliged to accept cookies (the User(s) may agree to the use of cookies by clicking the appropriate button on our Website or by making the appropriate settings in your Web browser), but this may result in Our Website not functioning fully properly.

We use “Persistent Cookies” are designed to store data over a long period of time and are activated each time the User visit Our Website that created that particular cookie. Each persistent Cookie is created with an expiry date that can be anywhere from a few days to several years in the future. When the Cookie expires, it is automatically deleted. Moreover, Persistent Cookies allow Our Website to “remember the User”.

First and Third Party Cookies on Our Website:

  • Cookies placed on your device include “first party” Cookies, which are Cookies that are placed by Us or by third-party service providers acting on Our behalf. If such Cookies are managed by third parties, We only allow the third parties to use the Cookies for Our purposes as described in this Cookie Policy and not for their own purposes.
  • The Cookies placed on your device may also include “third-party” Cookies, which are Cookies placed there by third parties. These Cookies may include third-party advertisers who display advertisements on Our Website and/or social media providers, etc. They may also include third parties who provide video content embedded on Our Website (e.g. YouTube, etc). We have no control over the settings of these third-party cookies, so we encourage you to check the third-party websites to learn more about their use of cookies and how to manage them.

We also use social media buttons and/or plugins on the Website that allow you to connect with Our social network. In order for them to work (for example: social networks such as LinkedIn etc.), they set Cookies on Our Website that can be used to improve your profile on their website or to supplement the data they store for various purposes specified in their respective privacy policies and cookies policies.


Any process of User(s) personal data is performed only in accordance with this Privacy Policy, the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (OJEU No L 119 of 4 May 2016) (the “General Data Protection Regulation” and “GDPR”), the UK Data Protection Act of 2018, The California Consumer Privacy Act of 2018 (CCPA), and other regulatory acts.

We process personal data of User(s) only in compliance with the relevant data protection regulations. This means that Users’ data will only be processed if we have a legal permit. That is, especially if the data processing for the provision of Our Services is required or required by law, the consent of the user exists, as well as Our legitimate interests (i.e. interest in the analysis, optimisation and economic Operation and security of Our Services offer within the meaning of Art. 6 (1) lit. GDPR).

Please note that (1) the legal basis for the consent is Art. 6 para. 1 lit. a. and Art. 7 GDPR; (2) the legal basis for processing for the purpose of fulfilling our services and implementing contractual measures is Art. 6 para. 1 lit. b. GDPR; (3) the legal basis for processing for the purpose of fulfilling our legal obligations is Art. 6 para. 1 lit. c. GDPR; (4) the legal basis for the processing to safeguard our legitimate interests is Art. 6 para. 1 lit. f. GDPR.


We use appropriate methods of personal data collection, storage and processing, as well as security measures to protect against unauthorised access, alteration, disclosure, or destruction of personal data of the User(s) and data stored on Our Website. We do not share personal data of the User(s) with third parties, except for Our affiliates, Our employees and/or subcontractors and recruitment service providers for Us, which have agreed in written consent not to collect, store, process and transfer the personal data of Our User(s) to other third parties without Our prior written permission. We always enter into agreements with each User(s) with whom we cooperate in various business areas that define the protection of our confidential information, which includes the personal data of the User(s).

We use User(s) personal data to (1) respond effectively to User(s) inquiries, (2) improve the quality of service to User(s), (3) facilitate the use of our Site, (4) fulfill Our risk management and fraud prevention obligations to protect User(s) and Us from misuse of Our Services, (5) inform User(s) about changes and new features of Our Services; (6) share with our marketing and advertising partners to further improve Our marketing strategies, (7) comply with local, national and international laws and regulations to be able to provide Our Services to the User(s). We may also use User(s)’ personal data to send newsletters, marketing or promotional materials and other information about our Services and our business.

We may be required to disclose all or any part of the User(s) personal data if required to do so by law or at the request of a governmental or regulatory organization/authority, or if We believe in good faith that such disclosure is necessary to (1) comply with legal or regulatory requirements or to conform to legal process; (2) to prevent crime; (3) to prevent any terrorist activity or threat to national security; (4) to protect and defend the property rights of “StartupSoft LLC”; (5) to protect the safety or welfare of the User(s), Our employees and/or subcontractors, or any other persons.


In the event that the User(s) is a California resident, the User(s) has certain privacy rights under California law, including the California Consumer Privacy Act of 2018 (hereinafter – the “CCPA”).


We securely store your data in Our internal Customer Relationship Management system (hereinafter – the “CRM”), that includes Gmail (from Google Mail).

The data retention period that we receive from the User(s) is calculated for each moment of cooperation individually in compliance with all relevant regulations, which are confirmed by this Privacy Policy (3 months and up). Retention periods from other recipients are set by them in their privacy policies.

In case the User(s) requests that We do not store personal data by sending Us a request to [email protected], We will take all reasonable measures to delete all personal data about such User(s). However, with the explicit consent of the User, we may retain a streamlined version of their profile, including their email address, for future purposes, enabling us to keep the User informed about our recruitment campaigns or marketing offers.


Our Website and Services are not directed to anyone under the age of 18 (hereinafter – the “Children”). We do not knowingly collect personal data from anyone under the age of 18. In case the User(s) is a parent or guardian and knows that your children have provided Us with the personal data, please contact us (see “Contact Us” section). If We become aware that We have collected personal data from children without parental consent, We take steps to delete this personal data from Our servers.


The User(s) has(have) the following rights in connection with the processing of personal data by Us (the exercise of each of the following rights is carried out at the request of the User(s)):

  • Submit a request to Us for access to the personal data of the User(s) (generally known as a “data subject access request”). This will allow the User(s) to obtain a copy of the personal data We hold about such User(s) and to verify that We are processing it lawfully.
  • Request correction of the personal data We store about the User(s). This will allow the User(s) to correct any incomplete or inaccurate information that We store about the User(s).
  • Request for deletion of personal information of the User(s). This allows the User(s) to ask Us to delete personal information if there are no compelling reasons for its further processing. The User(s) also have the right to ask Us to delete personal information if the User(s) have exercised their right to object to processing.
  • Object to the processing of the User(s) personal data when We rely on a legitimate interest (or the interest of a third-party) and there is something specific to the situation that makes the User(s) object to the processing on this basis. The User(s) also have the right to object if We process personal data for direct marketing purposes, for example, in our recruitment campaigns.
  • Request to restrict the processing of personal data of the User(s). This allows the User(s) to request Us to pause the processing of personal data, for example, if the User(s) wants Us to check its accuracy or the reason for processing.
  • Submit a request to Us to transfer the User’s personal data to another party.

The User(s) does not need to pay for access to personal data (or for exercising any other rights). However, We may charge a reasonable fee if the User(s)’ request for access is manifestly unfounded or excessive, and in such circumstances We may refuse to grant the request.

We may need to request certain information from the User(s) to help Us verify the identity of the User(s) and to ensure that such User(s) have the right to access the information (or to exercise any other rights of the User(s)). This is another appropriate security measure to ensure that personal data is not disclosed to any person who is not entitled to receive it.

In the event that the User(s) wish to review, verify, correct or request deletion of personal data, object to the processing of personal data or request that We transfer a copy of personal data to another party, please contact Us at [email protected] in writing.


The User’s personal data is transferred to third countries if the Services provided by Us will also be provided in the territory of a third country. The personal data of the User(s) may also be transferred to entities that provide tax, legal, and audit advice to Us if they operate in or outside the territory of a third country. In each of the above cases, We protect the processing of the User’s personal data, in particular, by entering into confidentiality agreements and processing personal data in a manner that complies with the provisions of generally applicable EU and UK data protection laws, as well as on terms designed to ensure the security of the processing of the User’s personal data. We do not transfer personal data of the User(s) to international organizations. We also do not transfer personal data of the User(s) to third countries, if such transfer is impossible or prohibited by generally accepted legislation.

Any transfer of personal data to the United States will be based on Standard Contractual Clauses in accordance with Article 46(2)(c) of the GDPR, or on the consent of the User(s), e.g., if the User(s) consents to the use of cookies, this will also be consent to the possible transfer of your personal data to the United States in accordance with Article 49 (1)(a) of the GDPR in connection with article 6(1)(a) of the GDPR.


Services on the Website: We use User(s) personal data to provide and improve our Services provided on Our Website. By using the Services, the User(s) agree to grant Us full rights to collect, process and use such User’s personal data in accordance with this Privacy Policy.

Other recipients* of the User’s personal data:

  • Google Analytics (Google LLС) is a web analysis service provided by Google Inc. Google utilizes the data collected to track and examine user behavior, to prepare reports, and share insights with other Google services. Google may use the data collected to contextualize and personalize the advertisements launched via Google’s advertising network. The service is subject to Google’s Privacy Policy (available at the link).
  • Google Tag Manager (Google LLС) is a web service designed to optimize the Google Analytics management process. The service is provided by Google Inc. and is subject to Google’s Privacy Policy (available at the link).
  • Facebook Ads conversion tracking (Facebook, Inc.) Facebook Ads conversion tracking is an analytics service that binds data gathered from the Facebook advertising network with actions performed on our website. The service is provided by Facebook, Inc. and is subject to Facebook’s Privacy Policy (available at the link).
  • Google AdWords Tools (Google AdWords Conversion Tracking/ Dynamic Remarketing / User List / DoubleClick) (Google LLС) Google AdWords conversion tracking and other Google Ads services are analytic instruments, connect data from the Google AdWords advertising network with actions taken on our website. The services are provided by Google Inc. and are subject to Google’s Privacy Policy (available at the link).
  • Google AdWords (Google LLC) DoubleClick (Google Inc.) / DoubleClick Bid Manager / Google DoubleClick Google AdWords and Double Click are advertising services that enable efficient interaction with potential customers by suggesting relevant advertisements across Google Search, as well as Google’s partner networks. The services are provided by Google Inc. and are subject to Google’s Privacy Policy (available at the link).
  • Facebook Audience Network (Facebook, Inc.) is an advertising service that helps to monitor and evaluate the efficiency of advertising campaigns launched via Facebook. The service is provided by Facebook, Inc., and is subject to Facebook’s Privacy Policy (available at the link).
  • LinkedIn Marketing Solutions / LinkedIn Ads (LinkedIn Corporation) LinkedIn Ads allows for tracking the efficiency of advertising campaigns launched via LinkedIn. The service is provided by LinkedIn Corporation and is subject to LinkedIn’s Privacy Policy (available at the link).
  • Twitter Advertising / Twitter Conversion Tracking (Twitter, Inc.) The Twitter Ads network allows for tracking the efficiency of advertising campaigns launched via Twitter. The service is provided by Twitter Inc. and is subject to Twitter’s Privacy Policy (available at the link).

*Other recipients are the entities which receive data from the portal/website owner. For more details please refer to the privacy policy of the appropriate portal (e.g. LinkedIn, Instagram, Facebook, Medium, etc.).

In addition, We may hire third-party companies and individual entrepreneurs to facilitate the operation of our Services, to provide Services on Our behalf, or to assist Us in the analysis of how Our Services and/or Our Website are used (collectively, “Service Providers”). Such third parties have access to the Personal Data of the User(s) only to perform the tasks provided directly by Us and are obliged not to disclose or use them for any other purpose. Such cooperation with third parties must be documented by the necessary documents (including the Master Service Agreement, Non-Disclosure Agreement, etc.).


We may update our Privacy Policy from time to time. We will notify the User(s) of any changes by posting the new Privacy Policy on this webpage on our Website.

We will notify the User(s) by post a prominent notice on Our Website before the changes become effective and update the “Last update” at the top of our Privacy Policy.

We recommend that the User(s) periodically review our Privacy Policy for any changes. Updates to this Privacy Policy are effective when they are posted on this page.

Contact Us

In the event that the User(s) has any questions about Our Privacy Policy, the data We hold about the User(s), or the User(s) would like to exercise one of the data protection rights, please contact Us by sending an email to [email protected].