// legal
Privacy Policy
This policy explains how RAQIOM, operated by Artyom Abramovich handles personal data for the PMOlikePRO website (https://pmolikepro.com) and the PMOlikePRO application (https://app.pmolikepro.com). The short version: we collect what is needed to run the product, we don't sell it, we don't use it to train models, and it stays on audited infrastructure.
1. Two roles, stated plainly
- For this website and your account (visits, demo requests, sign-up, billing contact) — we are the data controller.
- For the content inside a customer organization(projects, tasks, time entries, the people your organization adds) — the customer organization is the controller and we process that data on its behalf, under the Terms of Service.
2. What we collect
- Account data — name, work email, role, authentication records (including two-factor enrollment status; TOTP secrets are stored for verification, never displayed back).
- Organization content — what your organization puts into the Service: projects, tasks, schedules, time logs, clients, contacts, budgets, files.
- Messages you send us — demo requests and support email, including the contact details you include.
- Operational logs — security and audit events (sign-ins, permission changes, destructive actions), and technical logs needed to run and defend the Service (IP addresses, user agents), kept for limited periods.
3. What we deliberately avoid
- No advertising trackers. This website uses Cloudflare's cookieless analytics — aggregate counts, no cross-site profiles.
- Essential cookies only — session and security cookies required for sign-in and bot protection; no marketing cookies, hence no cookie banner theater.
- No selling of personal data. Ever.
- No model training on customer content.
4. Why we process data
To provide and secure the Service (contract), to respond when you contact us (legitimate interest / pre-contract steps), to bill (contract and legal obligations), to defend the Service against abuse (legitimate interest), and to comply with law.
5. Where it lives
The Service runs on audited cloud infrastructure — the database and authentication on Supabase, the network and hosting layer on Cloudflare, transactional email via Resend, and billing with Paddle as merchant of record. The current list, with roles and locations, is maintained on the subprocessors page. Transfers outside your jurisdiction rely on the providers' standard safeguards (such as EU standard contractual clauses).
6. How long we keep it
Account and organization data: for the life of the subscription, then a 30-day export window, then deletion. Contact email: as long as needed to handle the matter and a reasonable history. Security and technical logs: limited retention appropriate to their purpose. Billing records: as long as tax law requires.
7. Your rights
Depending on your jurisdiction (including under the GDPR and Israel's Privacy Protection Law), you may request access, correction, export, restriction or deletion of your personal data, and you may object to certain processing. Write to contact@pmolikepro.com — we answer within one business day and resolve requests within the legal timelines. If your data lives inside a customer organization, we may direct the request to that organization's administrator, as the law expects.
8. Security
The measures protecting this data — tenant isolation, enforceable MFA, role-scoped access, audit trails, encryption in transit and at rest — are documented on the security page. If we ever determine a breach affecting your personal data, we will notify affected customers and authorities as the law requires.
9. Children
The Service is a business tool and not directed at children under 16; we do not knowingly collect their data.
10. Changes and contact
We will update this policy as the Service evolves and announce material changes. Questions and requests: contact@pmolikepro.com.