Privacy Policy

SMC24K (smc24k.com) · Last updated: 2026-05-03

SMC24K ("we", "us", "our") operates smc24k.com. This policy describes what personal data we collect, why we collect it, how we use and protect it, and the rights you have over it. If you have any question, contact [email protected].

1. Information we collect

We collect only what we need to operate the service.

• Account data — email address, account name, hashed password (when you register).
• Transactional data — records of your interactions with the service (orders, sessions, support requests).
• Technical data — IP address, user-agent, request timestamps, in server logs for security and debugging.
• Communications — messages you send us via email or contact form.

We do not sell personal information. We do not share personal information with advertising networks or data brokers.

2. How we use information

• Provide, maintain, and secure the service.
• Authenticate users and prevent fraud or abuse.
• Communicate transactional notices (account, billing, security).
• Comply with legal obligations.

3. Legal bases (GDPR)

For users in the EEA / UK, we process personal data on the following bases: contract (to deliver the service you requested), legitimate interest (security, fraud prevention, service improvement), consent (where you opt in to optional features), and legal obligation (tax, compliance).

4. Data retention

We retain account and transactional data for as long as your account is active and for up to 7 years afterward, to satisfy tax, accounting, and legal-defense obligations. Server access logs are retained for up to 90 days. You may request earlier deletion (see Section 6).

5. Security

We host SMC24K on infrastructure we operate directly. Connections are TLS-encrypted. Passwords are stored as salted hashes. Access to production systems is limited and audited.

6. Your rights

Depending on where you live, you have the following rights over your personal data:

GDPR (EEA, UK)

• Right to access the personal data we hold about you.
• Right to rectification of inaccurate data.
• Right to erasure ("right to be forgotten") subject to our legal-retention obligations.
• Right to restrict or object to processing.
• Right to data portability.
• Right to lodge a complaint with your supervisory authority.

CCPA / CPRA (California)

• Right to know what personal information we collect, use, and disclose.
• Right to delete personal information.
• Right to correct inaccurate personal information.
• Right to opt out of "sale" or "sharing" — Do Not Sell My Personal Information. (We do not sell personal information; this link is provided to satisfy CCPA notice requirements.)
• Right to non-discrimination for exercising these rights.

Send any rights request to [email protected]. We respond within 30 days (GDPR) or 45 days (CCPA).

7. Cookies

SMC24K uses only essential cookies required for authentication and session management. We do not use third-party advertising or tracking cookies. If we add optional analytics in the future we will require consent.

8. International transfers

SMC24K infrastructure is operated from the United States. If you access the service from outside the United States your data will be transferred to and processed in the United States, where data-protection laws may differ from those in your jurisdiction.

9. Children

SMC24K is not directed to children under 13 (or under 16 in the EEA). We do not knowingly collect personal information from children. If you believe a child has provided us personal information, contact us and we will delete it.

10. Changes to this policy

We may update this policy. The "Last updated" date at the top reflects the most recent revision. Material changes will be communicated through the service or by email.

11. Contact