Privacy Policy

Effective Date: April 2026

1. Introduction

Welcome to Simple Asset Tracker ("we," "our," or "us"). We are committed to protecting your privacy and ensuring you retain absolute data sovereignty. This Privacy Policy explains how we collect, use, and protect information when you visit our website (simpleassettracker.com) and purchase our software.

2. The "On-Premise" Data Sovereignty Guarantee

Simple Asset Tracker is a self-hosted, on-premise software application. We do not collect, access, store, or monitor any of the financial data, Fixed Asset Registers, employee information, or ERP credentials that you input into the Simple Asset Tracker application. All operational data remains strictly on your own infrastructure or designated private cloud.

3. Information We Collect (Website & Licensing Only)

While we do not access your application data, we do collect limited information necessary to conduct business and issue software licenses:

  • Information you provide to us: When you request a license, contact support, or communicate with us, we collect your name, corporate email address, company name, and payment processing details.
  • Automatically collected website data: When you visit our website, we may collect standard analytics data, including your IP address, browser type, and interaction metrics to improve our web experience.
  • License Validation Data: The application may periodically ping our secure licensing server solely to validate the cryptographic authenticity of your license key and tier limits. This ping does not contain your asset data.

Third-Party Infrastructure Used for Licensing

To deliver our licensing service, we rely on the following named sub-processors. None of these services receive or store your operational asset data:

  • Cloudflare Workers — routes license validation requests between the installed application and our license registry. Subject to Cloudflare's Privacy Policy.
  • GitHub (GitHub Gist) — stores the encrypted license key registry used to verify purchased licenses. No personal or asset data is stored here. Subject to GitHub's Privacy Statement.
  • Payment Processor — we use a third-party payment gateway to process one-time license purchases. We do not store your full payment card details; the payment processor handles all card data under PCI-DSS compliance.

4. How We Use Your Information

We use the information we collect to:

  • Issue and validate your perpetual software license keys.
  • Provide technical and customer support.
  • Process transactions and send related administrative communications.
  • Prevent fraudulent software piracy.

5. Sharing Your Information

We do not sell, rent, or trade your personal information. We only share information with the named third-party sub-processors listed in Section 3 above, strictly for the purpose of facilitating our business operations.

Data Breach Notification: In the event of a security incident that affects the personal data we hold (name, email, company, license records), we will notify affected customers within 72 hours of becoming aware of the breach, describing the nature of the incident, the data involved, and the remediation steps taken.

6. Contact Us

If you have any questions regarding this Privacy Policy or your data, please contact us at: license.simpleassettracker@gmail.com.

7. Your Rights

Depending on your jurisdiction, you may have the following rights with respect to the personal data we hold about you (name, email, company name, license records):

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your personal data, subject to our legal obligations to retain records.
  • Portability: Request your data in a machine-readable format.
  • Objection / Restriction: Object to or request restriction of certain processing activities.

To exercise any of these rights, email us at license.simpleassettracker@gmail.com. We will respond within 30 days. These rights apply to the extent required by applicable law, including the GDPR (EU/UK) and CCPA (California, USA).

8. Data Retention

We retain your personal data (name, email, company name, and license records) for the duration of your active license and for a period of five (5) years thereafter for legitimate business and legal compliance purposes. Upon written request, we will delete your personal data unless we are legally required to retain it. Website analytics data is retained for up to 24 months.

9. Jurisdiction & Governing Law

This Privacy Policy is subject to the applicable data protection and privacy laws of your jurisdiction. Where conflicting requirements exist, we aim to comply with the most protective standard applicable to your location. Nothing in this policy limits rights granted to you by mandatory provisions of local law.