Uniqorn

Uniqorn

Serverless Java REST API

Privacy Policy

What We Collect

When you use Unicorn, we may collect:
- Account Information: Name, email, and billing details for paid subscriptions.
- Usage Metadata: API call metrics, request patterns, and feature interaction data, used exclusively for service operation, security, and improvement.
- Network Usage Data: Aggregated statistics per domain name, traffic volume, and traffic patterns, solely for monitoring, abuse prevention, and mitigation of security threats, including distributed denial-of-service (DDoS) attacks.
- Payment Information: Payment transactions are processed by third-party payment providers. We do not store full credit card numbers or card verification data.

What We Do Not Collect

We do not access, use, analyze, or store your source code, environment variables, configuration files, or application data outside of the automated processing strictly necessary to provide the service.
Source code submitted to the service is automatically validated and compiled as required for operation.
Application data is stored and processed exclusively within your dedicated instance and solely for its intended functional purpose.
We do not extract, mine, profile, or otherwise reuse this data for analytics, training, marketing, or any purpose unrelated to delivering the service.
TLS termination is performed at the routing gateway component. Boundary inspection at the HTTP packet level is conducted solely for routing and security enforcement. No application-layer payload data is retained, logged, or analyzed beyond what is technically required for these functions.
Access to instance-level data by authorized personnel is technically restricted and may occur only with your explicit consent or pursuant to a valid and binding legal obligation.

Data Retention

User logs and system data are retained for up to 5 years to support compliance, security, and service improvement.
Users can request deletion of their account data where applicable.

How We Use Your Data

To provide and improve the service.
To analyze system performance and optimize features.
To prevent fraud and ensure security.

Data Sharing & Third Parties

Your data is processed on third-party infrastructure located in the European Union. We do not share information with our providers, and our hosting partners maintain equal or stricter privacy policies, ensuring compliance with GDPR and strong data protection standards.
Payments: Transactions may be handled by a third party company, subject to their own privacy policies.
Tracking: We collect anonymized usage data, ensuring that no correlation with external systems or advertizing is possible.

U.S. CLOUD Act

The Company is incorporated and domiciled in Belgium, is not organized under the laws of the United States, and is not a U.S. entity for purposes of the U.S. Clarifying Lawful Overseas Use of Data Act (CLOUD Act).
The Company does not operate through any U.S. subsidiary or establishment.

E.U. GDPR & Compliance

We operate under GDPR as a data processor, ensuring compliance with data protection laws.
Users can request: Access to their stored data, Correction of inaccuracies, Deletion of personal data, subject to retention obligations.

Security

We implement industry-standard security measures to protect your data. However, no system is completely immune to risks, and users should take necessary precautions on their end.

For further details, contact us at con@tact.com@contactuniq@orn.dev