Privacy Policy

1. Who we are

Level 83 ("Level 83", "we", "us") is an independent software development studio based in Romania, in the European Union. For the purposes of the EU General Data Protection Regulation (Regulation (EU) 2016/679, the "GDPR"), we are the data controller for the personal data described in this policy. You can reach us at any time at hello@level83.io.

2. Scope of this policy

This policy covers the website level83.io only. The mobile applications we publish each have their own dedicated privacy policy, available on the app's own website and from its app store listing. Where an app's policy applies, it takes precedence for that app.

3. Data we collect

This website is a static site. It does not require an account, does not show advertising, does not use analytics, and does not profile visitors. The personal data we process is limited to the following:

• Technical access data. Our hosting provider automatically processes technical request data — such as your IP address, browser type and version, operating system, referring page, and the date and time of access — in server logs. This happens with virtually every website and is necessary to deliver the site securely and reliably (for example, to detect and mitigate attacks). We do not combine this data with other sources or use it to identify visitors.
• Email correspondence. If you write to us, we receive your email address, anything you include in your message, and our reply history. We use this data only to respond to you and to keep a record of the conversation.

4. Cookies and tracking

We do not set cookies, and we do not use tracking pixels, fingerprinting, or third-party analytics on this website. Because we use no cookies that require consent, you will not see a cookie banner here — there is simply nothing to consent to.

5. Legal bases for processing

Where the GDPR applies, we rely on the following legal bases:

• Legitimate interests (Art. 6(1)(f) GDPR) — operating, securing, and improving this website, and responding to messages you choose to send us. When we rely on this basis, we balance our interests against your rights and freedoms.
• Legal obligations (Art. 6(1)(c) GDPR) — where laws applicable to us, such as accounting or tax legislation, require us to retain certain records.
• Consent (Art. 6(1)(a) GDPR) — only where we explicitly ask for it. We do not currently process any data on this website on the basis of consent.

6. How long we keep data

• Server logs are retained according to our hosting provider's standard rotation schedule and are then deleted automatically.
• Email correspondence is kept for as long as needed to handle your request and any follow-up, after which it is deleted — unless a legal obligation requires longer retention.

7. Recipients and processors

We do not sell personal data, and we do not share it with third parties for marketing. Data is processed on our behalf only by the service providers we use to run the website, acting as processors under Art. 28 GDPR:

• Cloudflare, Inc. — hosting, content delivery, and DDoS protection for this website. Cloudflare processes technical access data described in Section 3.
• Our email provider — delivery and storage of messages sent to hello@level83.io.

We may also disclose data where required by law, for example in response to a binding request from a competent authority.

8. International transfers

We prefer providers that store data within the European Economic Area. Where a provider processes data outside the EEA (for example, a global content delivery network), we ensure appropriate safeguards under Chapter V GDPR are in place — such as an adequacy decision under Art. 45 GDPR (including the EU–US Data Privacy Framework, where the provider is certified) or the European Commission's Standard Contractual Clauses.

9. Security

We apply appropriate technical and organizational measures to protect personal data, including encrypted connections (HTTPS/TLS) for all traffic to this website, access controls on our accounts, and the principle of collecting as little data as possible in the first place — data we never collect cannot be lost.

10. Your rights

Under the GDPR you have the right to:

• access the personal data we hold about you (Art. 15);
• rectification of inaccurate data (Art. 16);
• erasure of your data (Art. 17);
• restriction of processing (Art. 18);
• data portability in a structured, machine-readable format (Art. 20);
• object to processing based on our legitimate interests, on grounds relating to your particular situation (Art. 21);
• withdraw consent at any time, where processing is based on consent, without affecting the lawfulness of processing before withdrawal (Art. 7(3)).

To exercise any of these rights, email hello@level83.io. We will respond within one month, as the GDPR requires. Exercising your rights is free of charge.

11. Complaints

If you believe we have processed your data unlawfully, you have the right to lodge a complaint with a supervisory authority (Art. 77 GDPR) — in Romania, the National Supervisory Authority for Personal Data Processing (ANSPDCP, dataprotection.ro, B-dul G-ral Gheorghe Magheru 28-30, Bucharest), or the authority in your own EU member state. We would, of course, appreciate the chance to address your concern directly first.

12. Children

This website is not directed at children under 16, and we do not knowingly collect personal data from them. If you believe a child has provided us with personal data, contact us and we will delete it.

13. Automated decision-making

We do not use automated decision-making or profiling within the meaning of Art. 22 GDPR.

14. Changes to this policy

We may update this policy as our products and the law evolve. The date at the top of this page always reflects the latest revision; material changes will be visible here. We encourage you to review this page from time to time.

15. Contact

Questions about privacy? Write to us at hello@level83.io — we read everything.