Privacy Policy

Last updated: January 22, 2026

1. Introduction

Legitimus.IO ("we", "our", "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

By using Legitimus.IO, you consent to the data practices described in this policy.

2. Information We Collect

2.1 Account Information:

  • Name
  • Email address
  • Login method (OAuth provider)
  • Account creation and last sign-in dates

2.2 Subscription Information:

  • Subscription plan type (monthly/yearly)
  • Payment status
  • Trial period dates
  • Student status (if applicable)

2.3 Usage Information:

  • Pages visited
  • Jurisdictions browsed
  • Search queries
  • Links copied

2.4 Contact Form Data:

  • Name, email, company name
  • Message content
  • Submission timestamp
3. How We Use Your Information

We use collected information to:

  • Provide and maintain the Service
  • Process subscriptions and payments
  • Send account-related notifications
  • Respond to customer support inquiries
  • Improve and personalize user experience
  • Analyze usage patterns and trends
  • Detect and prevent fraud or abuse
  • Comply with legal obligations
4. Information Sharing and Disclosure

4.1 Third-Party Service Providers:

We share information with:

  • Stripe: For payment processing and subscription management
  • OAuth Providers: For authentication (Manus OAuth, Google, Microsoft, etc.)
  • Analytics Providers: For usage analytics and performance monitoring

4.2 Legal Requirements:

We may disclose your information if required by law or in response to valid legal requests.

4.3 Business Transfers:

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

5. Data Security

We implement industry-standard security measures to protect your information:

  • HTTPS encryption for all data transmission
  • Secure database storage with access controls
  • Regular security audits and updates
  • Password hashing and secure session management

However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

6. Data Retention

We retain your information for as long as your account is active or as needed to provide services. After account deletion, we may retain certain information for legal compliance, fraud prevention, and legitimate business purposes.

Retention periods:

  • Account data: Until account deletion + 90 days
  • Payment records: 7 years (legal requirement)
  • Contact form submissions: 2 years
  • Usage logs: 12 months
7. Your Rights (GDPR)

If you are in the European Economic Area (EEA), you have the following rights:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Restriction: Limit how we use your data
  • Portability: Receive your data in a machine-readable format
  • Objection: Object to processing based on legitimate interests
  • Withdraw Consent: Revoke consent for data processing

To exercise these rights, contact us at [email protected].

8. Cookies and Tracking Technologies

8.1 Types of Cookies We Use:

Essential Cookies (Always Active):

  • Authentication and session management
  • Security and fraud prevention
  • Load balancing and performance

Analytics Cookies (Requires Consent):

  • Usage statistics and page views
  • User behavior analysis
  • Performance monitoring

Functional Cookies (Requires Consent):

  • Language preferences
  • Theme settings
  • Referral tracking

8.2 Cookie Consent:

When you first visit Legitimus.IO, you will see a cookie banner asking for your consent to use non-essential cookies. You can:

  • Accept All: Consent to all cookies for enhanced experience
  • Decline: Only essential cookies will be used

8.3 Managing Cookies:

You can control cookies through your browser settings. Note that disabling cookies may limit Service functionality:

  • Chrome: Settings → Privacy and Security → Cookies
  • Firefox: Settings → Privacy & Security → Cookies
  • Safari: Preferences → Privacy → Cookies

8.4 Cookie Duration:

  • Session cookies: Deleted when you close your browser
  • Persistent cookies: Stored for up to 12 months
  • Authentication cookies: Valid until logout or 30 days
9. Third-Party Links

Our Service contains links to official government legal databases. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.

10. Children's Privacy

Legitimus.IO is not intended for users under 18 years of age. We do not knowingly collect information from children. If we become aware of data collected from a child, we will delete it promptly.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for such transfers in compliance with GDPR and other applicable laws.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or prominent notice on the Service. Continued use after changes constitutes acceptance of the updated policy.

13. Contact Us

For questions or concerns about this Privacy Policy or our data practices, please contact us:

Email: [email protected]
Website: Legitimus.IO

Data Protection Officer: Available upon request