Privacy Policy | Deckary

Introduction

This Privacy Policy explains how Deckary ("we", "us", "our") collects, uses, and shares information when you use the Deckary PowerPoint add‑in that is submitted to the Microsoft Add Source marketplace and supporting services such as deckary.com (collectively, the "Services"). We are based in the Netherlands and process personal data in accordance with the EU General Data Protection Regulation (GDPR).

Scope and Service Description

The Deckary PowerPoint add‑in helps consultants create presentations faster by combining document automation and AI‑assisted content generation. Deckary syncs local assets with the add‑in, and the web experience provides account management, billing, and support. Unless explicitly noted, all statements in this policy apply to each part of the Deckary service, not just the public website.

Policies on Personal Information

Personal information is only collected for clearly defined purposes, stored using industry‑standard security practices, and deleted or anonymized when it is no longer required. We do not use personal information for advertising or sell it to third parties. Access to production data is restricted to staff who need it to operate the Deckary PowerPoint add‑in or billing systems, and all processors are bound by written agreements.

Who We Are

Deckary is a productivity suite for consultants. For questions about this policy or your data, please contact us via the contact form at deckary.com/contact.

What We Collect

We collect information in the following contexts:

Website

Contact details you submit via forms (e.g., name, email, message).
Usage data such as pages viewed, device/browser information, and approximate location derived from IP address.
Cookies and similar technologies to remember preferences and improve performance.

Add‑in

Content you choose to process (e.g., text or slide content) when using features, including AI features.
Operational data such as feature usage events, performance metrics, and error logs.
Account identifiers to authenticate and authorize your access.

Helper Application

File metadata (e.g., filenames, sizes) and processing logs required to perform requested actions.
User‑provided content necessary to deliver the requested functionality.
Diagnostics and error logs to maintain reliability and security.

Purposes of Processing

Provide, operate, and improve the Services.
Authenticate users and secure accounts.
Process payments and manage subscriptions.
Deliver AI‑powered features you request.
Communicate with you, including support and service notices.
Analyze usage to improve performance and usability.
Detect, prevent, and investigate fraud, abuse, and security incidents.
Comply with legal obligations.

Legal Bases (GDPR)

Performance of a contract (to provide the Services you request).
Legitimate interests (to secure, improve, and market our Services in a proportionate manner).
Consent (for optional cookies/analytics or certain AI processing where required).
Legal obligation (to meet compliance and tax requirements).

Retention

We keep personal data only as long as necessary for the purposes described above, including maintaining your account, complying with our legal obligations, resolving disputes, and enforcing our agreements. We apply retention limits to logs and diagnostics and delete or anonymize data when it is no longer needed.

Cookies

We use necessary cookies to operate the site and, where consented, optional cookies for analytics and performance. You can manage cookie settings in your browser and, where applicable, in our cookie banner.

Analytics

We may use privacy‑minded analytics to understand aggregate usage and improve the product. Analytics tools typically collect pseudonymous information such as page views, referrers, device types, and general geography derived from IP addresses.

Error Logs

To maintain reliability and security, we collect diagnostic information and error logs from the website, add‑in, and helper app. These may include timestamps, device or environment details, and truncated or hashed identifiers. We avoid collecting content except where necessary to diagnose a specific issue.

Data Sharing and Processors

We share data with trusted service providers who process data on our behalf:

Payments: Stripe — to process payments and manage subscriptions.
AI Processing: OpenAI — to provide AI‑powered features you invoke in the add‑in/helper.
Hosting and infrastructure (e.g., cloud hosting, CDN, email) — to deliver the Services.

These providers are engaged under data processing agreements and are obligated to handle data securely and only according to our instructions. We do not sell your personal data.

International Transfers

Where personal data is transferred outside the European Economic Area, we rely on appropriate safeguards such as the EU Standard Contractual Clauses and implement additional measures where necessary.

Your Rights (GDPR)

Access your personal data and obtain a copy.
Rectify inaccurate or incomplete data.
Erase data (right to be forgotten) where applicable.
Restrict or object to certain processing.
Data portability.
Withdraw consent where processing is based on consent.
Lodge a complaint with a supervisory authority, including the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).

To exercise your rights, contact us via the form at deckary.com/contact. We may need to verify your identity before responding to your request.

Security

We implement technical and organizational measures designed to protect personal data. No method of transmission or storage is completely secure; we continuously improve our safeguards.

Children

Our Services are not directed to children under 16. If you believe a child has provided personal data to us, please contact us to request deletion.

Changes to This Policy

We may update this policy from time to time. Material changes will be communicated via the website or by email where appropriate.

Contact

Questions or requests? Contact us via the form at deckary.com/contact.