General
This Privacy Policy ("Policy") describes how we collect and use your personal data in connection with Utexo websites, portals and services. The terms "Utexo", "we", "us", or "our" refer to RGB OS Ltd.
Scope
This Policy applies to personal data collected through the Utexo website (https://utexo.com/) and related communications.
Separate product interfaces, if accessible via distinct domains, may be subject to separate privacy notices.
Who is responsible for your data
Registered name: RGB OS Ltd.
Registered address: Intershore Chambers, PO Box 4342, Road Town, Tortola, VG1110 British Virgin Islands
General contact address: legal@utexo.com
RGB OS Ltd acts as the data controller for the personal data described in this Policy.
Key terms and definitions
Personal data: any information relating to an identified or identifiable natural person (“Data subject”). For the purposes of GDPR, personal data means any information relating to You such as a name, surname, gender, age, health information, preferences, etc.
Processing: any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Data controller: means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.
Data processor: means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
You: means any individual accessing the website, submitting inquiries, subscribing to communications, or interacting with Utexo.
Cookies: text files stored on your device when visiting a website.
Table of contents
- Sources of Personal Data
- Categories of Data Subjects
- Types of Personal Data & Legal Basis
- Purposes of Processing
- Cookies & Tracking Technologies
- How and When We Share Information
- International Data Transfers
- Data Retention
- Information Security
- Children's Privacy
- Your Rights
- Updates to this Policy
- Contact Information
1. Sources of Personal Data
We collect personal data from the following sources:
Directly from you:
- Contact forms submitted via the website
- Newsletter or update subscription forms
- Business inquiry submissions
- Direct email communications
Automatically collected data:
- Browser and device information collected via cookies and analytics tools
- Server logs generated when users access the website
We do not purchase personal data from advertisers, brokers, or data resellers.
2. Categories of Data Subjects
We may process personal data relating to:
- Website visitors
- Individuals submitting contact forms
- Newsletter subscribers
- Business partners or prospective partners
- Developers accessing documentation
3. Types of Personal Data and Legal Basis for Processing
| Purpose of Processing | Categories of Data Subjects | Categories of Personal Data | Legal Basis |
|---|---|---|---|
| Respond to inquiries | Contact form submitters, business partners | Name (if provided), email address, company affiliation (if provided), message content, attachments | Legitimate interests (business communication); pre-contractual steps where applicable |
| Distribute newsletters and updates | Newsletter subscribers | Email address; optional subscription preferences | Consent |
| Provide access to developer documentation | Developers | Email address (for access requests), documentation access logs | Legitimate interests |
| Maintain and improve website functionality | Website visitors | IP address, device and browser data, cookie identifiers, usage data, interaction patterns | Legitimate interests; consent where required |
| Ensure website security and prevent abuse | Website visitors | Server logs, IP address, technical metadata | Legitimate interests; legal obligations where applicable |
| Comply with legal obligations | All categories | Any relevant personal data required by law | Legal obligation |
4. Purposes of Processing
We process personal data for the following purposes:
- Responding to inquiries submitted through forms or email
- Communicating with business partners and prospective collaborators
- Sending newsletters or updates where consent is provided
- Maintaining, securing, and improving website performance
- Monitoring usage patterns to enhance user experience
- Detecting, preventing, and investigating abuse or security incidents
- Complying with applicable legal and regulatory requirements
We do not use personal data for automated decision-making that produces legal or similarly significant effects.
5. Cookies and Tracking Technologies
We use cookies and similar technologies to:
- Ensure website functionality
- Analyse website usage and performance
- Improve user experience
- Monitor technical stability and security
Analytics services (e.g., Google Analytics or similar providers) may collect information such as IP address, browser type, device identifiers, pages visited, time spent on pages, and referring URLs.
Where required by applicable law, non-essential cookies are deployed only after obtaining your consent.
You may manage cookie preferences through your browser settings.
6. How and When We Share Information
We do not sell personal data.
We may share personal data with:
Hosting & Infrastructure Providers
Cloud hosting providers responsible for website storage and delivery.
Analytics Providers
Providers offering website usage analytics.
Email Service Providers
Third-party providers that deliver newsletters and business communications.
Security & CDN Providers
Content delivery networks and DDoS protection services to safeguard website access.
IT & Development Support
External developers and IT contractors operating under confidentiality agreements.
Legal & Regulatory Authorities
Where required to comply with applicable laws, court orders, or regulatory requests.
All third-party service providers process personal data only to the extent necessary to provide their services and under appropriate contractual safeguards.
7. International Data Transfers
Utexo operates internationally and may engage service providers located outside your jurisdiction. Where personal data is transferred internationally, we implement appropriate safeguards, which may include:
- Contractual data protection clauses
- Data processing agreements
- Technical and organisational security measures
If you would like further information about international transfers, please contact us.
8. Data Retention
We retain personal data only for as long as necessary for the purposes described above:
- Newsletter subscriber data: retained until you unsubscribe or for 2 years after your last interaction if consent is not renewed.
- Contact form and inquiry data: retained for 3–5 years after the last correspondence for business record purposes.
- Website analytics data: retained in pseudonymized or aggregated form for up to 26 months or per analytics provider settings.
- Server logs: retained for up to 12 months for security monitoring.
Personal data may be retained for longer where required by law or for the establishment, exercise, or defence of legal claims.
After the applicable retention period, personal data is securely deleted or anonymised.
9. Information Security
We implement appropriate technical and organisational measures designed to protect personal data, including:
- Secure hosting environments
- Access controls
- Encryption where appropriate
- Monitoring and security review processes
While we take reasonable steps to protect personal data, no system can guarantee absolute security.
10. Children's Privacy
The website is not directed to individuals under the age of 18.
We do not knowingly collect personal data from children. If you believe that a minor has provided personal data to us, please contact us so we can take appropriate action.
11. Your Rights
Subject to applicable data protection laws including GDPR where applicable, you may have the following rights:
- Access – Request access to your personal data.
- Rectification – Request correction of inaccurate or incomplete data.
- Erasure – Request deletion of personal data in certain circumstances.
- Restriction – Request restriction of processing.
- Data portability – Request a structured, machine-readable copy of your data.
- Objection – Object to processing based on legitimate interests.
- Withdraw consent – Withdraw consent where processing is based on consent.
To exercise your rights, please contact us at:
We may request verification of identity before responding.
You also have the right to lodge a complaint with the competent data protection authority in your jurisdiction.
12. Updates to this Privacy Policy
We may update this Policy from time to time to reflect changes in legal requirements or our processing practices.
We will revise the “Last updated” date at the top of this Policy when changes are made. Continued use of the website after updates constitutes acknowledgment of the revised Policy.
13. Contact Information
We welcome your comments or questions about this Policy, and you may contact us at the following address: legal@utexo.com