CaFuKa CaFuKa

Privacy Policy

Last updated: March 3, 2026

Privacy and Data Protection Policy

Welcome to KaFuKa SaaS, a platform developed and operated by NOVADX, SOCIEDADE UNIPESSOAL LDA. Your privacy and the security of your data are our top priority. This Privacy Policy describes how we collect, use, and protect your personal and business information in full compliance with the General Data Protection Regulation (GDPR).

1. Data We Collect To provide our SaaS services, we collect the following information:

  • Account and Billing Data: Name, email address, phone number, company name, VAT number, and billing address.
  • Usage and Service Data: Information about active subscriptions, resource usage metrics (e.g., disk quota, user count), and access logs for security purposes.
  • Support Data (Helpdesk): Information provided when opening support tickets through our portal, email, or integrated communication channels.

2. How We Use Your Data The collected data is used exclusively to:

  • Provision, manage, and bill the services subscribed to on KaFuKa SaaS.
  • Provide fast and efficient technical support.
  • Send critical system notifications (e.g., pending invoices, maintenance alerts, security updates).
  • Comply with the legal and tax obligations of NOVADX, SOCIEDADE UNIPESSOAL LDA.

3. Data Sharing and External Partners (Subprocessors) To ensure the excellence of our service, we operate with top-tier technology partners. Your data is only shared strictly for necessary functions:

  • Infrastructure and Hosting: Our primary services are hosted on Amazon Web Services (AWS) with physical locations in Frankfurt (Germany), ensuring your data does not leave the European Economic Area (EEA).
  • Payment Processing (Stripe): We use Stripe for secure payment processing. We do not store full credit card numbers on our servers. Processing is handled directly through Stripe's secure gateways.
  • Communications and Support (WhatsApp/Meta): If you choose to contact our support team via WhatsApp, we use Meta's official Cloud API. Exchanged messages are processed to generate tickets in our system, ensuring professional tracking.

4. Data Retention and Security We retain your data only for as long as necessary to provide the subscribed services or to comply with legal and tax obligations. We implement strict technical measures, including data encryption, secure connections (HTTPS), and restricted access limited to our technical team.

5. Your Rights (GDPR) Under the GDPR, you have the right to access, rectify, erase (right to be forgotten), or request the portability of your data. To exercise any of these rights, or if you have questions about our policy, please contact our Data Protection Officer (DPO) via email at: ola@novadx.pt.

Last updated: March 2026

← Back to Support