Xd
Xntric Designs App studio by Xntric LLC
Start your app

Privacy Policy

Effective date: January 1st 2025 · Last updated: December 1st 2025

This Privacy Policy explains how Xntric Designs (“we”, “our”, “us”) collects, uses, and protects information when you visit our website, contact us, or engage with the applications, prototypes, and software products we design, build, and maintain.

Important: For client-owned applications, end-users should refer to the privacy policy provided inside that specific application. In many cases we act as a service provider processing data on a client’s behalf.

1. Scope

This Policy applies to:

  • Our websites and landing pages
  • Project inquiries and communications
  • Prototypes, demos, and product builds we operate
  • Support, analytics, and security monitoring

2. Information we collect

2.1 Information you provide

When you contact us or work with us, you may provide:

  • Name, email address, phone number
  • Company name and role
  • Project details, requirements, and feedback
  • Messages and files you choose to send us

2.2 Information collected automatically

When you use our website, we may collect certain information automatically, such as:

  • IP address and approximate location (city/region)
  • Device type, operating system, browser
  • Pages visited, links clicked, referring URLs
  • General performance and diagnostic data

We use this to keep the site reliable, prevent abuse, and understand what content is useful.

2.3 Client and end-user data (apps we build)

When we build or operate apps for clients, we may process end-user data such as identifiers, content, and usage logs as needed to deliver functionality, support, and security.

Where we process data on behalf of a client, the client is the controller and we act as a processor/service provider under contract.

3. How we use information

We use information to:

  • Respond to inquiries and provide services
  • Design, develop, test, and maintain applications
  • Provide support and communicate project updates
  • Monitor performance and improve reliability
  • Secure our systems and prevent fraud/abuse
  • Comply with legal and contractual obligations

We do not sell personal information.

4. Legal bases (GDPR / UK GDPR)

Where applicable, we rely on one or more of the following bases:

  • Contract – to deliver requested services
  • Legitimate interests – to run and improve our business securely
  • Consent – when you explicitly opt in (e.g., certain marketing)
  • Legal obligation – to comply with applicable laws

5. Cookies and analytics

We may use cookies or similar technologies that are necessary for site functionality and basic measurement. You can control cookies through your browser settings.

If you add non-essential tracking (for example, advertising cookies), you may need a cookie banner and opt-in controls depending on jurisdiction.

6. Sharing and disclosures

We may share information with:

  • Vendors providing hosting, email, analytics, or infrastructure (under confidentiality obligations). For example, we may use Resend to deliver emails you request (such as contact-form messages and support communications).
  • Clients when needed to deliver contracted work
  • Authorities if required by law or to protect rights and safety
  • Business transfers (e.g., acquisition/merger), where permitted by law

7. Data retention

We retain information only as long as needed for the purposes described in this Policy, unless a longer retention period is required or permitted by law.

  • Inquiry messages: typically retained for business continuity and reference
  • Client project data: retained per contract and client instructions
  • Security logs: retained for a limited period to detect and respond to threats

8. Security

We use reasonable administrative, technical, and physical safeguards designed to protect information, including access controls and secure hosting practices.

No method of transmission or storage is 100% secure, but we take security seriously (and lose sleep so you don’t have to).

9. International transfers

Your data may be processed outside your country depending on where our vendors and infrastructure operate. Where required, we use appropriate safeguards such as contractual protections.

10. Your rights

Depending on your location, you may have rights to:

  • Access, correct, or delete your personal data
  • Object to or restrict certain processing
  • Withdraw consent where processing is based on consent
  • Request portability of your data (where applicable)

To request action, contact: privacy@xntric.io.

11. Children’s privacy

Our services are not directed to children under 13 (or under 16 where applicable). We do not knowingly collect personal information from children.

12. Third-party links

Our website and apps may link to third-party services. Their privacy practices are governed by their own policies.

13. Client apps disclaimer

For client-owned applications, the client typically determines what data is collected and how it is used. We support implementation and security based on the client’s requirements and instructions.

14. Changes to this Policy

We may update this Privacy Policy from time to time. We will post the updated version on this page and update the “Last updated” date above.

15. Contact

Questions about privacy? Contact us at privacy@xntric.io or via our contact page.

This page provides general information and is not legal advice. For a public app launch, you should work with legal counsel to ensure compliance with applicable laws (GDPR, UK GDPR, CCPA/CPRA, and other regional requirements).