This Privacy Policy describes how Mészáros János e.v. ("we", "us") collects, uses and protects your personal data when you use trackwell.eu and purchase our digital products.
1. Who we are
The data controller is Mészáros János e.v., a sole proprietorship based in Hungary. For privacy questions contact hello@trackwell.eu; the full statutory details are listed in our Imprint.
You can reach us at hello@trackwell.eu for any privacy-related question or to exercise your GDPR rights.
2. What personal data we collect
We collect only the minimum data needed to deliver our digital products and to comply with EU consumer protection rules:
- Email address — when you subscribe to a free sample, complete a purchase, or contact us.
- First name (optional) — only if you provide it during checkout or in the lead magnet form.
- Purchase metadata — order ID, product slug, language, purchase timestamp, country of residence (collected by Paddle for VAT purposes).
- Payment data — your card or wallet details are collected and stored by Paddle, never by us. We never see, store, or process your full card number.
- IP address and basic technical data — only in server access logs (Netlify) for security and abuse prevention; deleted within 30 days.
3. How we use your data
We use your personal data only for these purposes:
- Deliver the digital product (purchase email with download link, lead-magnet sample).
- Provide customer support and respond to your messages.
- Comply with our legal obligations (tax records, fraud prevention).
- If you explicitly opt in: send occasional product updates (you can unsubscribe at any time).
4. Who we share data with (processors)
We work with carefully selected service providers acting as processors under GDPR Article 28. Each one only processes the minimum data needed for its purpose:
| Processor | Purpose | Location |
|---|---|---|
| Paddle.com Market Limited | Payment processing, invoicing, EU VAT collection (merchant of record) | United Kingdom (UK GDPR + EU adequacy decision) |
| Cloudflare R2 | PDF file delivery via signed URLs | European Union (eu-west region) |
| Resend | Transactional email delivery (purchase receipts, lead magnet downloads) | United States (Standard Contractual Clauses) |
| MailerLite | Optional newsletter and marketing automation (only with explicit consent) | European Union (Lithuania) |
| Netlify | Static site hosting and serverless function execution | European Union and United States (Standard Contractual Clauses) |
5. Merchant of record — Paddle
Paddle.com Market Limited acts as the merchant of record for all paid transactions on trackwell.eu. This means Paddle is the seller of record, collects and remits EU VAT, and issues your invoice. Paddle processes your payment data under its own privacy policy, available at https://www.paddle.com/legal/checkout-buyer-terms.
When you click "Buy Now", you enter into a contract with Paddle, not directly with Mészáros János e.v. We receive only the order metadata needed to deliver the product (your email, the product you bought, the language you chose).
6. Cookies
We use only strictly functional cookies — no advertising, no analytics, no cross-site tracking. The cookie banner records your acknowledgement; if you continue to use the site, no further cookies are set on our domain.
Paddle Checkout (when opened) sets its own cookies on the paddle.com domain to process the transaction. These are governed by Paddle's own cookie policy.
7. Your GDPR rights
Under the General Data Protection Regulation (GDPR), you have the right to:
- Access — request a copy of the personal data we hold about you.
- Rectification — correct any inaccurate or incomplete data.
- Erasure ("right to be forgotten") — request deletion of your data, subject to our legal obligation to retain tax records.
- Restriction — limit how we process your data.
- Portability — receive your data in a structured, machine-readable format.
- Objection — object to processing based on legitimate interest.
- Withdraw consent — at any time, for processing based on consent (e.g. marketing emails).
- Lodge a complaint with a supervisory authority — in Hungary, the Hungarian National Authority for Data Protection and Freedom of Information (NAIH, naih.hu).
To exercise any of these rights, email us at hello@trackwell.eu. We will respond within 30 days.
8. How long we keep your data
Purchase records (email, order ID, product, date) — 8 years, as required by Hungarian tax law.
Lead magnet emails — until you unsubscribe.
Server access logs — 30 days.
Customer support email threads — 2 years from the last message.
9. Children
Our products are designed for adults and parents tracking their own or their family's health. We do not knowingly collect data from anyone under 16. If you believe a child has provided us data, contact us at hello@trackwell.eu and we will delete it.
10. Changes to this policy
We may update this Privacy Policy from time to time. The "Last updated" date at the top reflects the most recent change. Material changes will be communicated by email to existing customers.
Last updated: 2026-05-09