Privacy policy
Last updated: April 4, 2026
This privacy notice for Downeezy describes how and why we might collect, store, use, and/or share (process) your information when you use our services (Services), such as when you:
- Visit our website at https://www.downeezy.com (including localized paths such as
/en/,/tr/,/ru/, etc.); - Use the Downeezy desktop application for Windows;
- Use our website forms (such as HWID reset), purchase or manage licenses, or contact us for support.
Questions or concerns? Reading this notice will help you understand your privacy rights and choices. If you do not agree with our policies and practices, please do not use our Services. If you still have questions, contact us at privacy@downeezy.com.
Summary of key points
This summary highlights key topics from our full notice. Follow the sections below for details.
- What personal information do we process? Depending on how you interact with us, we may process identifiers (e.g., email), licensing and device data, usage and log data, and payment-related data processed by our payment provider. See Section 1.
- Do we process sensitive personal information? We do not intentionally process sensitive categories of data (such as health or biometric data) for the Services.
- Do we receive information from third parties? We may receive limited data from infrastructure and payment processors that act on our behalf (e.g., transaction confirmations from Paddle).
- How do we process your information? To provide and secure the Services, manage licenses, communicate with you, improve reliability, and comply with law. See Section 2.
- When and with whom do we share personal information? With service providers such as Google (Firebase / Google Cloud / Analytics as configured) and Paddle (payments), and when required by law. See Section 4.
- What are your rights? Depending on your location, you may have rights to access, correct, delete, or restrict processing. See Section 9.
- How do you exercise your rights? Email privacy@downeezy.com with your request. We will respond in accordance with applicable law.
Table of contents
- What information do we collect?
- How do we process your information?
- What legal bases do we rely on?
- When and with whom do we share your personal information?
- What is our stance on third-party websites?
- Do we use cookies and other tracking technologies?
- How long do we keep your information?
- Do we collect information from minors?
- What are your privacy rights?
- Controls for Do-Not-Track features
- Do United States residents have specific privacy rights?
- Do other regions have specific privacy rights?
- Do we make updates to this notice?
- How can you contact us about this notice?
- How can you review, update, or delete the data we collect from you?
1. What information do we collect?
Personal information you disclose to us
In short: We collect personal information that you provide to us.
We collect personal information that you voluntarily provide when you express an interest in our products or Services, create or access an account, purchase a license, participate in activities on the Services, or contact us.
Personal information provided by you may include:
- Email addresses (e.g., for purchases, license delivery, and HWID reset requests submitted on our website);
- Technical identifiers processed through our licensing backend and Google Firebase / Cloud services as configured;
- License-related data such as license keys, subscription status, and requests you submit (e.g., device reset), as needed to operate licensing;
- Contact or support content you send to us.
Sensitive information. We do not intentionally process sensitive personal information as part of the Services.
Payment data. Purchases may be processed by Paddle (or another payment processor we designate). We do not store full payment card details on our own servers; such data is handled subject to the processor’s privacy policy: https://www.paddle.com/legal/privacy.
All personal information you provide must be accurate, and you should notify us of relevant changes when required for your account or license.
Information collected automatically
In short: Some information — such as IP address and/or device and usage characteristics — is collected automatically when you use our Services.
We automatically collect certain information when you visit our website, use the desktop app (where applicable), or call our backend APIs. This may include:
- Log and usage data: IP address, timestamps, request metadata, error diagnostics, feature usage signals, and security logs;
- Device data: operating system version, application version, hardware or installation identifiers used for license enforcement (e.g., a device or hardware-derived identifier as described in our Terms), language preferences, and similar technical data;
- Approximate location: derived from IP address where applicable (we do not continuously track precise GPS location through the Services as a core feature).
We may use cookies and similar technologies on our websites (including authentication/session mechanisms and analytics). See Section 6.
2. How do we process your information?
In short: We process your information to provide, improve, and administer our Services, communicate with you, for security and fraud prevention, and to comply with law.
We may process personal information to:
- Deliver the Services — including downloads, licensing validation, free-trial limits, and Pro features;
- Manage accounts and authentication — e.g., email link sign-in via Firebase;
- Process transactions — fulfill orders and manage billing through our payment provider;
- Provide support — respond to inquiries and troubleshoot issues;
- Secure the Services — monitor abuse, protect against fraud, and maintain integrity of license enforcement;
- Improve the Services — understand usage in aggregate to improve reliability and user experience (including analytics where enabled);
- Comply with law — respond to lawful requests and meet legal obligations;
- Other purposes with consent — where applicable law requires consent for a specific processing activity.
We do not use your information to send third-party direct marketing unrelated to Downeezy unless you have opted in where such opt-in is required. If we introduce personalized advertising beyond basic analytics, we will update this notice accordingly.
3. What legal bases do we rely on to process your personal information?
In short: We only process personal information where we believe we have a valid legal basis under applicable law.
If you are in the EEA, UK, or Switzerland, we may rely on:
- Consent — where you have given clear permission;
- Performance of a contract — to provide the Services you requested (including license fulfillment);
- Legitimate interests — such as securing our Services, improving performance, and preventing abuse, where not overridden by your rights;
- Legal obligations — where processing is necessary to comply with the law;
- Vital interests — in rare cases involving safety.
If you are in Canada, we may process information based on express or implied consent where permitted, or other legal bases recognized under Canadian privacy laws. You may withdraw consent where processing is consent-based, subject to legal exceptions.
4. When and with whom do we share your personal information?
In short: We may share information with service providers and in specific situations described here.
We may share personal information with vendors and service providers who perform services for us, including:
- Cloud infrastructure and developer platform: Google (e.g., Firebase Authentication, Firestore, Cloud Functions/Cloud Run, Hosting, and related Google Cloud services) — subject to Google’s policies;
- Payments and billing: Paddle — Privacy;
- Analytics (if enabled): e.g., Google Analytics / Firebase Analytics as configured on our web properties.
We may also share information:
- Business transfers: in connection with a merger, acquisition, financing, or sale of assets, subject to appropriate safeguards;
- Legal and safety: when required by law, court order, or to protect rights, safety, and security.
5. What is our stance on third-party websites?
In short: We are not responsible for third-party sites you access through links or embedded content.
The Services may contain links to third-party websites or services. We do not control and are not responsible for their content or privacy practices. Review the third party’s policies before providing information.
6. Do we use cookies and other tracking technologies?
In short: Yes — we may use cookies and similar technologies as needed for authentication, preferences, security, and analytics.
You can control cookies through your browser settings. Blocking certain cookies may affect sign-in or site functionality. For more about Google/Firebase analytics cookies, see Google’s documentation and opt-out tools where available.
7. How long do we keep your information?
In short: We keep information only as long as necessary for the purposes in this notice, unless a longer period is required by law.
When we no longer have a legitimate need, we delete or anonymize personal information, or isolate it in backups until deletion is feasible.
8. Do we collect information from minors?
In short: We do not knowingly collect data from or market to children under 18.
If you believe we have collected information from a child under 18, contact us and we will take reasonable steps to delete it.
9. What are your privacy rights?
In short: Depending on your region, you may have rights to access, correct, delete, restrict, or object to certain processing, and to data portability.
To exercise rights, email privacy@downeezy.com. We will verify requests as permitted by law. If you are in the EEA/UK and believe processing is unlawful, you may lodge a complaint with your supervisory authority.
Withdrawing consent, where processing is consent-based, does not affect lawfulness of processing before withdrawal.
10. Controls for Do-Not-Track features
Most browsers offer a Do-Not-Track (DNT) setting. No uniform standard is finalized; we do not currently respond to all DNT signals. If a standard is adopted that applies to us, we will update this notice.
11. Do United States residents have specific privacy rights?
In short: If you are a resident of certain US states, you may have additional rights regarding your personal information.
Categories collected (illustrative — past 12 months)
| Category | Examples | Collected |
|---|---|---|
| A. Identifiers | Name, email, IP address, online identifiers, account identifiers | YES |
| B. California Customer Records categories | Contact information; payment-related information processed by Paddle | YES |
| C. Protected classification | Gender, age (not collected for licensing) | NO |
| D. Commercial information | Transaction records, purchase history via payment processor | YES |
| E. Biometric information | — | NO |
| F. Internet or network activity | Usage data, diagnostics, analytics on our sites/apps | YES (limited) |
| G. Geolocation data | Approximate (e.g., IP-based) | Limited |
| H–L. Other categories | Audio, employment, education, inferences, sensitive personal information | NO (not applicable) |
We disclose personal information to service providers under contracts that limit use to providing services to us (e.g., Google Cloud/Firebase, Paddle). We do not “sell” personal information as traditionally defined; if we engage in activities treated as “sale” or “sharing” for targeted advertising under US state law, we will update this notice and provide opt-out mechanisms as required.
California and other state privacy laws
Residents of California, Colorado, Connecticut, Utah, Virginia, and other states with comprehensive privacy laws may have rights to access, delete, correct, obtain a copy of, or opt out of certain processing (including targeted advertising or “sale” where applicable). To submit a request, email privacy@downeezy.com. We will verify your request as required by law. You may designate an authorized agent where permitted, with appropriate authorization.
We will not discriminate against you for exercising privacy rights. If we deny a request, you may appeal where state law provides an appeal process, by contacting the same email address.
California “Shine the Light” requests regarding personal information shared for third-party direct marketing (if applicable) may be submitted in writing to privacy@downeezy.com.
12. Do other regions have specific privacy rights?
In short: You may have additional rights based on your country.
Australia and New Zealand: You may request access or correction of your personal information. If you believe we have breached local privacy principles, you may contact the Office of the Australian Information Commissioner or the New Zealand Privacy Commissioner, as applicable.
South Africa: You may request access or correction under POPIA. Complaints may be directed to the Information Regulator (South Africa).
For Turkey and the EU/UK, applicable laws (including KVKK and GDPR) may grant you additional rights; contact us to exercise them.
13. Do we make updates to this notice?
In short: Yes — we will update this notice as needed to remain compliant with relevant laws.
The updated version will be indicated by the “Last updated” date at the top. Material changes may be communicated through the Services or by email where appropriate.
14. How can you contact us about this notice?
Email: privacy@downeezy.com
15. How can you review, update, or delete the data we collect from you?
Depending on applicable law, you may have the right to request access, correction, or deletion of your personal information. Submit a request to privacy@downeezy.com. We may need to verify your identity. Some data may be retained where law requires (e.g., tax or accounting records via our processors).