Legal

Privacy Policy

Last updated: April 2026

This Privacy Policy explains what personal data NightByte Labs collects, how we use it, and the choices you have. We aim to collect the minimum data needed to run the business and deliver our services.

What we collect

Contact details (name, email, company) provided via our contact form or signed agreements.
Billing information processed through our payment providers; we do not store full card numbers.
Support correspondence and project artifacts shared with us during an engagement.
Website analytics (pages viewed, country, device class) collected in aggregated, non-identifying form.

How we use it

To respond to inquiries, deliver engaged services, issue invoices, meet legal and tax obligations, and improve our website. We do not sell personal data. We do not share data with third parties for marketing purposes.

Legal basis (GDPR)

We process data under the legal bases of: performance of a contract, legitimate interest in running our business, consent (where required), and compliance with legal obligations.

Retention

Contact records are kept for the duration of the active relationship and up to seven (7) years after the last invoice for tax and regulatory reasons. Analytics data is anonymized within fourteen (14) months.

Your rights

You may request access to, correction of, or deletion of your personal data, object to processing, or request export of your data in a machine-readable format. Email legal@nightbyte.cc.

Subprocessors

We use a limited set of subprocessors (email, hosting, analytics, payments). A current list is available on request and is provided as part of our Data Processing Addendum.

International transfers

Some subprocessors operate outside Jordan. Where personal data of EU/UK residents is transferred, we rely on Standard Contractual Clauses or equivalent mechanisms.

Contact

Privacy questions: legal@nightbyte.cc.

Questions about this policy? Contact legal@nightbyte.cc.