Skip to main content
FleyeMapsBack to home
Last updated 2026-04-28. This document is currently under counsel review. The core commitments will not change; the final v1.0 wording may be tightened. For the binding signed copy or DPA, email legal@fleyemaps.com.

Privacy Policy

Effective Date: [INSERT DATE]

Last Updated: [INSERT DATE]

Kourstec LTD ("Company," "we," "us," or "our") operates the FleyeMaps platform. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our Service.

1. Information We Collect

Information you provide

  • Account information: Name, email address, company name, and role when you sign up or request a demo.
  • Billing information: Payment details processed securely through Stripe. We do not store credit card numbers on our servers.
  • Communications: Messages you send to us via support tickets, email, or demo request forms.

Information collected automatically

  • Usage data: Pages visited, features used, timestamps, and session duration.
  • Device and connection data: IP address, browser type, operating system, and device identifiers.
  • Cookies: Essential cookies for session management and security. See our Cookie Policy for details.

2. How We Use Your Information

We use your information to:

  • Provide, maintain, and improve the Service
  • Process payments and manage subscriptions
  • Send transactional emails (account confirmation, billing, alerts)
  • Respond to support requests and communications
  • Monitor and prevent fraud, abuse, and security incidents
  • Comply with legal obligations

We do not sell your personal information. We do not use your data for advertising purposes.

3. Third-Party Processors

We share data with the following processors, each under appropriate data processing agreements:

| Processor | Purpose | Data Shared | |-----------|---------|-------------| | Microsoft Azure | Cloud hosting and infrastructure | All Service data | | Microsoft Entra External ID | Authentication and identity | Email, name | | Stripe | Payment processing | Email, billing details | | Microsoft Graph | Transactional email delivery | Email addresses, notification content | | Cloudflare | DNS, CDN, and web application firewall | IP addresses, request metadata | | AirLabs | Flight data provider | No personal data (API key only) | | Azure Application Insights | Performance monitoring and error tracking | Anonymised usage telemetry |

4. Data Retention

  • Account data: Retained while your account is active and for 30 days after cancellation.
  • Flight tracking data: Retained per your subscription tier's history limits, then automatically purged.
  • Support tickets: Retained for 2 years after resolution for quality and compliance purposes.
  • Server logs: Retained for 90 days for security and debugging purposes.

5. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Rectify inaccurate personal data
  • Delete your personal data (subject to legal retention requirements)
  • Port your data in a machine-readable format
  • Object to or restrict certain processing activities
  • Withdraw consent where processing is based on consent

To exercise these rights, contact us at privacy@fleyemaps.com. We will respond within 30 days.

GDPR (European Economic Area)

If you are in the EEA, our legal bases for processing are: performance of contract (providing the Service), legitimate interests (security, improvement), and compliance with legal obligations.

CCPA (California)

If you are a California resident, you have the right to know what personal information we collect and to request its deletion. We do not sell personal information.

6. Security

We implement appropriate technical and organisational measures to protect your data, including:

  • Encryption in transit (TLS 1.2+) and at rest
  • Azure Key Vault for secrets management
  • Role-based access controls and tier-appropriate tenant isolation (dedicated database for every tenant; dedicated database servers from the Standard tier upward; per-tenant Postgres roles with strict connection limits make cross-tenant data access physically impossible at every tier)
  • Regular security audits and vulnerability assessments

7. International Transfers

Your data may be processed in regions where our infrastructure is hosted (currently Microsoft Azure East US). We ensure appropriate safeguards are in place for international data transfers.

8. Children

The Service is not directed to individuals under 18. We do not knowingly collect personal information from children.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through the Service. The "Last Updated" date at the top reflects the most recent revision.

10. Contact

For privacy-related inquiries:

  • Email: privacy@fleyemaps.com
  • Company: Kourstec LTD
  • Data Protection Contact: privacy@fleyemaps.com