Privacy Policy & Trust Center

Whether you are a visitor to Code-Cube.io or whether you are a customer using our software, this page is designed to give you a clear overview of how we handle data. When you are a visitor to Code-Cube.io we are the Data Controller. We collect your info to show you the site, answer your demo requests and improve our marketing. When you are a customer using our software we are the Data Processor. You own the data of your customers; we simply process some data according to your instructions to provide the service.

Our privacy pillars

  • Data sovereignty: Your data stays in the EU (European Google Cloud servers by default).
  • No data selling: We never sell your personal data or your customers’ data to third parties.
  • Security first: We use industry-standard encryption (AES-256) and strict access controls.
  • Compliance: Fully GDPR compliant, including a standing Data Processing Agreement (DPA) for all customers.

Detailed Privacy Policy

General information

We consider the careful handling of personal data of the utmost importance. We adhere to the requirements of the GDPR and other applicable laws by:

  • Clearly specifying purposes before processing.
  • Limiting collection to only what is necessary.
  • Implementing technical and organizational security measures.
  • Respecting your rights to access, correct, or delete data.

Data we collect as a Controller (website visitors)

When you visit our website or schedule a demo, we process:

  • Contact Info: Name, email, company name (provided via forms).
  • Technical data: IP address, browser version, and device type (for site functionality).
  • Behavioral data: Clicks and navigation paths (to improve user experience).
  • Google API data: If you link your Google Tag Manager, we access container configurations solely to provide the Tag Monitor service. We do not store PII from the Google API.

Data we process as a Processor (the service)

When you use our products (such as Tag Monitor, DataLayer Guard), e might need to process the data you or your end-users provide through your website tags.

  • Scope: The specific data processed is determined by your configuration.
  • Purpose: Purely for the “Service” (e.g., monitoring tag health, guarding the dataLayer).
  • Storage: We do not store end-user Personal Identifiable Information (PII).
  • Contractual basis: This processing is governed by our Data Processing Agreement (DPA), which is incorporated into our Terms of Service.

Our Sub-processors

To provide our B2B services, we use a limited number of trusted third-party vendors. Each is vetted for GDPR compliance:

  • Google Cloud Platform (Cloud Infrastructure & Hosting, located within the EU)
  • Stripe (Payment Processing)
  • Google Analytics (website usage & performance tracking)
  • Google Tag Manager (tag deployment & management)
  • Complianz (privacy suite & legal consent management)
  • SendGrid (transactional & platform emails)

Google API Services

Our application integrates with the Google Tag Manager (GTM) API to manage your GTM containers efficiently. In compliance with the Google API Service: User Data Policy, we want to clearly inform you about how we access, use, store, and share your Google user data.

Data access: We access specific Google user data necessary for the management of GTM containers. This includes accessing your GTM account information, container configurations, and other related data required to provide our services.

Data use: The accessed data is used exclusively to perform the functions you’ve authorized within our application. This includes creating, updating, and managing GTM containers as requested by you.

Data storage: Only data about account, container and tag structure are temporarly retrieved from the Tag Manager API. After revoking access to the API, all data will be removed. There will never be any personal data retrieved from the API or stored on our servers.

Data sharing: We do not share your Google user data with third parties except as necessary to comply with legal obligations, enforce our policies, or protect our rights and the rights of our users.

Limitation of data use: Our use of your Google user data is strictly limited to the purposes described in this privacy policy. We do not use your data for any other purposes without obtaining your explicit consent.

Code-Cube.io’s API use and transfer to any other app of information received from Google APIs will adhere to Google API Services User Data Policy, including the Limited Use requirements.”

Security

The security of your personal data is very important to us. Therefore we have implemented technical and organizational measures to protect your personal data against loss or any form of unlawful processing. Amongst others, we use the following measures: protection of our servers by firewalls, securing our connection with you by using SSL/TLS and encryption of sensitive data. For security and availability purposes we use software to monitor network traffic (IP-addresses) in order to identify unauthorized attempts to upload or change information, or otherwise cause damage.

Your legal information

Under the GDPR, you have the following rights regarding your personal data:

    • Right to access & portability: Request a copy of your data.
    • Right to rectification: Correct any errors.
    • Right to erasure: Request the “Right to be Forgotten.”
    • Right to object: Object to processing based on legitimate interest.

To exercise these rights, contact our Data Protection Officer at hello@code-cube.io.

Statement changes

We have the right to amend this privacy and cookie statement at any time and recommend that you consult this statement on a regular basis in order to remain informed of any changes.

Contact details

If you have any questions for our Data Protection Officer regarding this statement, the use of our websites or the use of our services, please contact us at hello@code-cube.io

Code-Cube.io
Grebbeberglaan 15
3527 VX Utrecht The Netherlands

Registered as Code Cube B.V. under number 87293307 at the Dutch chamber of commerce.