Privacy Policy
Last updated: 2026-07-08
1. Who we are
RauchVentures is an independent team based in the Czech Republic. We build Chrome extensions, mobile apps, and SaaS tools, and we partner with select companies on product development and growth work. We are the data controller for personal data collected through this website and our services.
Contact: hello@rauchventures.com
2. Data we collect
When you use the contact form, we collect: your name, email address, and the message you submit.
We also collect technical data automatically through server logs: IP address, browser type, operating system, and pages visited. This data is used solely for security and performance monitoring.
If you engage us for client work or a partnership, we will handle any personal data you share as part of that engagement. The specific data handling terms will be agreed in writing before work begins.
3. Legal basis for processing
We are based in the Czech Republic and operate under the GDPR. The legal basis depends on the situation:
- Contact form. Processed on the basis of your consent when you submit the form, and our legitimate interest in responding to enquiries.
- Analytics. Processed on the basis of our legitimate interest in understanding how our website is used, using privacy-preserving methods that do not require consent under standard GDPR guidance.
- Client and partnership engagements.Processed on the basis of contract performance or pre-contractual steps at your request.
- Server logs. Processed on the basis of our legitimate interest in operating a secure and performant website.
4. How we use your data
We use your information to respond to your enquiries, deliver agreed services, send transactional emails related to your engagement, and comply with legal obligations. We do not use your data for advertising, profiling, or automated decision-making. We never sell your personal data to any third party.
5. Third-party processors
We use a small number of external services to operate this website:
- PostHog (analytics): EU instance, configured in memory-only mode. No persistent identifiers are stored in your browser. Form inputs are masked. Data is not sold or used for advertising.
- ZeptoMail (email delivery): used to deliver contact form confirmations and notifications. Your email address is transmitted through ZeptoMail servers solely for this purpose.
- Netlify (website hosting and serverless function execution): our website and contact form backend are hosted on Netlify infrastructure.
None of these processors sell your data.
6. Cookies
This site does not set first-party analytics or advertising cookies. PostHog is configured to operate in memory-only mode and does not write any persistent cookie to your browser. Our fonts are self-hosted and do not involve any third-party CDN. No cookie consent banner is required as no tracking or non-essential cookies are set.
7. International transfers
Some of our processors operate infrastructure outside the European Economic Area. Where personal data is transferred outside the EEA, we ensure adequate protection is in place through Standard Contractual Clauses approved by the European Commission or other lawful transfer mechanisms.
8. Data retention
- Contact form submissions. Retained for the duration of any resulting engagement plus 36 months, then securely deleted.
- Server logs. Retained for a maximum of 90 days.
- Email correspondence. Retained for 5 years to comply with legal record-keeping obligations.
- Client and partnership data. Retained for the duration of the engagement plus the period specified in the relevant agreement.
9. Security
We use TLS encryption for all data in transit, apply restricted access controls to any personal data we hold, and conduct regular security reviews of our infrastructure. No method of transmission over the internet is completely secure, but we take all reasonable steps to protect your information.
10. Your rights
Under the GDPR, you have the right to access, correct, or delete the personal data we hold about you. You can also object to or request restriction of processing, and request a copy of your data in a portable format. To exercise any of these rights, email us at hello@rauchventures.com and we will respond within 30 days.
If you are not satisfied with how we handle your data, you have the right to lodge a complaint with the Czech data protection authority: the Office for Personal Data Protection (Úřad pro ochranu osobních údajů),uoou.cz.
11. Do not sell (CCPA)
We do not sell personal information to third parties. California residents may submit a data request at hello@rauchventures.com.
12. Changes to this policy
We may update this policy from time to time. The date at the top of this page reflects when it was last changed. Material changes will be communicated via email to active clients. We will not retroactively reduce your rights under any version of this policy.
13. Contact
Privacy inquiries: hello@rauchventures.com. We aim to reply within a few hours.