Back to PAGEnza
Privacy

Privacy Policy

Version 1 - July 16, 2026

Privacy Policy of Pagenza

Version: 1.0

Effective Date: June 16, 2026

  1. Data Controller

The controller of personal data processed in connection with the operation of the website https://www.pagenza.com and the provision of the Pagenza service is:

SAMUM

Zimowa 5/1

05-500 Nowa Iwiczna

Poland

NIP: PL7321925395

E-mail: hello@pagenza.com

In this Privacy Policy, SAMUM is hereinafter referred to as the "Controller", "we", or "Pagenza".

  1. Scope of the Privacy Policy

This Privacy Policy describes how we process personal data in connection with:

visiting the website https://www.pagenza.com;

using the landing page builder before logging in;

creating an account and using the Pagenza panel;

generating and editing landing pages, related pages, and email templates;

uploading photos, graphics, logos, and other materials;

payments, subscriptions, and billing;

contact forms, support, and email communication;

marketing of Pagenza's own services;

managing leads collected through pages created by users.

  1. Roles in Data Processing

In relation to the data of Pagenza Users, account data, payments, support communication, Pagenza's marketing activities, security logs, and data regarding the use of the Service, SAMUM acts as the data controller.

In relation to personal data collected through landing pages belonging to the Client—specifically lead data entered into forms on the Client's pages—the Client is, as a rule, the data controller, and SAMUM acts as a data processor on behalf of the Client.

The Client is responsible for providing individuals filling out forms on their landing page with appropriate information about data processing, obtaining required consents, and ensuring the legal bases for processing.

  1. What Data We Process

We may process the following categories of data:

Account data: first name, last name, email address, password in a secured format, account ID, account status, account settings.

Company and billing data: company name, address, NIP/VAT ID, country, billing details, payment history, plan, subscription status.

Technical data: IP address, cookie identifiers, session identifiers, device type, browser, operating system, server logs, dates and times of events, error information.

Service usage data: projects, landing page settings, subdomains, domains, page versions, generation history, limits, publication status, information about clicks and views.

User Content: prompts, business descriptions, offer content, texts, photos, graphics, logos, files, marketing materials, form configurations, email templates, generated content, and layouts.

Lead data: data entered by visitors to the Client's landing page, e.g., name, email address, phone number, message content, form answers, consents, form submission date, IP address or IP address hash, double opt-in status, email logs.

Communication data: messages sent to support, responses, attachments, information regarding complaints, contact history, and communication preferences.

Marketing data: email address, first name, marketing consents, date and source of consent, unsubscribe status, information about email opens and clicks, communication preferences.

Security-related data: login logs, tokens, password resets, detected abuses, incidents, blocks, data needed to protect the Service.

  1. Purposes and Legal Bases for Processing

We process personal data for the following purposes:

Conclusion and performance of the agreement for the use of the Service, including account creation, logging in, saving projects, publishing pages, operating panel features, and technical support.

Legal basis: Art. 6(1)(b) GDPR.

Operation of the builder before logging in, subdomain reservation, saving drafts, and project recovery.

Legal basis: Art. 6(1)(b) GDPR or Art. 6(1)(f) GDPR.

Handling payments, invoices, taxes, accounting, and legal obligations.

Legal basis: Art. 6(1)(c) GDPR.

Generating content, layouts, pages, emails, and other elements using AI.

Legal basis: Art. 6(1)(b) GDPR, and for Service improvement and security, also Art. 6(1)(f) GDPR.

Hosting, displaying, and maintaining landing pages and related pages.

Legal basis: Art. 6(1)(b) GDPR.

Handling lead forms on the Client's pages.

Legal basis for SAMUM as a processor: data processing agreement with the Client; the basis on the part of the person filling out the form is determined by the Client as the data controller.

Sending system, technical, transactional, and security-related messages.

Legal basis: Art. 6(1)(b), (c), or (f) GDPR.

Marketing of Pagenza's own services, newsletter, information about features, promotions, and offers.

Legal basis: consent, Art. 6(1)(a) GDPR, or legitimate interest, Art. 6(1)(f) GDPR, where permitted by law.

Analytics, statistics, Service improvement, feature testing, and troubleshooting.

Legal basis: Art. 6(1)(f) GDPR.

Protection against abuse, spam, phishing, attacks, unauthorized access, and violations of the Terms of Service.

Legal basis: Art. 6(1)(f) GDPR.

Establishment, exercise, or defense of legal claims.

Legal basis: Art. 6(1)(f) GDPR.

  1. Data Entered into the AI

Content, prompts, company descriptions, photos, graphics, logos, page structures, and other materials submitted to the generator may be processed by AI systems or AI model providers to generate responses, layouts, content, code, emails, or other outputs.

The User should not input special categories of data, children's data, medical data, financial data, passwords, secrets, API keys, payment card details, or any data they do not have the right to process into the generator.

If the User uploads images of individuals, they must have an appropriate legal basis, including consent for image use, if required.

AI outputs may be saved in the project, technical logs, or generation history to enable the use of the Service, debugging, and improving system performance.

  1. Data Recipients

Data may be transferred to the following categories of recipients:

providers of hosting, cloud infrastructure, databases, and file storage;

providers of email services, transactional, and marketing mailing systems;

payment operators, banks, and billing providers;

providers of AI tools and automated content generation;

providers of analytics, error monitoring, logging, and security;

providers of customer support, CRM, and communication tools;

accounting firms, tax advisors, legal advisors, and auditors;

public authorities, if required by law;

the Client, if the data relates to leads collected by their landing page;

other entities, if necessary for the performance of the agreement, protection of rights, or fulfillment of legal obligations.

  1. Data Transfer Outside the EEA

Some technology providers may process data outside the European Economic Area (EEA).

In such cases, we apply the mechanisms required by the GDPR, in particular, adequacy decisions, standard contractual clauses, additional security measures, or other permissible transfer bases.

The User may contact us to obtain information about the safeguards applied to transfers, to the extent permitted by law and agreements with providers.

  1. Data Retention Period

Account data is retained for the duration of the use of the Service, and subsequently for the period required for billing, defense of claims, security, and legal compliance.

Billing and invoice data is stored for the period required by tax and accounting regulations.

Data of projects, landing pages, versions, content, and files is stored for the duration of the account or project activity, and after deletion, for the period necessary for backups, security, billing, and claims management.

Lead data is stored in accordance with the Client's settings and their use of the Service, unless law, security, or claims require longer retention.

Marketing data is stored until consent is withdrawn, an objection is raised, the user unsubscribes from communications, or the marketing purpose ceases.

Technical and security logs are retained for a period justified by security needs, diagnostics, abuse prevention, and claims management.

Backups may be stored for an additional technical period, after which they are overwritten or deleted in accordance with backup procedures.

  1. Rights of Data Subjects

An individual whose data is processed has rights under the GDPR, including:

the right of access to data;

the right to rectification of data;

the right to erasure of data;

the right to restriction of processing;

the right to data portability;

the right to object to processing based on a legitimate interest;

the right to withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal;

the right to lodge a complaint with a supervisory authority.

In Poland, the supervisory authority is the President of the Personal Data Protection Office (UODO).

To exercise these rights, you can contact us at: hello@pagenza.com.

  1. Lead Data from Client Landing Pages

If you fill out a form on a landing page created by one of our Clients, the controller of your data is typically that Client, and SAMUM processes the data as a technology provider.

In this situation, questions regarding the purpose of processing, marketing, offers, consent, data erasure, or the exercise of rights should be directed primarily to the owner of the respective landing page.

We can assist in handling such requests to the extent that we are able to identify the Client and the data, and as permitted by law and the data processing agreement.

  1. Cookies and Similar Technologies

The Service may use cookies, local storage, session storage, pixels, device identifiers, and similar technologies.

These technologies may be used to:

a. ensure the operation of the site and login features,

b. maintain sessions,

c. remember settings,

d. secure the Service,

e. analyze and measure usage,

f. process payments,

g. market services, if the user has provided the required consent.

Necessary cookies may be used without consent if they are required to provide the service requested by the user.

Analytical or marketing cookies, if not strictly necessary, are used in accordance with applicable laws and consent settings.

Users can manage cookies in their browser settings. Restricting cookies may affect the operation of the Service.

  1. Email Communication

We may send technical, system, transactional, and security-related messages without separate marketing consent if they are necessary for the performance of the agreement or account protection.

We send marketing messages in accordance with regulations, specifically after obtaining the required consent or on another permissible legal basis.

The User may withdraw marketing consent or unsubscribe from marketing communications via the link in the message or by contacting us at hello@pagenza.com.

  1. Security

We apply technical and organizational measures to protect data against unauthorized access, loss, destruction, alteration, or disclosure.

These measures include access control, transmission encryption, authentication mechanisms, event logging, backups, monitoring, and permission restrictions.

No system is completely risk-free. The User should protect their login details, use strong passwords, and not share their credentials with third parties.

  1. Children

The Service is not directed to children. Individuals who, under the laws of their country, cannot independently enter into an agreement or consent to data processing should use the Service only with the consent and under the supervision of a legal guardian, if permitted by law.

  1. Automated Decisions

We may use automated mechanisms to support security, abuse detection, limits, content generation, and personalization of the Service. We do not make decisions that produce legal effects concerning the User or similarly significantly affect them in a solely automated manner, unless explicitly indicated and permitted by law.

  1. Changes to the Privacy Policy

We may update the Privacy Policy if there are changes to the Service, regulations, technologies, providers, processing purposes, or the organization of processing.

We will inform about significant changes within the Service, via email, or through another appropriate method.

The current version of the Privacy Policy is available on the Pagenza website or within the Service panel.

  1. Contact

For matters regarding privacy and personal data, you can contact us at:

SAMUM

Zimowa 5/1

05-500 Nowa Iwiczna

Poland

E-mail: hello@pagenza.com

Website: https://www.pagenza.com

PAGEnza newsletter

Get practical AI landing-page ideas.

Join the PAGEnza list for real examples, launch notes, and short guides on turning a rough idea into a live page.

ExamplesProduct updatesNo spam