Privacy Policy
Last updated: 20 April 2026
This policy explains what personal data NeuroCAD processes through neurocad.eu, why, on which GDPR legal bases, and how you can exercise your rights.
1. Controller and Scope
NeuroCAD acts as the controller for the public website and its contact channels. This policy covers normal website visits, direct contact by email, and pre-sales or pilot conversations. Where a separate written agreement exists for a specific engagement, that document governs alongside this policy.
2. Categories of Personal Data
Technical request data: IP addresses, request URLs, referrer info, browser/device metadata, timestamps, and security diagnostics generated by normal site operation.
Contact and business data: Information you provide via email — name, email address, company, role, and message content.
Preference data: Stored in your browser, covering theme preferences and privacy consent choices.
Optional external fonts: If you allow it, your browser may share network metadata such as IP address and user-agent to Google Fonts and Google Static.
3. Purposes and Legal Bases
Operating, securing, and debugging the site — legitimate interests under Art. 6(1)(f).
Responding to your requests and pre-contractual steps for demos, pilots, or commercial discussions — Art. 6(1)(b).
Legal record-keeping, compliance, incident response, and fraud prevention — Art. 6(1)(c) and 6(1)(f).
Remembering consent settings and loading non-essential resources only upon your approval — Art. 6(1)(a).
4. Cookies, Local Storage, and Consent
This site uses browser local storage rather than advertising or analytics cookies. Necessary storage handles your privacy choices and interface preferences (e.g., theme). Google Fonts are optional and load only when accepted via the privacy banner. Rejecting non-essential storage keeps the site fully functional. No behavioral advertising cookies are in use at the time of this update.
5. Third Parties and International Transfers
Clicking external links or allowing optional Google Fonts may send data to third-party providers under their own terms. Where a provider operates outside the EEA, it is responsible for its own transfer safeguards. NeuroCAD limits optional third-party requests and loads them only with your consent.
6. Retention
Technical logs are kept only as long as needed for operations, security, troubleshooting, and abuse prevention.
Email and commercial records are kept as needed to handle the request, maintain business records, or meet legal obligations.
Local storage entries remain in your browser until cleared, changed, or overwritten by you.
7. Your GDPR Rights
You have the right to access, rectification, erasure, restriction, and data portability (where processing is based on contract or consent and automated). You may object to legitimate-interest processing and withdraw consent at any time for optional processing without affecting prior lawful processing.
8. Complaints and Contact
Reach us at office@neurocad.eu. Complaints may also be filed with the Bulgarian CPDP or the competent supervisory authority in your EU country of residence or work.
| Controller | NeuroCAD |
| Website | neurocad.eu |
| office@neurocad.eu | |
| GitHub | github.com/neurocad-eu |
| Supervisory authority | Commission for the Protection of Personal Data (CPDP) |
This page is an operational legal baseline for the current public website and should be updated if NeuroCAD enables direct online contracting or additional data flows.