Privacy Policy

Infinity Digital Solutions DOO, trading as Infiteq ("Infiteq", "we", "us", or "our"), is a digital product studio providing web design, development, and AI-powered solutions. We are a limited liability company registered in the Republic of Serbia (Company ID: 22052870, Tax ID (PIB): 114661160), with registered office at Slanački put 76N/19, Belgrade, Serbia. Our website is infiteq.io and you can reach us at office@infiteq.io.

For the purposes of the Serbian Law on Personal Data Protection and, where applicable, the EU General Data Protection Regulation (GDPR), Infinity Digital Solutions DOO is the data controller of the personal data described in this policy.

This Privacy Policy explains what personal data we collect when you visit our website or contact us, how we use it, and what rights you have.

We collect the following categories of personal data:

• Contact information — name, email address, phone number, company, and any details you provide when you fill out our contact form or book a call.
• Booking data — information you submit through the Calendly scheduling widget (name, email, selected time, any answers to booking questions).
• Communications — the content of messages or emails you send us and any attachments.
• Technical data — IP address, browser type, device type, and operating system, collected automatically by our hosting provider as part of standard server logs for security and abuse prevention.

We do not collect sensitive personal data (health, biometric, racial/ethnic origin, religious beliefs, etc.) and we do not knowingly collect payment card details through our website.

We use collected data to:

• Respond to your inquiries and schedule discovery calls.
• Deliver services you have engaged us for.
• Send relevant updates or follow-ups (you can opt out at any time).
• Improve our website and understand how visitors use it.
• Comply with legal obligations.

We never sell your personal data to third parties.

Where applicable under GDPR, we process your data on the following legal bases:

• Legitimate interest — to respond to enquiries and improve our services.
• Contractual necessity — to deliver services you have requested.
• Consent — where you have explicitly agreed (e.g., marketing emails).
• Legal obligation — where we are required to process data by law.

Our own website does not currently set analytics or marketing cookies. The only cookies that may be stored on your device are:

• Strictly necessary cookies — small technical cookies required for the site to function properly.
• Third-party cookies set by Calendly — if you interact with the Calendly scheduling widget embedded on our site, Calendly may set its own cookies. These are governed by Calendly's privacy policy.

You can control or delete cookies through your browser settings. Disabling cookies may affect some functionality of the site, in particular the ability to schedule calls through the embedded widget.

If we introduce analytics or marketing cookies in the future, we will update this policy and, where required by law, request your consent through a cookie banner before any non-essential cookies are set.

We use a limited number of trusted third-party processors to operate our website and services:

• Calendly (Calendly LLC, USA) — for scheduling discovery calls. When you book, Calendly collects the information you submit and may use cookies. See their privacy policy.
• Hosting provider — our website is hosted on Vercel Inc. (USA), which processes server log data on our behalf. See Vercel's privacy policy.
• Email and productivity tools — we use standard business email services to send and receive the communications you initiate with us.

Some of these providers are located outside Serbia and the EEA, including in the United States. Where personal data is transferred to such countries, we rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses or equivalent mechanisms under Serbian data protection law.

We do not sell your personal data and we do not share it with third parties for their own marketing purposes.

We keep your data only for as long as necessary for the purposes set out in this policy, and in line with applicable legal retention requirements:

• Contact form submissions and enquiries — up to 24 months from last contact, unless you become a client.
• Client project data — for the duration of the engagement and for up to 10 years afterwards to comply with Serbian tax, accounting, and commercial record-keeping obligations.
• Server logs — up to 12 months, after which they are deleted or anonymised.

You can request deletion at any time (see Section 9). Where we are required to keep certain records by law, we will restrict further processing instead of deleting them.

We take reasonable technical and organisational measures to protect your personal data against unauthorised access, loss, or disclosure. These include encrypted communications (HTTPS), access controls, and regular security reviews.

No method of transmission over the internet is 100% secure. If you believe your data has been compromised, please contact us immediately.

Depending on your location, you may have the following rights regarding your personal data:

• Access — request a copy of the data we hold about you.
• Rectification — ask us to correct inaccurate or incomplete data.
• Erasure — request deletion of your data ("right to be forgotten").
• Restriction — ask us to limit how we use your data.
• Portability — receive your data in a structured, machine-readable format.
• Objection — object to processing based on legitimate interests.
• Withdraw consent — where processing is based on consent, withdraw it at any time.

To exercise any of these rights, email us at office@infiteq.io. We will respond within 30 days. We may need to verify your identity before acting on your request.

Right to lodge a complaint: If you believe we have not handled your personal data properly, you have the right to lodge a complaint with a supervisory authority. In Serbia, this is the Commissioner for Information of Public Importance and Personal Data Protection (poverenik.rs). If you are located in the EU/EEA, you may also lodge a complaint with your local data protection authority.

Our services are not directed at children under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with their data, please contact us and we will delete it promptly.

We may update this Privacy Policy from time to time. The "Last updated" date at the top of this page reflects the most recent revision. Continued use of our website after changes are posted constitutes your acceptance of the updated policy.

If you have any questions about this Privacy Policy or how we handle your data, please get in touch:

Infinity Digital Solutions DOO (trading as Infiteq)
Slanački put 76N/19, Belgrade, Serbia
Company ID: 22052870 · Tax ID (PIB): 114661160
Email: office@infiteq.io
Website: infiteq.io