← Back to home

Privacy Policy

Last updated: March 2026

1. Data Controller

BRUTEFIX DOO
Karađorđeva 36
11000 Beograd (Savski Venac)
Srbija (Serbia)
PIB (Tax ID): 113329636
MB (Company ID): 21846511
Email: info@upsec.io

2. What Data We Collect

This website does not use cookies, analytics, tracking scripts, or any third-party services that collect personal data. Fonts are self-hosted and do not make external requests.

If you contact us via email, we process your email address and the contents of your message solely for the purpose of responding to your inquiry.

3. Legal Basis for Processing

We process personal data based on our legitimate interest in responding to inquiries (Art. 6(1)(f) GDPR) or based on your consent where applicable (Art. 6(1)(a) GDPR).

4. Data Retention

Email correspondence is retained for the duration necessary to respond to your inquiry and for any subsequent follow-up. Data is deleted when it is no longer needed for the purpose for which it was collected, unless legal obligations require longer retention.

5. Your Rights

Under the GDPR, you have the right to:

  • Access your personal data (Art. 15 GDPR)
  • Rectification of inaccurate data (Art. 16 GDPR)
  • Erasure of your data (Art. 17 GDPR)
  • Restriction of processing (Art. 18 GDPR)
  • Data portability (Art. 20 GDPR)
  • Object to processing (Art. 21 GDPR)

To exercise any of these rights, please contact us at info@upsec.io.

6. Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority. In Serbia, this is the Commissioner for Information of Public Importance and Personal Data Protection (www.poverenik.rs).

7. Cookies and Tracking

This website does not use cookies of any kind. No analytics, advertising, or tracking technologies are employed. No data is shared with third parties through this website.

8. Hosting

This website is hosted on Cloudflare Pages (Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA). When you visit this site, Cloudflare processes your IP address and technical connection data (such as browser type and requested URL) to deliver the page content. This processing is based on our legitimate interest in providing a secure and reliable website (Art. 6(1)(f) GDPR).

Cloudflare may transfer data to the United States. Cloudflare participates in the EU-U.S. Data Privacy Framework. For more information, see Cloudflare's Privacy Policy.

9. Third-Party Services

Apart from the hosting provider mentioned above, this website does not use any third-party services. All fonts are self-hosted. There are no external scripts, iframes, or embedded content.

10. Changes to This Policy

We may update this privacy policy from time to time. The latest version is always available at this URL.