Skip to main content

Privacy Policy

Last updated: November 30, 2025 • Version 1.0.0

1. Summary

This Privacy Policy explains how Domaintrack.it collects, uses, and protects your data. We are committed to GDPR compliance and respecting your privacy.

Key points:

  • We collect only what's necessary to provide the service
  • Domain monitoring data is stored securely
  • We do not sell your personal data
  • You can request access, correction, or deletion of your data at any time

2. Information We Collect

2.1 Account Information

When you create an account, we collect your email address (required), and optionally your name and company name.

2.2 Domain Data

When you add domains to monitor, we collect and store: domain names, expiration dates, registrar information, WHOIS/RDAP lookup results, and SSL certificate information.

2.3 Usage Data

We automatically collect technical information: IP address (for security and rate limiting), browser type, pages visited, and access timestamps.

2.4 Payment Data

Payment information is processed directly by Stripe and never stored on our servers. We only retain transaction references for accounting purposes.

3. How We Use Your Data

We process your data based on the following legal grounds (GDPR Article 6):

  • Contract performance: Providing the domain monitoring service, sending expiration alerts, account management, and processing payments.
  • Legitimate interest: Security, fraud prevention, rate limiting, and service improvement.
  • Legal obligation: Tax and accounting compliance.
  • Consent: Marketing communications (opt-in only).

4. Data Storage & Retention

Your data is stored on servers located in the European Union (Supabase EU region). We implement security measures including HTTPS encryption and encryption at rest.

Retention periods:

  • Domain monitoring data: While your account is active
  • Account data: While active + 30 days after deletion
  • Billing records: 10 years (legal requirement)

5. Data Sharing

We do not sell your personal data. We share data only with service providers necessary to operate Domaintrack.it:

  • Supabase — database (EU servers)
  • Vercel — hosting (with Standard Contractual Clauses for EU compliance)
  • Stripe — payments (PCI-DSS certified)
  • Resend — email delivery

All providers are bound by GDPR-compliant data processing agreements. We may also disclose data when required by law.

6. Your Rights

Under GDPR, you have the right to:

  • Access — Request a copy of your personal data
  • Rectification — Correct inaccurate data
  • Erasure — Request deletion of your data
  • Portability — Receive your data in a portable format
  • Restriction — Limit how we process your data
  • Objection — Object to certain processing
  • Withdraw consent — At any time for consent-based processing

To exercise these rights, email support@domaintrack.it with subject "Privacy Request". We will respond within 30 days.

You may also lodge a complaint with your local data protection authority at edpb.europa.eu.

7. Cookies

We use only essential cookies for:

  • Authentication and session management
  • Theme preferences (light/dark mode)
  • Security (CSRF protection)

We use Vercel Analytics for anonymous, aggregated usage statistics. We do not use tracking or advertising cookies.

8. Changes to This Policy

We may update this Privacy Policy periodically. For significant changes, we will notify you via email or through a notice on our website before the changes take effect.

9. Contact

For questions about this Privacy Policy or to exercise your data protection rights:

Email: support@domaintrack.it

Domaintrack.it is operated by Zelatech S.R.L., a company registered in Italy (VAT: IT05931101215, REA: NA-785269), Corso Novara 10, 80143 Napoli, Italy. PEC: zelatech@pec.it