Firme.by MARBTC-TECH ← Back to home

Privacy policy

Last updated: 16 July 2026 · Applies to firme.dev and rescue.firme.dev.

The short version: no cookies, no analytics, no advertising trackers. We only process the data you send us to reply and do the work — mainly your email and what you write to us. We don't sell or share it for marketing.

1. Who is responsible for your data

The data controller is MARBTC-TECH RO S.R.L. (CUI 49489784), registered in Romania. Full company details are in the Legal notice. You can reach us at rescue@firme.dev.

2. What data we process, and why

When you email us. We process your email address and whatever you write. Purpose: to reply and, if you hire us, to provide the service. Legal basis: taking steps at your request before a contract, and our legitimate interest in answering enquiries.

The RESCUE request form. The form on rescue.firme.dev runs entirely in your browser: it opens your own email program with a pre-filled message (your name, email, repository URL, the tool you built the app with, a description of the fault, how urgent it is, and whether the app holds real personal data). The website itself sends nothing to our servers — we only receive the email if you choose to send it. Purpose: to assess the problem and give you a fixed price. Legal basis: steps taken at your request before a contract. If you don't provide the repository and the fault, we can't diagnose it.

When we do the repair (RESCUE). To fix your app we access, by invitation and with limited permissions, the tools where your code and data live (for example GitHub and, only if the fault requires it, Supabase or Stripe). If real personal data is involved, we sign a data processing agreement (GDPR Article 28) first and work on a copy with test data whenever possible. In that work we act as your processor; you remain the controller of your users' data.

3. Cookies and tracking

This website sets no cookies and uses no analytics, no advertising and no tracking. There is nothing to consent to on that front.

4. Service providers

We rely on a few providers who process data on our behalf, strictly to run the site and the service:

  • Hosting. The website is hosted by Hostinger. Their servers may log technical data such as IP addresses to operate and secure the site. Legal basis: our legitimate interest in running a working, secure website.
  • Fonts. Our fonts are served from our own domain. We do not use Google Fonts or any third-party font CDN, so no data is sent to them.

5. International transfers

This website itself does not send your data outside the EU: it sets no cookies, uses no third-party trackers or font services, and the RESCUE form works in your own email program. The only external processing is our hosting provider's technical logging, which is covered by their own terms and safeguards.

6. How long we keep your data

Enquiries that don't lead to a project are kept for up to 12 months and then deleted. If you become a client, we keep the data tied to the project and to invoicing for the period required by Romanian accounting and tax law, and then delete it.

7. Your rights

Under the GDPR you can ask us to give you access to your data, correct it, delete it, restrict or object to its processing, and receive a copy in a portable format. To exercise any of these, email rescue@firme.dev and we will reply in writing.

You also have the right to complain to a data protection authority. For us that is Romania's ANSPDCP (Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal); if you live in another EU country, you may also complain to your local authority.

8. Security

We keep access to your systems to a minimum: invitation-only, with limited permissions, never by password, and revoked when the work is done. Everything we touch in your code is recorded in the code history.

9. Changes to this policy

If this policy changes, we update the date at the top. Material changes will be announced on this page.