Privacy Policy
Last updated: 03 February 2026
This Privacy Policy explains how Smooth CDN (“we”, “us”, “our”) collects, uses, and protects your personal data when you use our services.
We are committed to protecting your privacy and processing your data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR).
For information about how we use cookies and similar technologies, please refer to our Cookies Policy.
1. Data Controller
The data controller responsible for your personal data is:
2. Data We Collect
Depending on how you use the Service, we may collect the following categories of personal data:
- account information (email address, authentication data)
- billing information (billing address, VAT ID, payment status)
- usage data (projects, asset counts, request volumes, usage events)
- technical data (IP address, user agent, logs for security and debugging)
Source of Personal Data
We collect personal data directly from users when they create an account, use the Service, contact us, or make a payment.
3. Purpose of Processing
We process personal data only to the extent necessary to:
- provide and operate the Service
- manage user accounts and billing
- monitor usage limits and prevent abuse
- improve performance and reliability
- comply with legal obligations
4. Legal Basis for Processing
We process personal data based on one or more of the following legal grounds:
- performance of a contract
- compliance with legal obligations
- legitimate interests related to service operation and security
5. Data Sharing
We do not sell your personal data. Data may be shared only with trusted service providers necessary to operate the Service, such as:
- payment processors
- hosting and infrastructure providers
- email and communication services
6. International Data Transfers
Some of our service providers may be located outside the European Economic Area (EEA). Where personal data is transferred outside the EEA, we ensure that appropriate safeguards are in place, such as standard contractual clauses approved by the European Commission.
7. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law.
8. Your Rights
Under applicable data protection laws, you have the right to:
- access your personal data
- rectify inaccurate or incomplete data
- request deletion of your data
- restrict or object to processing
- data portability
- lodge a complaint with a supervisory authority
- withdraw consent at any time, where processing is based on consent
To exercise your rights, contact us using the details provided above.
Supervisory Authority
If you believe that your personal data is being processed in violation of applicable data protection laws, you have the right to lodge a complaint with your local supervisory authority.
In Poland, the supervisory authority is the President of the Personal Data Protection Office (UODO).
9. Data Security
We implement appropriate technical and organizational measures to protect personal data against unauthorized access, loss, or misuse.
Automated Decision-Making
We do not use automated decision-making or profiling that produces legal effects or similarly significantly affects users.
10. Changes to This Policy
We may update this Privacy Policy from time to time. If changes are significant, we will notify users via the Service or email.
11. Contact
If you have questions about this Privacy Policy or our data practices, please contact us at: