Privacy Policy
Last Updated
Jan 28, 2025
At Avalonia UI, we take your privacy seriously. Please read this Privacy Policy to learn how we treat your personal data. By using or accessing our Services in any manner, you acknowledge that you accept the practices and policies outlined below, and you hereby consent that we will collect, use and share your information as described in this Privacy Policy.
If you are in the European Economic Area (EEA), we will only process your personal data as outlined in this Privacy Policy when we have a legal basis to do so under applicable EU laws.
You may print a copy of this Privacy Policy via your File → Print menu. If you have a disability, you may access this Privacy Policy in an alternative format by contacting team@avaloniaui.net.
What this Privacy Policy Covers
This Privacy Policy covers how we treat Personal Data that we gather when you access or use our Services. "Personal Data" means any information that identifies or relates to a particular individual and also includes information referred to as "personally identifiable information" or "personal information" under applicable data privacy laws, rules or regulations. This Privacy Policy does not cover the practices of companies we don't own or control or people we don't manage. Without limiting the foregoing, this Privacy Policy does not cover the practices of you or other users of our Services who may collect or otherwise process Personal Data of End Users of Applications created using our SDKs. As stated in the Terms of Service, all users of our Services and our SDKs are responsible for complying with all applicable data protection and privacy laws and for making available all required privacy notices and disclosures directly to their End Users.
Definitions
When we refer to “personal data,” we mean any information relating to an identified or identifiable natural person (“data subject”) as defined under the General Data Protection Regulation (GDPR).
When we refer to Avalonia UI, “we,” or “us,” we mean AvaloniaUI OÜ, the legal entity responsible for processing personal data. All customer transactions, support services, and business operations are managed through this entity.
When we refer to “our website(s),” we mean any website owned and/or operated by Avalonia UI, including but not limited to avaloniaui.net (including all subdomains).
When we refer to “our products,” we mean Avalonia UI’s software development kits (SDKs), development tools, and related services, including those provided via nuget, our customer portal and support services.
Data Protection Principles
Avalonia UI is committed to processing personal data in accordance with the General Data Protection Regulation (GDPR). As set out in Article 5 of the GDPR, we adhere to the following principles when handling personal data:
Lawfulness, fairness, and transparency – Personal data is processed lawfully, fairly, and in a transparent manner in relation to the data subject.
Purpose limitation – Personal data is collected for specified, explicit, and legitimate purposes and is not further processed in a manner incompatible with those purposes. Further processing for archival, statistical, or research purposes may be permitted, provided appropriate safeguards are in place and data subject privacy is not compromised.
Data minimisation – Personal data is adequate, relevant, and limited to what is necessary for the purposes for which it is processed.
Accuracy – Personal data is kept accurate and up to date. Every reasonable step is taken to ensure that inaccurate personal data is rectified or erased without delay.
Storage limitation – Personal data is retained only for as long as necessary for the purposes for which it was collected. Data may be stored for longer periods if processed solely for archival, statistical, or research purposes, subject to the implementation of appropriate technical and organisational safeguards.
Integrity and confidentiality – Personal data is processed in a manner that ensures appropriate security, including protection against unauthorised access, unlawful processing, accidental loss, destruction, or damage, using appropriate technical and organisational measures.
Under Article 5(2) of the GDPR, Avalonia UI, as the data controller, is responsible for and must be able to demonstrate compliance with these principles.
Accountability
Avalonia UI is committed to ensuring that our data processing activities comply with GDPR. Under the principle of accountability, we take the necessary steps to demonstrate compliance with data protection principles.
We fulfil this obligation in the following ways:
Maintaining records of processing activities in accordance with Article 30 of the GDPR, documenting the personal data we collect, store, and process.
Providing these records upon request to the relevant data protection authority in the applicable jurisdiction.
Avalonia UI ensures that appropriate technical and organisational measures are in place to uphold data protection standards and maintain compliance with GDPR.
Legal Basis for Processing Personal Data
Under the General Data Protection Regulation (GDPR), the processing of personal data must be based on lawful grounds as outlined in Article 6 of the GDPR. Avalonia UI processes personal data under the following legal bases:
Consent (Art. 6(1)(a) GDPR) – We process personal data when the data subject has freely given clear and informed consent for a specific purpose. For example, if you subscribe to our newsletter, we may collect and process your name and email address based on your consent. You can withdraw this consent at any time.
Contractual necessity (Art. 6(1)(b) GDPR) – We process personal data when it is necessary to fulfil a contract or to take steps at the request of the data subject before entering into a contract. This applies when a customer engages Avalonia UI for support, development services, or to purchase a product license.
Legal obligation (Art. 6(1)(c) GDPR) – In certain cases, we process personal data where we are legally required to do so, such as complying with tax, financial, or regulatory obligations.
Vital interests (Art. 6(1)(d) GDPR) – Although unlikely to be applicable in most cases, we may process personal data where it is necessary to protect the vital interests of a data subject, such as in an emergency situation.
Legitimate interests (Art. 6(1)(f) GDPR) – In some cases, we process personal data where it is necessary for the legitimate interests of Avalonia UI, or a third party, provided those interests are not overridden by the rights and freedoms of the data subject. This may include security measures, fraud prevention, analytics, and improving our products and services. When processing under this basis, we conduct a balancing test to ensure that our legitimate interests do not infringe on data subject rights.
Avalonia UI ensures that all personal data processing is conducted in compliance with GDPR and that data subjects are informed of the lawful basis for processing their personal data at the point of collection.
What Personal Data We Collect
Unless expressly stated, providing your personal data is not mandatory and is not a condition for using Avalonia UI’s core services.
The personal data we collect generally falls into the categories outlined below. Some information is provided voluntarily when you interact with Avalonia UI’s website, customer portal, support services, or when purchasing a product license. Other types of information may be collected automatically from your device, such as technical and usage data.
Additionally, we may receive personal data from third-party service providers, such as payment processors, analytics platforms, or CRM tools, where applicable. Further details about how we receive and process such data are outlined below.
Personal Data Categories
Contact Details
Information may include:
Name
Email address
Mailing address
Telephone number
Department
Role
Company name
Third Party Processors:
Pipedrive
Calendly
Customer.io
PandaDoc
Google Workspace
Slack
BoldDesk
Hetzner
Account Data
Information may include:
Name
Email address
Company name
Unique identifier (customer ID)
Mailing address
Department
Role
Subscription details and purchased services
Subscription/plan name
Sign up date
Third Party Processors:
Pipedrive
PandaDoc
Google Workspace
Slack
BoldDesk
Hetzner
Professional Data
Information may include:
Educational and professional history
Certifications
Interests and accomplishments
Job and salary preferences
Professional resumes and CVs
Job applications
Interviewing information
Assessments
References
Hiring results
Optional submitted data
Third Party Processors:
PandaDoc
Google Workspace
Slack
Financial Data
Information may include:
Bank account details
Payment card details
Third Party Processors:
Stripe
Billing Data
Information may include:
Billing address
Payment history
Third Party Processors:
Pipedrive
PandaDoc
Google Workspace
Invoice
Stripe
Envoice
Communications Data
Information may include:
Email correspondence content
Platform responses
Connected email account data
Third Party Processors:
Pipedrive
Customer.io
PandaDoc
Google Workspace
Slack
Cookie Data
Information may include:
Tracker data from cookies, pixels, clear GIFs, web widgets
Cookie IDs
Cookie settings
Third Party Processors:
Customer.io
BoldDesk
PipeDrive
Stripe
Device and Service Data
Information may include:
IP address
Geolocation data
Unique identifier
Login data
Access date and time
Internet Service Provider name
Browser type and version
Time zone setting
Operating system and platform
Device technology information
Third Party Processors:
Hertzner
Calendly
Customer.io
Stripe
BoldDesk
Activity Data
Information may include:
Requested URI
Request date and time
Data transfer amount
Request success status
Referring website
Navigation paths
Query string
Usage data
Pages viewed
Links clicked
Interaction and duration data
Third Party Processors:
Hertzner
Cloudflare
Plausible
Sensitive Data
Avalonia UI does not collect sensitive data such as:
Racial or ethnic origin
Political opinions
Religious or philosophical beliefs
Trade union membership
Genetic data
Biometric data
Health data
Data concerning sexual life or orientation
Exceptions only with:
Specific consent
Compliance requirements
Third Party Processors:
N/A
Categories of Sources of Personal Data
We collect Personal Data about you from the following categories of sources:
You
When you provide such information directly to us
When you use our customer portal
When you use our support portal
When you voluntarily provide information in free-form text boxes through the Services.
When you send us an email or otherwise contact us.
When you use the Services and such information is collected automatically
Through Cookies (defined in the "Tracking Tools and Opt-Out" section below).
Through our SDK telemetry when you use Avalonia UI for development, which collects limited technical data (machine identifier (hashed), project name (hashed), and development environment type). While enabled by default as it contains no personal information, developers can opt-out of this collection.
Third Parties
Vendors
We may use analytics providers to analyze how you interact and engage with the Services, or third parties may help us provide you with customer support.
Our customer support platform BoldDesk collects and processes data according to their privacy policy when you interact with our support portal
How We Use Your Personal Data
Avalonia UI processes personal data to provide, maintain, and improve our software development tools, customer services, and business operations. We do not collect additional categories of personal data or use the data we collect for materially different, unrelated, or incompatible purposes without notifying you.
Avalonia UI Websites
When you visit our websites, our servers temporarily store technical access data in logs to ensure website functionality, security, and stability. This may include device and service data, as well as activity data. These logs are automatically deleted after a set period unless retained for security investigations in cases of unauthorised access or attacks. No personal data is required to browse our websites, though cookie data may be processed based on your selections. Further details are provided in the Use of Cookies section below.
Customer Portal
When you create an account on our customer portal, we process your contact details, account information, and license data to facilitate account creation, product access, and support services. This data is used exclusively for managing SDK licenses, support subscriptions, and other customer-specific interactions. We also store login credentials, user preferences, and account activity logs to secure the portal and provide a seamless experience. You may modify or request deletion of your account data, subject to legal and contractual obligations that require retention of specific records.
SDK and Developer Tools
Avalonia UI collects limited, anonymous telemetry data from our software development kits (SDKs). This data allows us to understand real-world usage patterns, ensuring Avalonia remains compatible, performant, and relevant to modern development environments. Without this telemetry, Avalonia UI would have no meaningful way of identifying which frameworks, tools, and IDEs developers are using, nor how best to prioritise improvements that benefit the broader community.
How We Collect and Use Telemetry Data
Telemetry is collected automatically when a developer builds a project using the Avalonia SDK. This data is purely technical and anonymous, containing information such as which versions of Avalonia and .NET are in use, which development environments are most common, and whether builds are being run in a CI/CD pipeline. These insights ensure that Avalonia remains compatible with industry standards, allowing us to detect ecosystem shifts and respond proactively.
The data we process does not identify individual users but instead focuses on how the framework is being used in aggregate. We do not collect names, email addresses, or any other personally identifiable information. Instead, machine and project identifiers are hashed to prevent direct attribution while still allowing us to understand unique projects without tracking individuals. The data is processed in real-time, immediately aggregated, and stored only in its anonymised form.
To improve understanding of geographic adoption, we process broad location data down to the city level, which is provided by Cloudflare. This helps us see where Avalonia is gaining traction, ensuring that global adoption trends inform development priorities. However, no IP addresses are stored, and this information remains strictly non-identifiable.
Storage and Retention
All telemetry data is transmitted to our Microsoft Azure server in Western Europe, where it is processed in-memory, aggregated, and stored only in its anonymised form. No raw telemetry records are retained beyond their immediate processing phase. The data we keep is focused only on broad project trends, such as how frequently builds occur, how many unique machines contribute to a project, which Avalonia versions are most widely adopted, and which IDEs are commonly used.
Telemetry records are designed to be strictly technical, anonymised, and free from personal identifiers. We do not retain any data that would allow us to track individual developers, and no telemetry data is ever linked to an account, email address, or personally identifiable information.
Privacy and Compliance
Avalonia UI processes telemetry data under legitimate interest (Art. 6(1)(f) GDPR). This data is essential for ensuring Avalonia UI remains stable, performant, and aligned with the needs of our users. Without telemetry, development decisions would rely entirely on anecdotal feedback, limiting our ability to detect performance issues, framework compatibility concerns, and enterprise adoption trends.
We take extensive measures to minimise the impact on user privacy, ensuring that telemetry is proportionate, anonymised, and never used to track individuals.
Avalonia UI is committed to full GDPR compliance and transparency. If you have any concerns about how telemetry is processed or your rights under GDPR, please contact us at team@avaloniaui.net.
Technical Support and Development Services
If you contact Avalonia UI for technical support or development services, we process your contact details, communications, and any supporting files or logs you provide to investigate issues, offer solutions, and improve our support processes. This data is retained as part of our customer service records to ensure consistency and resolve future inquiries efficiently. If your support case involves third-party integrations, we may, where necessary, share specific technical data with the relevant service provider, ensuring that only minimal and essential information is disclosed.
Marketing and Communications
If you subscribe to our newsletter, request gated content, or engage with our marketing materials, we process your email address and engagement history to send you updates on SDK releases, technical tips, and other relevant content. You may unsubscribe at any time, though transactional communications (such as product updates, security notices, or account-related messages) will still be sent as necessary. Additionally, where we identify a legitimate interest, we may contact developers and businesses about relevant opportunities and services, ensuring compliance with applicable consent and opt-out mechanisms.
Legal Compliance and Security
We process personal data as necessary to meet our legal obligations, enforce agreements, and protect the rights of Avalonia UI, our users, and third parties. This includes complying with tax, financial, and regulatory requirements, detecting and preventing fraud, security threats, and unauthorised access, and ensuring that our licensing terms and agreements are upheld. Where legally required, we may disclose personal data to regulatory authorities or law enforcement, ensuring compliance with data protection laws and due process requirements.
Avalonia UI ensures that all personal data processing is conducted in accordance with GDPR and other applicable data privacy laws. If we intend to use your personal data for any materially different, unrelated, or incompatible purposes, we will provide you with prior notice.
How We Disclose or Share Your Personal Data
We disclose your Personal Data to the categories of service providers and other parties listed in this section. As a data controller under GDPR, we ensure all such disclosures comply with EU data protection laws and that appropriate data processing agreements are in place.
Service Providers (Data Processors). These parties process data on our behalf to help us provide our products, tools and services. They include:
Hosting, technology and communication providers.
Security and fraud prevention consultants.
Technical support and developer assistance vendors.
Payment processors.
Our payment processing partner Stripe, Inc. collects your voluntarily-provided payment card information necessary to process your payment.
Please see Stripe's terms of service and privacy policy for information on its processing of your Personal Data.
Analytics Partners. These parties provide analytics on web traffic or usage of our websites and documentation portal. They include:
Companies that analyze how users discover and interact with our websites and resources.
All personal data processing and transfers, including any transfers outside the EU/EEA, are conducted in accordance with GDPR requirements and appropriate safeguards are in place, such as Standard Contractual Clauses where required.
Legal Obligations
We may disclose Personal Data we collect to third parties when required to comply with our legal obligations under EU law, applicable national laws, or when necessary for the establishment, exercise, or defense of legal claims. Such disclosures are conducted in accordance with the activities described under "Meeting Legal Requirements and Enforcing Legal Terms" in the "Our Commercial or Business Purposes for Collecting Personal Data" section above.
Business Transfers
In the event of a merger, acquisition, reorganization, bankruptcy, or other similar event, your Personal Data may be transferred to a successor entity or third party that assumes control of our business (in whole or in part). In such cases, we will take appropriate measures to ensure your Personal Data continues to be protected under applicable data protection laws. We will inform you of any such business transfer and outline any changes to our privacy practices that may affect you, in accordance with GDPR requirements.
Data that is Not Personal Data
We may create anonymized or aggregated data from the Personal Data we collect by removing information that makes the data personally identifiable to you. This process is conducted in accordance with GDPR requirements for anonymization. We may use and share such anonymized or aggregated data for our legitimate business purposes, including:
Analyzing framework and tool usage patterns
Improving our SDK and developer tools
Understanding developer environments and preferences
Such anonymized data cannot be used to identify you and its processing is not subject to GDPR requirements.
Third Party Service Providers
To operate our business effectively and provide our website, customer portal, developer support services, and development tools, we engage third-party service providers for functions such as hosting, data storage, analytics, customer communication, payment processing, and business operations. Some of these third parties may be located outside the European Economic Area (EEA).
We only share personal data with third-party service providers under the following circumstances:
When you have explicitly authorised us to do so.
When it is necessary for legitimate business operations, such as hosting our website, processing transactions, or providing customer support.
When there is a legal or regulatory obligation to disclose the data.
Whenever we disclose data, we ensure that only the minimum necessary information is shared to fulfil the specific purpose. You can view an overview of the main third-party service providers, the types of data they process, and the reasons we engage them here.
Selection and Safeguards
We conduct a thorough assessment of all third-party service providers before engaging them, evaluating their competence, technical security, and organisational data protection measures to ensure compliance with GDPR requirements. These evaluations are documented as part of our compliance processes.
Where required, we enter into Data Processing Agreements (DPAs) with third-party providers, including Standard Contractual Clauses (SCCs) for transfers outside the EEA, in accordance with Article 28 of the GDPR.
International Data Transfers
Some third-party service providers we use may be based outside the EEA, UK, or Switzerland. In cases where data is transferred internationally, we ensure that appropriate safeguards are in place, such as:
The third party operates in a jurisdiction with an adequacy decision from the European Commission.
Standard Contractual Clauses (SCCs) are in place to ensure GDPR-compliant data processing.
Additional safeguards, such as encryption or pseudonymisation, where necessary.
Tracking Tools and Opt-Out
Website Technologies
Our websites and developer tools use certain technologies such as cookies and JavaScript (collectively, "Tracking Technologies") to analyze how you interact with our services. These technologies help us recognize your web browser, understand how you use our websites and tools, analyze trends, and improve our developer experience. We may also receive information from third parties that have placed their own tracking technologies on your devices. We respect your privacy choices, including browser privacy signals and cookie preferences, and provide clear mechanisms to control how your data is collected and used.
We use the following types of tracking technologies:
Essential Cookies - Essential Cookies are required for providing core functionality you have requested. For example, certain cookies enable you to log into secure areas of our developer portal. Disabling these cookies may make certain features unavailable.
Functional Cookies - Functional Cookies record your choices and settings regarding our websites and tools, maintain your preferences, and recognize you when you return. These help us personalize your experience, such as remembering your language preference or development environment settings.
Analytics - We use Plausible Analytics, a privacy-focused analytics service that does not use cookies or collect personal data, to understand how visitors use our websites and documentation. This helps us improve our developer resources and tools.
Third-Party Technologies - Some of our business tools (such as from Google and Pipedrive) may place their own tracking technologies on your device. Their use of this technology is subject to their own privacy policies and terms.
You can control tracking technologies through your internet browser's settings. Most browsers have options for:
Preventing your browser from accepting new cookies
Having the browser notify you when you receive a new cookie
Disabling cookies entirely
To explore what settings are available to you, look in the "preferences" or "options" section of your browser's menu. Note that if you disable or delete certain tracking technologies, you may have to manually adjust some preferences each time you visit our websites, and some features may not function properly.
For more information about cookies and tracking technologies, EU residents can visit https://ico.org.uk/for-the-public/online/cookies/.
Cookie Management
We employ CookieBot to manage cookie consent on our website, maintaining strict control over the use of cookies and similar technologies. By default, we implement only essential cookies necessary for basic website functionality. These include a cookie consent cookie to remember your preferences and a security cookie for cross-site request forgery protection. We do not enable any additional cookies or tracking technologies without obtaining your explicit consent first. This approach ensures transparency in our use of cookies while respecting your privacy preferences.
SDK Telemetry
Our SDK includes telemetry features that collect anonymous technical data. This telemetry:
Does not collect personal data
Is used to help us understand how Avalonia UI SDKs are being used and improve our frameworks
Can be disabled by setting the environment variable 'AVALONIA\_TELEMETRY\_OPTOUT' to 1
Data Security and Retention
We protect your Personal Data from unauthorized access, use and disclosure using appropriate physical, technical, organizational and administrative security measures, chosen based on the type of Personal Data and how we process it. You should also help protect your data by appropriately selecting and protecting your password, and licenses; limiting access to your development environment; and signing out after you have finished accessing your developer portal. Although we implement appropriate security measures, please be aware that no method of transmitting data over the internet or storing data is completely secure.
We retain Personal Data only as long as necessary for the purposes outlined in this Privacy Policy, in compliance with applicable legal obligations and the principle of data minimisation under the GDPR.
For SDK users, we do not collect personally identifiable information (PII). Any data received from the use of our SDKs is processed in-memory at the time it is received and is used exclusively to generate aggregated usage patterns and trends. No raw data is stored, and no individual records are retained.
For customers, including those who have engaged with our support or development services, records of interactions are retained indefinitely to maintain a history of engagements. This includes records of calls, trial participation, purchasing history, and technical support inquiries. In cases where deletion is requested, data may be removed unless legal or business requirements dictate otherwise.
For sales and marketing contacts, data retention depends on the level of engagement. Individuals who make an initial enquiry but never engage further may have their records periodically removed from our system. Where there has been meaningful engagement, such as discussions, trials, or other interactions that indicate a genuine interest in our solutions, their information is retained for potential future business communications. Those subscribed to marketing communications, such as newsletters, remain in our system indefinitely unless they request deletion, though they can opt out of receiving communications at any time.
Decisions about retention periods take into account whether the information is needed to provide services, enforce agreements, ensure security, meet compliance obligations, or protect intellectual property. Data that is no longer necessary is securely deleted or anonymised.
Data Protection Officer
Based on the nature, scope, and scale of our data processing activities, Avalonia UI is not required to appoint a Data Protection Officer under Article 37 of GDPR. We do not conduct large-scale systematic monitoring of individuals or process special categories of data. However, we remain committed to protecting your privacy and ensuring compliance with data protection regulations. For any privacy-related inquiries, please contact us at team@avaloniaui.net
Processing Records and Data Protection Impact Assessments
To ensure compliance with data protection regulations and maintain transparency, we maintain detailed records of our data processing activities in accordance with GDPR Article 30\. For new processing activities, we conduct Data Protection Impact Assessments to evaluate potential privacy implications. These assessments examine the nature and scope of processing operations, evaluate potential risks to individual rights and freedoms, and determine appropriate safeguards and security measures to protect personal data. Our assessment process ensures that privacy considerations are embedded into our operations from the outset.
Data Breach Response and Notification
In the event of a personal data breach, we have established comprehensive response procedures to protect affected individuals and comply with regulatory requirements. Upon discovering a potential breach, we immediately investigate and implement measures to contain and mitigate any risks. We assess the potential impact on individuals' rights and freedoms and, where required under GDPR Article 33, notify the relevant supervisory authority within 72 hours of becoming aware of the breach. When a breach is likely to result in a high risk to individuals' rights and freedoms, we inform affected individuals without undue delay. We maintain detailed documentation of all breaches, including their circumstances, effects, and our remedial actions.
Personal Data of Children
We do not knowingly collect or process Personal Data from children under the age of 16\. Our products and services are designed for professional software developers and businesses, and we do not market to or provide services intended for children. If we become aware that we have inadvertently collected Personal Data from a child under 16, we will take immediate steps to delete that information. If you believe a child has provided Personal Data to us, please contact us at [team@avaloniaui.net](mailto:team@avaloniaui.net)
European Union Data Subject Rights
If you are a resident of the European Union (EU), United Kingdom (UK), Lichtenstein, Norway, or Iceland, you have additional rights under the General Data Protection Regulation (GDPR) regarding the collection, use, and processing of your personal data.
For the purposes of the GDPR, Avalonia UI acts as a controller for personal data collected through our customer portal, marketing website, developer support services, and development services. We do not collect personally identifiable information (PII) through our SDKs, and any usage data is processed in-memory and stored only in an aggregated, non-identifiable format.
We only process personal data when there is a lawful basis for doing so. These include:
Contractual necessity – when data processing is required to fulfil an agreement, such as providing development services or technical support.
Legitimate interests – when processing is necessary for business operations, such as responding to support requests, improving services, preventing fraud, or maintaining security, and does not override your fundamental rights.
Consent – where required, such as for direct marketing, we will only process personal data with your explicit consent, which you can withdraw at any time.
Your GDPR Rights
Under the GDPR, you have the following rights regarding your personal data:
The right to access your personal data
The right to correct or delete your personal data
The right to restrict processing of your personal data
The right to object to the processing of your personal data
The right to data portability
The right to confirm whether your personal data is being processed or not
The right to withdraw consent at any time where processing is based on consent
The right to information on the existence of automated decision-making, if any, as well as meaningful information about the logic involved, its significance, and its envisaged consequences
The right to lodge a complaint with a supervisory authority
If you have given your consent to the processing of your personal data, you can freely withdraw this consent at any time. This will only affect the processing of your personal data after you have withdrawn consent.
Please note that even if you request your personal information to be deleted, certain data may be retained for us to meet our legal or regulatory compliance, exercise, establish, or defend against legal claims, and protect against fraudulent or abusive activity. Personal data retained for these purposes will be handled as described in the section above, entitled Deletion of Personal Data.
Should we continue to process your personal data because we assess our legitimate interests to do so outweigh your legitimate interests (per Article 6, paragraph 1(f) of the GDPR) you may object to this processing. This is only applicable in the case where the processing of personal data is not required for us to fulfill a contract with you. To exercise such an objection, we request that you detail the grounds based on which we should no longer process your personal data. We will check the details of your circumstances based on the grounds you provide, and either stop processing your personal data, or detail to you the legal basis on which we continue to process your personal data.
How You Can Exercise Your Rights
Should you wish to exercise any of these rights, you will need to provide proof of identification that you are the person to whom the personal data relates. When you exercise your right to access, the information you will receive includes the personal data we have related to you, the source of that personal data, the recipients or types of recipients to whom the data was transferred, how long the personal data will be stored, and the purposes for data processing. To exercise any of these rights, please contact using the Contact Information contained within this document.
How We Store and Transfer Personal Data
We primarily store and process data within the European Economic Area (EEA). However, in cases where data is transferred outside the EEA, we ensure appropriate safeguards are in place, such as:
Standard Contractual Clauses (SCCs) approved by the European Commission
Adequacy decisions for countries that provide sufficient data protection standards
Binding Corporate Rules for third-party processors ensuring GDPR compliance
If you believe we have not addressed your concerns adequately, you have the right to lodge a complaint with your local data protection authority. A list of EU supervisory authorities can be found at https://www.edpb.europa.eu/about-edpb/about-edpb/members\_en
California Residents
If you are a consumer located in California, we process your personal data in accordance with the California Consumer Privacy Act (CCPA). Any references to personal data in this policy will also mean “personal information” as that term is defined in the CCPA.
How We Collect, Use, and Disclose your Personal Information
The section above entitled Categories of Personal Data We Collect describes the personal data we may have collected about you, including the categories of sources of that information. We collect this information for the purposes described in the section above entitled Our Commercial or Business Purposes for Collecting Personal Data. We share this information as described in the section above entitled Third Party Service Providers. Avalonia UI uses cookies, including advertising cookies, as described in the section above, entitled Use of Cookies.
Your CCPA Rights and How to Exercise Them
As a California consumer and subject to certain limitations under the CCPA, you have rights regarding your privacy, and corresponding choices regarding our use and disclosure of your personal information. Below you will find details about your rights and how to exercise them.
Right to know - You may request the following information about the personal information we have collected about you:
the categories of personal information we have collected
the categories of sources from which we collected the personal information
the business or commercial purpose for collecting the personal information
the categories of third parties with whom we shared the personal information
the categories of personal information that we disclosed for a business purpose, and the categories of third parties to whom we disclosed that information for a business purpose
Right to delete - You may request that we delete the personal information we have collected about you, subject to certain limitations under applicable law.
Right to opt-out - You may request to opt out of any “sale” of your personal information that may take place. We do not sell your personal information in the conventional sense. However, like many companies, we use advertising services that tailor online ads to your interests based on information collected via cookies and similar technologies about your activity on our websites and other online services. The definition of “sale” under the CCPA is broad and may include use of retargeting and interest-based advertising services. You can read more information about cookies and your ability to opt-out in the section above entitled Use of Cookies.
Right to non-discrimination - The CCPA provides that you may not be discriminated against for exercising these rights.
To submit a request to exercise any of the rights described above, contact team@avaloniaui.net
When exercising your rights, we may need to verify your identity before responding to your request, such as verifying that the email address from which you send the request matches your email address that we have on file. Authentication based on a government-issued and valid identification document may be required.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our business practices, legal requirements, or improvements to how we handle personal data. If we make any material changes to how we process personal data, we will notify affected individuals by appropriate means, which may include an update on our website or direct communication if required by law.
We encourage you to review this Privacy Policy periodically to stay informed about how we protect your personal data. Your continued use of our website, customer portal, support services, or development services after any updates constitutes your acceptance of the revised Privacy Policy. If you do not agree with any changes, you may contact us to exercise your data rights or discontinue your use of our services.
Contact Information
If you have any questions or comments about this Privacy Policy, the ways in which we collect and use your Personal Data or your choices and rights regarding such collection and use, please do not hesitate to contact us at:
Got Any Questions?
Not sure exactly what we’re looking for or just want clarification? We’d be happy to chat with you and clear things up for you.