Privacy Policy & Terms | Edondi Systems

1. Terms of Service (B2B SaaS)

1.1 Nature of Service

Edondi Systems Europe Kft. ("Edondi") provides a technical infrastructure (API and SMTP relay) for sending automated, programmatic notifications. We are not a marketing agency. The Service is intended solely for legal entities (B2B) for the purpose of operational communication.

1.2 Account Verification

To maintain the integrity of our IP pools, all new Workspaces must undergo: 1) Business Domain Verification (DKIM/SPF records). 2) Corporate Identity Verification (KYB - Know Your Business). 3) A manual review of sending patterns during the "Warming Period".

2. Data Privacy & GDPR

2.1 Our Role (Processor)

Under GDPR, Edondi acts as a Data Processor. You, the Client, are the Data Controller. We process personal data (email addresses, message content) solely on your documented instructions (via API calls) to deliver notifications.

2.2 Data Retention

For the purpose of audit trails in logistics disputes (e.g., "proof of invoice delivery"), we retain delivery logs (metadata) for 90 days. Message bodies are encrypted at rest and retained for only 7 days unless extended retention is purchased. After this period, data is permanently expunged.

2.3 Data Residency

Clients may select their data residency region upon initialization:
• EU Zone: Frankfurt (AWS eu-central-1)
• US Zone: N. Virginia (AWS us-east-1)
• APAC Zone: Singapore (AWS ap-southeast-1)

3. Legitimate Interest (WMS Context)

Edondi processes data based on "Legitimate Interest" (GDPR Recital 47) where processing is strictly necessary for fraud prevention, network security, and ensuring the continuity of supply chain operations (e.g., alerting a warehouse manager of a system failure).

Privacy Policy & Terms of Service