Privacy Policy

Who we are is a strategic design consultancy. We take privacy very seriously and avoid embedding trackers and personal-data-hungry third party applications.


The Controller within the meaning of the GDPR is Livepods d.o.o., ulica kneza braninimira 38a, 21204 Dugopolje, Split-Dalmatia, Croatia.


The processing of your personal data generally takes place for the preparation or fulfilment of a corresponding contract regarding the use of our services, pursuant to Art. 6 para. 1 lit. b GDPR. Data processing based on our legitimate interest is governed by Art. 6 para. 1 lit. f GDPR. Processing based on a legitimate interest may be objected to with reference to reasons arising from your particular situation, pursuant to Art. 21 GDPR. In some cases, your consent is the legal basis, pursuant to Article 6 (1) (a) and Article 7 GDPR, which you may revoke at any time with with effect for the future by sending an email to

Rights of data subjects

If we process your personal data, you are a data subject within the meaning of Article 4(1) GDPR with the following rights that can be asserted against us:

  • Right of access (Article 15 GDPR),
  • Right of rectification (Article 16 GDPR),
  • Right of erasure (Article 17 GDPR),
  • Right to restriction of processing (Article 18 GDPR),
  • Right to notification (Article 19 GDPR),
  • Right to data portability (Article 20 GDPR),
  • Right of object (Article 21 GDPR),
  • Right to lodge a complaint with a supervisory authority (Article 77 GDPR),
  • Right to withdraw your declaration of consent under data privacy law (Article 7(3) GDPR). You have the right to withdraw your consent to us at any time by sending an email to The withdrawal of consent will not affect the lawfulness of processing carried out based on the consent prior to withdrawal.

We would like to point out that in certain cases we may request additional information from you in order to establish your identity. For example, when exercising the right of access we can ensure that information is not released to unauthorized persons.

Right to object (Article 21 GDPR)

You have the right, for reasons of your own particular situation, to object at any time to the processing of your personal data that is performed on the basis of Article 6(1)(f) GDPR; this also applies to any profiling based on these provisions. An objection shall be send to We will then cease to process your personal data unless we can demonstrate compelling legitimate grounds for our processing that override your interests, rights and freedoms, or the processing serves the purpose of asserting, exercising or defending legal claims.


We implement technical and organizational security measures to protect your personal data from accidental or willful manipulation, loss, destruction or unauthorized access. We continuously improve our security measures in line with technological developments

Validity of the privacy policy

Due to the further development of our websites or the implementation of new technologies, it may become necessary to amend this privacy policy. We reserve the right to modify this privacy policy at any time with effect for the future. The version available at the time of your visit to the website or use of our products always applies.

Responsibility for external content

Our websites contain links to websites of external providers. We have no influence on and do not monitor whether other providers comply with the applicable data protection provisions. If you believe that linked external websites violate applicable law or contain other inappropriate content, please let us know. We will check your information and remove the external link if necessary. We are not responsible for the content and availability of linked external websites.

Scope of data processing

When you visit our websites, the following data is stored in the log files of our web server:

  • IP address,
  • Date and time of the request (time-stamp),
  • Request details and destination address (protocol version, HTTP method, referrer, UserAgent string),
  • Name of the retrieved file and transferred data volume (requested URL incl. query string, size in bytes),
  • Message as to whether the request was successful (HTTP status code),
  • Web page from which the request came,
  • Browser type or app used,
  • Operating system and its interface,
  • Language and version of the browser software.

When processing this data, we do not draw any conclusions about your person. No personal evaluation nor evaluation of the data for marketing purposes or profiling takes place.

The legal basis for the processing of the data is Article 6(1)(f) GDPR. The processing of the data is mandatory for technical purposes in order to provide our websites. It is not possible to use our websites without such processing of data.

Your data will be deleted no later than 90 days. The purpose of retention is to enable us to reconstruct the origin of an attack on our infrastructure in the event of an attack. If an attack has occurred, the data will be stored until all investigations by forensic experts commissioned by us and the law enforcement authorities have been completed.


You can contact us in several ways:

  • Email,
  • Contact forms on our websites,
  • Post,
  • Phone.

In the event that do you contact us, we will store your personal data transmitted to us in connection with the contact.

Scope of data processing

There are contact forms on our websites, which you can use to contact us. Your personal data transmitted with the form will be stored by us. The forms mark as mandatory only those fields that are absolutely necessary for the use of the respective offering. By contacting us, the following personal data may be processed by us:

  • Name,
  • Email address,
  • Address,
  • Telephone number,
  • Company/Organization,
  • Message content and other data that arises from the content.


When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: After approval of your comment, your profile picture is visible to the public in the context of your comment.


If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.


If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site rarely if at all include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Who we share your data with

If you request a password reset, your IP address will be included in the reset email.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where your data is sent

Visitor comments may be checked through an automated spam detection service.

OpenProject Privacy Policy

Summary gives its clients and partners the opportunity to create an account at its own instance of OpenProject. This section only applies to you if you have an account at OpenProject’s systems and processes are designed around your privacy and the principle of data minimization.

Preliminary comments

The purpose of the OpenProject application is to improve the results of a project team. It is about networking people so that they can work together effectively towards a common goal. The processing of personal data is a fundamental prerequisite for the use of the OpenProject application.

A considerable advantage of the OpenProject application as open source software is the great freedom that the open source license grants to users and developers. This gives every user the possibility to view the source code of this software, to modify it and to install and operate it within their own infrastructure.

Another major advantage is the portability of the OpenProject application and the data processed within it. This means that the owner of the data can decide what infrastructure to run the software on and whether to commission a data processor to operate and maintain it. This is a crucial difference to proprietary cloud applications, where the manufacturers do not grant this option.

The development of OpenProject as open source software is the most decisive and far-reaching technical and organizational measure to protect personal data. Each owner of an OpenProject database is therefore able to decide individually whether to transmit personal data to us.

If a visitor visits our website, contacts us, uses our SaaS platform or uses our software provision service, the processing of certain personal data is required.

This processing is always carried out in accordance with the General Data Protection Regulation and in compliance with Belgian data privacy regulations.

OpenProject implemented numerous technical and organizational measures to ensure the most complete protection of your processed personal data. Nevertheless, any technology may have security vulnerabilities, meaning that absolute protection cannot be guaranteed.

General information on data processing

Scope and area of application of this privacy policy

We process your data strictly confidentially and only for the purpose we informed you of when collecting the data. Our benchmark for processing your data is the General Data Protection Regulation (GDPR), and other applicable data privacy regulations.

This privacy policy covers the processing of personal data by in the OpenProject Community Platform.

Access statistics (Matomo)

We use Matomo for the compilation of access statistics.

Matomo is an open source software started by its founder Matthieu Aubry. We use Matomo as a cloud service of the official Matomo company InnoCraft ltd, 150 Willis St, 6011 Wellington, New Zealand.

The purpose of web analysis is to improve the quality of our websites and their content. No cookies are used for this purpose.

Through the use of Matomo, no personal user profiles are created, but only statistical measurement values are collected. It is not possible to draw any conclusions about your person from the statistical data.

The personal reference in the source data is dissolved after a short time. The IP address from which the page was accessed is immediately anonymised by replacing the last digits of the address with zeros. The front digits are used for statistics on the regions from which our pages were accessed. The digital fingerprint of the device used to access our pages is deleted after 24 hours at the latest. If you visit our pages again, the new fingerprint cannot be linked to the previous one. The digital fingerprint of your device is created via JavaScript and is used by us to be able to track a user’s movements within our Internet offering.

Further information on the data protection of Matomo can be found at or for the cloud service used by us at

You can technically disable the web analysis by deactivating JavaScript in your web browser. Details on the settings required for this can be found in the product descriptions and/or instructions of the various browser providers.

You can prevent the collection of the aforementioned data and the processing thereof by installing a JavaScript blocker to prevent the collection of other website analysis data. You can object to the storage and evaluation of this data by Matomo at any time. At the bottom of this page you will find an opt-out dialog for this. In this case, a so-called opt-out cookie is permanently stored in your browser which instructs Matomo not to collect any data for storage and analysis.

Alternatively, most modern browsers have a so-called “Do Not Track” option, with which you tell websites not to track your user activities. Matomo respects this option.

The data processing is performed on the basis of Article 6(1)(f) GDPR.

Purpose of data processing

Matomo is used for the purpose of improving the quality of our website and its content. This enables us to learn how the website is used and thereby constantly optimize our offering.

Duration of the storage of your personal data

The personal data when using Matomo without cookies are stored for 24 hours.

Use of cookies

We only use cookies that are technically necessary for the use of the websites. We do not use cookies for range measurement or usage analysis. We do not use your user data collected through technically necessary cookies to create user profiles.

Necessary cookies are technically required for the proper operation of our websites. They ensure the technical stability of our websites and enable security-relevant functionalities. The cookies used do not contain any IP addresses or other information allowing a tracing back to you personally.

The processing of personal data using necessary cookies is based on Article 6(1)(f) GDPR. By using technically necessary cookies, we aim to simplify the use of our websites for you. Some functions of our websites cannot be provided without the use of cookies. For these functions, it is necessary for the browser to be recognized even after a page change. Our legitimate interest also lies in these purposes.

It is not possible to use our websites without such processing of data, i.e. you have no option to object.

OpenProject Community Platform (

For the provision of open and transparent project management services, livepods operates a publicly accessible OpenProject entity within the OpenProject SaaS platform, i.e. users can view the public content of other users without logging in (e.g. forum posts). Prior registration of a user account is required to create a contribution.

Scope of data processing

Registration of a user account

Creating a post on our SaaS platform requires the registration of a user account. In this process, we collect and process the following personal data:

  • Name,
  • Email address,
  • User name,
  • IP address of the accessing computer.

Optional authentication via external authentication providers (Google)

For authentication vis-à-vis OpenProject, you can alternatively use your existing Google account. However, we recommend that you refrain from using Google services to protect your personal data.

When you register, you will be redirected to servers of Google Cloud EMEA Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. During this process, your IP address and other personal data will be collected by Google. It cannot be ruled out that data will also be transferred to the USA. For more information about Google’s privacy policy, please visit

Creating a user contribution

In the project environment, you can exchange information with other users on various topics. In this process, we collect and process the following personal data:

  • User-generated contribution,
  • Date,
  • Reference to the user’s account.

Bot control using hCaptcha

We use the hCaptcha anti-bot service (hereinafter “hCaptcha”) on our website. This service is provided by Intuition Machines, Inc., a Delaware US Corporation (“IMI”). hCaptcha is used to check whether the data entered on our website (such as on a login page or contact form) has been entered by a human or by an automated program. To do this, hCaptcha analyzes the behavior of the website or mobile app visitor based on various characteristics. This analysis starts automatically as soon as the website or mobile app visitor enters a part of the website or app with hCaptcha enabled. For the analysis, hCaptcha evaluates various information (e.g. IP address, how long the visitor has been on the website or app, or mouse movements made by the user).

The data collected during the analysis will be forwarded to IMI. hCaptcha analysis in the “invisible mode” may take place completely in the background. Website or app visitors are not advised that such an analysis is taking place if the user is not shown a challenge. IMI acts as a “data processor” acting on behalf of its customers as defined under the GDPR. For more information about hCaptcha and IMI’s privacy policy and terms of use, please visit the following links: and

Data processing is based on Art. 6(1)(f) GDPR: the website or mobile app operator has a legitimate interest in protecting its site from abusive automated crawling and spam. Data transfer to the USA is secured by EU standard data protection clauses.

The legal basis for processing your data in connection with the OpenProject Community Platform is fulfilment of a contract pursuant to Article 6(1)(b) GDPR.

Purpose of data processing

Provision of the community platform.

Duration of the storage of your personal data

The user can delete his user account independently. The following personal data will be deleted:

  • Name,
  • User name,
  • Email address,
  • Telephone number for sending one-time passwords via SMS,
  • OATH secret code (e.g. for the 2FA app FreeOTP).

The comments and the associated data (e.g. IP address) are stored and remain on this environment until the commented content has been completely deleted or the comments have to be deleted for legal reasons (e.g. offensive comments). Provided you have deleted your user account, all posts created will be assigned to an anonymous collective user. Statutory retention periods remain unaffected.