Privacy Policy
Last updated: April 6, 2026
1. Introduction
SC NEVERBOTS SRL ("we", "us", "our") operates the Business Contacts Scraper platform at g-maps-scraper.com. This Privacy Policy explains how we collect, use, store, and protect your personal data when you use our Service.
Data Controller: SC NEVERBOTS SRL
CUI: 52184682
Address: Municipiul Timișoara, B-dul Mihai Viteazu, Nr. 28, Ap. 5A, Județul Timiș, Romania
Contact: [email protected]
2. Data We Collect
| Category | Data Collected | Purpose |
|---|---|---|
| Account Data | Name, email address, hashed password | Account creation and authentication |
| OAuth Data | Google account ID, email, name | Google sign-in authentication |
| Payment Data | Order ID, subscription tier, payment status | Processing payments via Netopia |
| Billing Data | First name, last name, company name, CUI, registration number, address, city, country | Invoice generation and payment processing |
| Invoice Data | Invoice number, amounts, PDF link | Legal/fiscal record-keeping |
| Usage Data | Search queries, job history, IP address | Service delivery and security |
| Scraped Data | Business results stored in your account | Providing search results to you |
We do not collect sensitive personal data (racial/ethnic origin, political opinions, health data, biometric data, etc.).
3. Legal Basis for Processing
We process your personal data under the following legal bases as defined by GDPR Article 6:
- Contract performance — Processing necessary to provide the Service you signed up for (account management, search job execution, data delivery).
- Legitimate interest — Security monitoring, fraud prevention, and service improvement.
- Legal obligation — Retaining transaction records as required by Romanian tax law.
- Consent — Marketing communications (if applicable). You may withdraw consent at any time.
4. Third-Party Services
We use the following third-party services to operate the Platform:
| Service | Purpose | Data Shared |
|---|---|---|
| Netopia Payments | Payment processing | Email, name, order details |
| Google OAuth | Authentication | Google account ID, email, name |
| Brevo (Sendinblue) | Transactional emails | Email address |
| Cloudflare | CDN, security, DNS | IP address, request metadata |
| Oblio | Invoice generation | Billing details, amounts |
| ANAF (Romanian tax authority) | Company CUI verification | Company CUI number |
| Google Analytics | Website analytics | IP address, page views, device info (anonymized) |
5. Data Retention
| Data Type | Retention Period |
|---|---|
| Account data | Until account deletion |
| Search jobs & scraped data | Until account deletion |
| Payment records | 10 years (Romanian fiscal law) |
| Billing details & invoices | 10 years (Romanian fiscal law) |
| Activity logs | 12 months |
| Email verification / reset tokens | 24 hours (auto-expire) |
6. Your Rights (GDPR)
Under the GDPR, you have the following rights:
- Right of access — Request a copy of the personal data we hold about you.
- Right to rectification — Request correction of inaccurate or incomplete data.
- Right to erasure — Request deletion of your personal data. You can delete your account from the Settings page, which removes all associated data.
- Right to restriction — Request that we limit processing of your data in certain circumstances.
- Right to data portability — Request your data in a structured, machine-readable format.
- Right to object — Object to processing based on legitimate interest.
To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.
7. Cookies
We use the following cookies:
| Cookie | Type | Purpose | Duration |
|---|---|---|---|
| session | Essential | Authentication session (JWT) | 24 hours |
| cf_clearance | Essential | Cloudflare security verification | 30 minutes |
| _ga | Analytics | Google Analytics user identification | 2 years |
| _ga_BFEFFG5V6K | Analytics | Google Analytics session tracking | 2 years |
We use essential cookies for Platform functionality and Google Analytics cookies to understand how users interact with the Platform. Google Analytics data is anonymized and does not include personally identifiable information.
8. Data Security
We implement the following security measures to protect your data:
- Passwords are hashed using bcrypt before storage
- All data in transit is encrypted via HTTPS/TLS
- Database access is restricted to internal services only
- Session tokens are stored in httpOnly, secure cookies
- Infrastructure is hosted on secure, monitored servers
9. Data Breach Notification
In the event of a personal data breach that poses a risk to your rights and freedoms, we will notify the relevant supervisory authority (ANSPDCP) within 72 hours of becoming aware of the breach. If the breach is likely to result in a high risk to you, we will also notify you directly via email.
10. International Data Transfers
Your data is primarily stored and processed within the European Union. Some third-party services (Google, Cloudflare) may process data outside the EU. In such cases, appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission.
11. Children's Privacy
The Platform is not intended for use by individuals under the age of 16. We do not knowingly collect personal data from children. If we become aware that a child has provided us with personal data, we will take steps to delete such information promptly.
12. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated via email or a notice on the Platform. The "Last updated" date at the top of this page indicates when this policy was last revised.
13. Contact & Complaints
For privacy-related questions or to exercise your rights:
Email: [email protected]
Company: SC NEVERBOTS SRL
Address: Municipiul Timișoara, B-dul Mihai Viteazu, Nr. 28, Ap. 5A, Județul Timiș, Romania
If you believe we have not adequately addressed your concerns, you have the right to lodge a complaint with the Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP) at www.dataprotection.ro.
See also our Terms and Conditions.