GHOST NODES – PRIVACY POLICY

  1. Overview

Ghost Labs AB provides the Ghost Nodes platform.

This Privacy Policy explains how Ghost Labs collects, uses, and protects personal data in connection with the Ghost Nodes service.

Ghost Labs processes personal data in accordance with the General Data Protection Regulation (GDPR).

Ghost Labs AB is the data controller for personal data described in this policy.

2. Service architecture

Ghost Nodes is a distributed automation platform.

Ghost Labs operates the Ghost Nodes control platform.

Gateway software and monitoring agents run within Customer Infrastructure controlled by the Customer.

Ghost Labs does not host or operate Customer workloads.

3. Data we collect

Account Data

We may collect:

  • name
  • email address
  • company name
  • billing details

Service Telemetry

Ghost Nodes Components may transmit operational telemetry including:

  • node identifiers
  • health metrics
  • version information
  • service status data

Telemetry does not include workflow payload data or application data processed within Customer Infrastructure.

Website Data

When visiting our website we may collect:

  • IP address
  • browser information
  • usage analytics

4. How we use data

Personal data may be used to:

  • operate the Ghost Nodes platform
  • manage customer accounts
  • provide support
  • process billing
  • monitor service health
  • detect abuse or violations of the Acceptable Use Policy

5. Legal basis

Personal data is processed based on:

  • contractual necessity
  • legitimate interests
  • legal obligations

6. Data processed by Customer

Customer may process personal data through automation workflows executed within Customer Infrastructure.

For such data

Customer acts as the data controller.
Ghost Labs acts as the data processor.

7. Data retention

Data type

Account data

Service telemetry

Support requests

Billing records

Retention

duration of subscription

up to 90 days

up to 24 months

up to 7 years

Following termination of a subscription, Customer Data may be retained for up to 30 days to allow export by the Customer.

8. Data sharing

Ghost Labs may share data with service providers that support:

  • cloud infrastructure
  • analytics
  • payment processing
  • customer support

These providers process data only on behalf of Ghost Labs.

9. International transfers

Personal data may be transferred outside the EEA where necessary.

Appropriate safeguards such as Standard Contractual Clauses are used where required.

10. Data security

Ghost Labs implements appropriate technical and organizational measures to protect personal data.

11. Data subject rights

Individuals may:

  • access personal data
  • request correction
  • request deletion
  • request portability
  • object to processing

Requests may be sent to: privacy@ghostlabs.se

12. Complaints

Individuals may lodge complaints with the Swedish Authority for Privacy Protection (IMY).

13. Policy Updates

Ghost Labs may update this Privacy Policy periodically.