Privacy Policy

Last updated: January 1, 2026

1. Introduction

Peeke ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our session recording and analytics services.

This policy applies to information we collect through our website (peeke.io) and our Services. It does not apply to data that our customers collect from their end users through our Services—our customers are responsible for their own privacy practices.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Name, email address, password, and company name when you register
  • Payment Information: Billing address and payment details (processed by our payment provider)
  • Communications: Information you provide when contacting support or providing feedback

2.2 Information Collected Automatically

  • Usage Data: How you interact with our dashboard and Services
  • Device Information: Browser type, operating system, device identifiers
  • Log Data: IP address, access times, pages viewed, referring URL
  • Cookies: See our Cookie Policy for details

2.3 Customer End-User Data

When our customers use our Services to record sessions on their websites, we process end-user data on their behalf. This may include:

  • Session recordings and user interactions
  • Browser and device information
  • IP addresses and approximate location
  • Custom events and user identifiers provided by the customer

For this data, we act as a data processor, and our customers are the data controllers. Our customers are responsible for obtaining appropriate consent from their users.

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our Services
  • Process transactions and send related information
  • Send technical notices, updates, and support messages
  • Respond to your comments, questions, and requests
  • Monitor and analyze usage trends and preferences
  • Detect, investigate, and prevent fraudulent or unauthorized activity
  • Comply with legal obligations

4. Legal Basis for Processing (GDPR)

If you are in the European Economic Area (EEA), UK, or Switzerland, we process your personal data based on the following legal grounds:

  • Contract Performance: To provide our Services and fulfill our contractual obligations
  • Legitimate Interests: To improve our Services, prevent fraud, and ensure security
  • Legal Compliance: To comply with applicable laws and regulations
  • Consent: Where you have given explicit consent for specific processing activities

5. Data Sharing and Disclosure

We may share your information with:

  • Service Providers: Third parties who perform services on our behalf (hosting, analytics, payment processing)
  • Legal Requirements: When required by law, court order, or governmental authority
  • Business Transfers: In connection with a merger, acquisition, or sale of assets
  • With Your Consent: When you have given us permission to share your information

We do not sell your personal information to third parties.

6. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. When we transfer data outside the EEA, UK, or Switzerland, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.

7. Data Retention

We retain your information for as long as necessary to provide our Services and fulfill the purposes described in this policy. Specifically:

  • Account Data: Retained while your account is active and for up to 60 days after deletion
  • Session Recordings: Retained according to your plan settings (default: 90 days)
  • Usage Logs: Retained for up to 12 months
  • Legal Records: Retained as required by applicable law

8. Your Privacy Rights

8.1 GDPR Rights (EEA, UK, Switzerland)

If you are in the EEA, UK, or Switzerland, you have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Request correction of inaccurate data
  • Erasure: Request deletion of your personal data ("right to be forgotten")
  • Restriction: Request restriction of processing
  • Portability: Receive your data in a structured, machine-readable format
  • Object: Object to processing based on legitimate interests
  • Withdraw Consent: Withdraw consent at any time where processing is based on consent

8.2 CCPA Rights (California)

If you are a California resident, you have the right to:

  • Know what personal information we collect and how it's used
  • Request deletion of your personal information
  • Opt-out of the sale of personal information (we do not sell personal information)
  • Non-discrimination for exercising your privacy rights

To exercise any of these rights, please contact us at privacy@peeke.io.

9. Data Security

We implement appropriate technical and organizational measures to protect your data, including:

  • Encryption of data in transit (TLS/SSL) and at rest
  • Regular security assessments and monitoring
  • Access controls and authentication mechanisms
  • Secure data centers with physical security measures

However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

10. Sensitive Data Masking

Our session recording technology is designed with privacy in mind:

  • Password fields are automatically masked
  • Credit card inputs are automatically excluded
  • Customers can configure additional masking rules
  • Sensitive elements can be excluded using CSS classes or data attributes

11. Children's Privacy

Our Services are not directed to individuals under 16 years of age. We do not knowingly collect personal information from children. If we learn that we have collected personal information from a child under 16, we will take steps to delete that information.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.

13. Contact Us

If you have questions about this Privacy Policy or want to exercise your privacy rights, please contact us:

Email: privacy@peeke.io

If you are in the EEA and believe we have not adequately addressed your concerns, you have the right to lodge a complaint with your local data protection authority.