Privacy Policy

In this Privacy Policy, Bugsink B.V. (hereinafter: “Bugsink” or “we”) explains which personal data is collected when you use our services.

Bugsink values your privacy and the protection of your personal data. Personal data will therefore be processed carefully and in accordance with this Privacy Policy and applicable laws and regulations.

If you have any questions or wish to receive further information, please contact us using the contact details at the bottom of this Privacy Policy.

1. When does this Privacy Policy apply?

This Privacy Policy applies to visits to our Website and to the use of our Products and Services. Bugsink offers a Website, self-hosted software, and a hosted service. Depending on which of these you use, different Personal Data may be processed. Where relevant, this Privacy Policy distinguishes between them.

In some cases, Bugsink acts as the controller of Personal Data. In other cases, such as when providing our hosted service to customers, Bugsink acts as a processor on behalf of those customers. Where relevant, this Privacy Policy distinguishes between these roles. Additional information about our role as processor can be found in our Data Processing Agreement.

2. Bugsink

For questions and/or comments about the processing of your Personal Data, you can contact us via the contact details below:

Bugsink B.V.
Peter Schathof 41
3533HZ Utrecht
The Netherlands

info@bugsink.com
Dutch Chamber of Commerce number: 93064993

3. When you visit our Website

When you visit our Website as a visitor, we may process certain Personal Data about you. This concerns the following processing of Personal Data.

When filling out a form on our Website

There are various forms available on our Website, such as a form for requesting a trial. In the form we can request the following information from you:

  • Email address
  • Desired subdomain (e.g. “mycompany” if you want to request a trial for “mycompany.bugsink.com”)

The basis for this processing of Personal Data is Article 6(1) f of the GDPR: we have a legitimate interest in this processing, because otherwise we will not be able to contact you/provide you with a trial to our hosted service.

When contacting us

You can also contact us in other ways than filling out a form. This can be done, for example, by phone, email and live chat. With a contact request, we can ask you for the following information, among others:

  • First name
  • Last name
  • Company
  • Email address
  • Phone number
  • Other information that is relevant to the request

The basis for processing this Personal Data is Article 6(1) f of the GDPR: we have a legitimate interest in this processing, because otherwise we cannot contact you.

Cookies

Bugsink uses only functional cookies. These ensure that the Website works properly and that your preferred settings are remembered. They are also used to optimise the Website.

Plausible

We use Plausible in order to measure, collect, analyse and report visitors data for purposes of understanding and optimizing our Website. Plausible is a privacy-friendly alternative to Google Analytics. Plausible does not use cookies and does not collect any Personal Data.

Logging

We use logging on our Website. Logging is the automatic recording of certain data. We keep logs from the Website. These logs are stored in log files. These log files include the IP address of the visitor or user, the browser that the visitor or user uses, the time the visitor visited our Website and which pages the visitor or user visited during his visit.

The log files are used, among other things, to manage the Website, to keep track of visit and usage statistics, to prevent misuse of the Website and to ensure security.

We also use logs to detect and resolve errors and bugs on the Website. These logs are necessary so that we can respond as quickly as possible to possible problems with the Website.

The log data will be pseudonymised as much as possible. This means that the log data cannot be linked to you without additional data being used.

The legal basis for the processing of this Personal Data is Article 6(1) f of the GDPR: we have a legitimate interest in this processing. This information is required for the Website to function properly.

4. When you use our Product (Self-hosted)

Bugsink is available as both self-hosted software and as a hosted service. This section applies to the self-hosted version. The error events that are collected by the Product are stored on your own servers. We do not have access to this data.

Phone-home

The Product periodically sends a “phone-home” message to our servers. This message contains information about your usage of the Product in the form of aggregated statistics, settings, and other server-metadata;

  • Settings that tell us “who you are”, namely BASE_URL, SITE_TITLE, DEFAULT_FROM_EMAIL

  • Information that helps us determine how you are using the Product. This includes the settings SINGLE_USER and SINGLE_TEAM, and various usage statistics such as the number of users, projects, teams and events.

  • Settings that tell us a bit about how Bugsink is technically deployed. These are TASK_ALWAYS_EAGER, IS_DOCKER, and DATABASE_ENGINE.

  • Settings that tell us about the license you have purchased. These are the settings starting with LICENSE_...

In addition, the message contains a unique identifier that is generated when you install the Product. This identifier is used to link the phone-home message to your installation. We also store the IP address from which the phone-home message is sent.

The basis for this processing of Personal Data is Article 6(1) f of the GDPR: we have a legitimate interest in this processing, because otherwise we will not be able to know who’s using the Product, and how they are using it and check whether they are using the Product in accordance with the license agreement.

5. When you use our Product (Hosted)

When you use the hosted version of Bugsink, we process Personal Data in order to provide our hosted service.

Customers determine what data is submitted to Bugsink and act as the controller of that data. Bugsink acts as the processor.

Hosted application data is stored and processed within the European Union.

Information about the categories of data processed, retention periods, subprocessors, data location, and related matters can be found in our Data Processing Agreement.

6. Security

We protect your Personal Data by taking technical and organisational measures against unauthorised, unlawful or accidental access, loss, destruction or damage to Personal Data. We are constantly taking steps to improve data security.

In this way we ensure that your personal data will be processed in accordance with the applicable data protection laws and regulations, only the necessary persons have access to your Personal Data, that access to Personal Data is secured and that our security measures are regularly checked and evaluated. Among others, we take the following security measures:

  • We have secured the connections to our Services via Secure Socket Layer (SSL) technology.

  • Strong, unique passwords and password vaults are used

  • Security measures are built into all application systems, including adequate access management

  • A procedure is available to deal with possible data breaches

  • We ensure that our IT infrastructure is provided with security updates in a timely manner

We take appropriate technical and organisational measures to protect Personal Data. Where third parties process Personal Data on our behalf, we take appropriate steps to ensure that they provide an adequate level of protection.

7. Retention period

Retention periods depend on the Service being used and the purposes for which Personal Data was collected. Specific retention periods for hosted application data are described in our Data Processing Agreement.

8. Updates or changes to this Privacy Policy

The way in which we process Personal Data, and the composition of the data we process, may change over time. Bugsink reserves the right to change this Privacy Policy at any time. For that reason, Bugsink encourages you to check the Privacy Policy regularly to stay informed of such changes. We make reasonable efforts to inform you of major changes. In this way we ensure that you are aware of recent changes.

9. Your rights

In the context of our processing of your Personal Data, you have, among others, the following rights:

  • The right to inspect the Personal Data that we process of you
  • If you have given permission for the processing of your Personal Data, you also have the right to withdraw this permission
  • The right to exercise data portability
  • The right to have errors corrected
  • The right to have outdated Personal Data deleted
  • The right to object to a particular use of Personal Data

If you wish to exercise these rights, you can contact us. We request that you describe in your request as clearly as possible to which Personal Data your request relates.

If your request relates to Personal Data submitted to Bugsink by one of our hosted customers, that customer is generally the controller of that data. In that case, we may ask you to contact the customer directly, or we may forward your request to them.

You can only exercise your rights to the extent that the law grants you these rights. To ensure that a request has been made by you, we may ask you to send a copy of your identity document with this request. We only ask for this if we deem it necessary to identify you. We destroy the copy of your identity document immediately after we have identified you.

10. Complaints

If you have a complaint about the way we process your Personal Data, you can contact us. We then try to find a solution together. You also have the right to lodge a complaint with the supervisory authority. In the Netherlands this is the Dutch Data Protection Authority (in Dutch: “Autoriteit Persoonsgegevens”).

Version 4 - June 8, 2026