top of page

Privacy policy

This privacy policy outlines how UAB Iterato processes your personal data. We deeply respect your personal information and are committed to providing clear and understandable information about how we handle it.

If you have any objections to this privacy policy, we kindly request that you refrain from using our Services for any purpose. The terms governing our Services are defined in our Terms & Conditions.

What Information We Collect and How We Use It:

When you add Coffice to your chat platform (e.g., Slack), we collect the necessary information to ensure our Services function correctly. Additionally, we gather data provided by you and from other sources, as detailed below:


  • Workspace Information: We collect personal data such as Slack workspace identification data (workspace name, image, unique ID). This data is essential for providing our Services, such as determining if a free trial period applies to the workspace. We retain this data for up to 10 years after the contractual relationship ends.


  • Profile Information: We gather identification data of Slack users, including unique Slack IDs, names, profile images, and admin status. Contact information, like email, may also be used for service-related inquiries. This information is crucial for our service provision, enabling features like displaying karma points and upcoming birthdays. If you're an admin, you can also edit the list of people in your workspace, including adding birthdays and hiring dates. This information helps us display karma points, upcoming birthdays, new hires, and anniversaries, among other things. We retain this data for up to 10 years after the contractual relationship ends.

  • Message logs: To maintain, operate, and provide the features and functionality of our Service, we collect essential information, including messages, timestamps, sender and receiver details, and message locations. For this reason, the system must access and "read" messages in the message channels. Message logs are kept in system logs for 7 days.

  • Information from Third-Party Services: We receive information about you if you or your administrator integrate or link a third-party service with our Services (e.g., BambooHR). For example, integrating with BambooHR allows us to access data such as birthdays and employment dates. The extent of data we receive depends on the settings, permissions, and privacy policy controlled by that third-party service. Please review the privacy settings and notices of these third-party services to understand the data they may disclose to us or share with our Services.

  • Payment Information: When you register for specific paid Services, we collect payment and billing information, including company name, cardholder's name, bank card details, VAT code, and address. This information is immediately transferred to a payment service platform, such as Stripe, which manages all payments. We do not retain this payment information.

In general, we use your personal data to ensure the Coffice application operates effectively, providing you with high-quality services. Our main legal basis for processing your data is the service contract defined in our Terms & Conditions. Depending on the nature of the information and the specific context of data collection, we may also rely on your consent, our legitimate interests, or the need to comply with the law.

If you have any questions about the information we collect, please feel free to contact us.

To Whom Do We Disclose or Transfer Personal Data:

Your personal data may be disclosed to our service providers, who assist us in operating, improving, integrating, customizing, and supporting our Services. We may also provide personal data to government or law enforcement agencies, but only when required by applicable laws or to protect our rights, legitimate interests, and the rights and interests of our employees, customers, and business partners.

We typically process personal data within the EU/EEA. If we transfer personal data outside the EU/EEA, we ensure that the data is transferred with appropriate safeguards in accordance with the GDPR.

How We Protect Personal Data:

We take the necessary technical and organizational measures to protect the personal data we process. These measures include role-based responsibilities within our company, maintaining personnel confidentiality, implementing access control for personal data, managing hardware and software securely, etc. We regularly review the need to protect personal data in line with legal requirements.

We process and store your personal data for no longer than necessary for the purposes stated in this Privacy Notice.

Exercising Your Rights:

As a data subject, you have several rights, including the right to access your personal data, request rectification, deletion ("right to be forgotten"), restrict processing, receive personal data in a structured, commonly used, and machine-readable format, and transfer it to another controller (the right to data portability). You also have the right to object to processing, withdraw consent, and to require that you are not subject to a decision based solely on automated processing of personal data, including profiling, if such is used. Additionally, you have the right to file a complaint with the Data Protection supervisory authority.

All inquiries and requests regarding the rights mentioned in this text should be made in writing via email to


Use of Cookies:

Cookies are small files that are stored on your device or in your browser cache when you visit our website or use our Services. These files contain a small amount of information, including a unique number, that the Internet server can read the next time you visit or use our Services. Cookies serve various purposes, such as remembering your username or language settings.

Our Services and social media channels use cookies and similar technologies to optimize, develop, and improve the user experience. Cookies also help us analyze user activity and target advertisements in our Services and our partners' services. They provide valuable insights, such as visitor counts, browser usage, and device IP addresses.

Certain cookies may collect personal data about you. There are different types of cookies, and we use them for various purposes:

  • Essential Cookies: These cookies are crucial for the proper functioning and security of our Services. They are usually set in response to actions or requests made by you, such as setting privacy preferences, logging in, or filling out forms.

  • Analytics Cookies: These cookies help us improve the performance of our Services by allowing us to analyze visitor flow, user numbers, and traffic sources. They are not strictly necessary for our Services to function but help us understand which pages are most interesting to users. Information collected through these cookies enables us to provide you with a personalized user experience.

  • Marketing Cookies: These cookies are typically used to market our Services, often through third-party websites. They collect information about your browsing habits and navigation within our Services, enabling us to make our content and advertising more relevant to you.

  • Functional Cookies: These cookies remember your preset preferences, such as preferred currency, language, and product/service types. They help us understand your interests and facilitate your use of our Services.

If you do not wish to receive cookies on your computer or device, you can withdraw your consent at any time by adjusting your browser settings and deleting previously saved cookies.

Modifications to Our Privacy Policy:

This privacy policy was last updated on 10/09/2023. We may update it in the future, the most recent version will always be available on our website.

Questions and Contact:

If you have questions or want to get in touch with us, please contact:
UAB Iterato, Verkių g. 34B-601, LT-08221 Vilnius, Lithuania,

bottom of page