GreenbayGreenbay

Privacy policy

Last updated: May 2026

Greenbay Technologies Ltd. (Israeli company number 517317095, registered at Megiddo 13/3, Tel Aviv, Israel; "Greenbay", "we", "our", or "us") is the data controller for personal information collected through this website. This policy explains what we collect when you visit greenbay.solutions, request a demo, or otherwise contact us, and how we handle that information under the Israeli Privacy Protection Law and the EU and UK GDPR (which apply to personal data of individuals in the EU or UK regardless of where we are based). It applies only to this marketing website (greenbay.solutions). The Greenbay product application has its own privacy policy.

1. Information we collect

On this website, we collect only what you give us or what is needed to serve the page:

  • Name, work email, company name, role (where you choose to share it), and any message content you submit through our contact form or demo request modal
  • How you heard about us, when you choose to share it
  • A Cloudflare Turnstile interaction signal used solely to verify the form submission is not automated
  • Aggregate, cookieless analytics on page visits (timestamps, referrer, country, anonymised request metadata), only if you accept the optional analytics cookie
  • Standard server logs (IP address, user agent, request path, timestamp) generated by our hosting infrastructure for security, abuse prevention, and debugging

2. How we use your information

We use the information described above to:

  • Respond to demo requests and other enquiries you send us
  • Schedule, prepare for, and follow up on demo conversations
  • Detect and block automated form submissions and abuse
  • Understand which content and pages are useful, and improve the site
  • Comply with legal obligations and protect the site against abuse

3. Lawful basis

We rely on legitimate interests to respond to enquiries you initiate, to operate basic privacy-friendly analytics, and to protect the site against automated abuse (spam, credential stuffing, bot scraping). Where you accept the optional analytics cookie, we additionally rely on your consent, which you can withdraw at any time by clearing your browser storage or using your browser controls. We do not use your contact information for marketing emails without a separate, explicit opt-in.

4. Data storage, transfers, and retention

Form submissions are processed by an AWS Lambda function in the EU (Ireland, eu-west-1). Notification and confirmation emails are sent via Resend, which routes through servers in the United States. The website itself is hosted on Amazon S3 and delivered through Amazon CloudFront's global edge network. Greenbay is based in Israel, which the European Commission has recognised as providing an adequate level of data protection (Commission Decision 2011/61/EU), so transfers of personal data from the EEA to Greenbay do not require additional safeguards. Transfers to our US-based sub-processors are covered by the EU-US Data Privacy Framework or by Standard Contractual Clauses, as applicable. We use TLS in transit and restrict access to authorised personnel. We keep contact and demo request submissions for up to 24 months after our last meaningful interaction with you, after which they are deleted unless we are required to retain them for a longer period under applicable law. Server logs are retained for up to 90 days. You can ask us to delete your data sooner at any time.

5. Sub-processors

We use a small number of third-party services to operate this website. Each is bound by their own data protection terms, and we have a Data Processing Agreement in place with each:

  • Amazon Web Services (Ireland, eu-west-1) hosts the static site (S3), runs the contact form Lambda, and delivers content through CloudFront. AWS may process limited request metadata at edge locations worldwide for delivery and DDoS protection.
  • Resend (United States): transactional email delivery; receives the form payload to send the team notification and the confirmation email back to you.
  • Cloudflare: DNS, Cloudflare Turnstile (managed-mode bot protection on our forms), and privacy-friendly Web Analytics (no cookies, no cross-site tracking; loaded only after you accept the cookie banner).
  • Google Calendar Appointment Scheduler: embedded on the contact page so you can book a demo slot directly. Loading the page renders the scheduler, and Google may set its own cookies and process your name, email, and chosen time under its own terms (policies.google.com/privacy).

We do not sell your personal information, and we do not use third-party advertising or behavioural profiling on this site.

6. Cookies and similar technologies

This website does not set advertising or tracking cookies. We use three categories of browser storage:

Strictly necessary (no consent required). To protect our forms from automated abuse, we load Cloudflare Turnstile on pages that contain a contact or demo form. Turnstile may set short-lived cookies and process minimal interaction signals (mouse movements, browser characteristics) to verify the submission is not from a bot. We treat this as strictly necessary for the security of the service explicitly requested by the user, which is exempt from prior-consent requirements under the EU ePrivacy Directive (Article 5(3)) and the UK PECR (Regulation 6(4)). Browser local storage ("greenbay-cookie-consent") is used to remember your cookie banner choice; this is also strictly necessary and is not used for any other purpose.

Optional analytics (consent required). If you accept the analytics banner, Cloudflare Web Analytics is loaded. The beacon itself uses no cookies and does not track users across sites; we use it only for aggregate page-view counts. You can withdraw this consent at any time by clearing your browser storage.

Third-party embed (no consent gate). The Google Calendar scheduler embedded on our contact page is loaded by your browser when you visit that page and may set its own cookies under Google's terms. Declining the cookie banner does not block this embed; you can avoid it by using the contact form instead.

Greenbay honours the Global Privacy Control (GPC) browser signal: if your browser sends GPC, we treat that as a refusal of optional analytics and do not show the banner.

7. Your rights

Depending on where you are located, you may have the following rights under the Israeli Privacy Protection Law, the EU GDPR, or the UK GDPR:

  • Access the personal data we hold about you
  • Request correction of inaccurate or incomplete data
  • Request deletion of your personal data
  • Object to or restrict our processing
  • Withdraw any consent you previously gave, without affecting prior processing
  • Receive your data in a portable, machine-readable format
  • Lodge a complaint with your local supervisory authority: for Israel, the Privacy Protection Authority (gov.il/en/departments/the_privacy_protection_authority); for the UK, the Information Commissioner's Office (ico.org.uk); for EEA residents, your national data protection authority

8. Contact us

Greenbay Technologies Ltd. (company number 517317095), Megiddo 13/3, Tel Aviv, Israel, is the data controller. To exercise any of the rights above, or with questions about this policy, contact info@greenbay.solutions. We respond to verified requests within 30 days.