ThreadOps is a product of Polsia, operating as the data controller for personal data collected through this platform.
For GDPR purposes, Polsia is the controller of data collected at the account level. Factory users are controllers of the business data (RFQs, quotes) they submit to the platform.
We collect the following categories of data:
| Category | Data Collected | Why |
|---|---|---|
| Account data | Factory name, email address, encrypted password | To create and manage your account |
| Business data | RFQs, quotes, pricing configuration, factory details | To provide the ThreadOps service |
| Contact data (from buyers) | Buyer name, email, company name submitted via RFQ forms | To route RFQ inquiries to your account |
| Usage data | Login timestamps, session activity, feature usage | To maintain security and improve the product |
| Technical data | IP address, browser type, device type | For security, fraud prevention, and analytics |
| Email content | Inbound emails parsed for RFQ extraction (webhook) | To automatically create RFQ records from email |
Under the General Data Protection Regulation (GDPR), we process your data on the following legal bases:
We use your data to:
We do not use your data for advertising profiling or sell your data to third parties.
Your data is stored on secure cloud infrastructure:
We retain your account data for as long as your account is active. After account deletion:
All stored passwords are hashed using bcrypt (minimum 12 rounds) and are never stored in plain text.
We share data with the following third-party service providers only as necessary to operate ThreadOps:
We do not sell, rent, or trade your personal data with advertisers, data brokers, or other third parties for commercial purposes.
ThreadOps uses the following cookies and tracking mechanisms:
polsia.com/api/beacon) that tracks anonymous page visits with a randomly generated visitor ID stored in localStorage. No personal data is transmitted.We do not use advertising cookies or third-party tracking cookies in the authenticated application.
If you are located in the European Union or European Economic Area, you have the following rights regarding your personal data:
To exercise any of these rights, email us at support@polsia.com. We will respond within 30 days. Identity verification may be required before we can process your request.
EU users may also file a complaint with the Commission for Personal Data Protection (CPDP) in Bulgaria, or with the supervisory authority in your country of residence.
We implement the following security measures to protect your data:
No security measure is 100% foolproof. In the event of a data breach affecting your rights, we will notify you and the relevant supervisory authority as required by law.
ThreadOps is operated from Bulgaria (EU). Some of our infrastructure providers (Neon, Render) are based in the United States. Data transfers to the US are made under Standard Contractual Clauses (SCCs) or other lawful transfer mechanisms as permitted under GDPR Chapter V.
ThreadOps is designed for business use and is not directed at children under 16 years of age. We do not knowingly collect personal data from children. If you believe we have inadvertently collected such data, contact us immediately.
We may update this Privacy Policy from time to time. If we make significant changes, we will notify you by email or via a notice on the platform at least 30 days before the changes take effect. Continued use of ThreadOps after changes constitutes acceptance of the updated policy.
For privacy questions, data access requests, or to exercise your rights:
Also see our Terms of Service.