AgroDex

Legal

Privacy Policy

This policy explains what data AgroDex may process, for what purposes, and what rights you have under GDPR.

Last updated: June 15, 2026

1. Who operates AgroDex

AgroDex is operated by the AgroDex project administrator as an online agricultural information platform.

For privacy, personal data, or legal requests, you may use the contact address listed below.

2. What data may be collected

AgroDex collects or may process only data needed for site operation, security, maintenance, communication, and content improvement.

Depending on how you use the site, the following categories of data may be processed:

  • technical data: IP address, browser type, operating system, accessed pages, date, and time;
  • server logs: HTTP requests, technical errors, response statuses, and security information;
  • contact data: name, email, message content, and any information voluntarily submitted;
  • account data, if authentication is enabled: email, name, user role, session data, and authentication provider;
  • password reset data, if you use this function: email, secure temporary token, and expiry time;
  • analytics data: no GA4, Plausible, PostHog, Hotjar, or Clarity analytics system was detected in the project.

3. Purpose of collection

Data is used to deliver the site, maintain security, prevent abuse, respond to requests, administer accounts, and understand the technical performance of the platform.

AgroDex does not use personal data for behavioral advertising and does not sell personal data.

4. GDPR legal basis

Data processing may rely on one or more legal bases depending on the situation.

  • legitimate interest: security, abuse prevention, technical logs, and platform operation;
  • performance of a requested service: account, authentication, password reset, or response to a request;
  • consent: where the user voluntarily submits information or where a future feature explicitly requests it;
  • legal obligation: keeping information needed to defend rights or comply with legal requirements.

5. Data retention

Technical data and logs are retained only as long as needed for security, diagnostics, and operational functionality.

Contact data is retained as long as needed to respond to the request and for reasonable records.

Account data is retained while the account is active or as long as needed for security, compliance, or handling a request.

6. Third-party services

AgroDex may use third-party services for hosting, database storage, authentication, email delivery, abuse protection, and search engine indexing.

  • Vercel: hosting, application delivery, and technical logs.
  • Neon PostgreSQL: application data storage.
  • Auth.js / NextAuth: authentication and sessions.
  • Google OAuth: sign-in with a Google account, if enabled.
  • Resend: password reset email delivery, if enabled.
  • Upstash Redis: rate limiting for sensitive actions, if enabled.
  • Google Search Console: indexing, sitemap, and search error monitoring.
  • Wikimedia Commons: some images may load from Wikimedia domains according to displayed licenses.

7. User rights

Under GDPR, you may have the right to request information or actions related to your personal data.

  • access to your data;
  • rectification of inaccurate data;
  • erasure of data where legally allowed;
  • objection to certain processing;
  • restriction of processing;
  • data portability where applicable;
  • withdrawal of consent if processing is based on consent.

8. Contact

For GDPR, privacy, or personal data requests, use the address below.

legal@agrodex.ro
Back to AgroDex