Effective 14 May 2026. Corpus Obscura Inc. DBA Systema Obscura
Systema Obscura is a trade name of Corpus Obscura Inc., a Florida corporation. We operate systemaobscura.com and supply software licences and professional development services. Questions about this policy should be directed to administratum@systemaobscura.com.
Account information: When you create an account or make a purchase, we collect your name, email address, and billing address. Payment details are handled entirely by Stripe; we never see or store full card numbers.
Server logs: We log request data (IP address, browser type, pages visited, timestamps) for security monitoring and debugging. We use Google Analytics (GA4) to collect anonymised usage data (pages visited, session duration, rough geographic region). No personally identifiable information is sent to Google Analytics. You can opt out via the Google Analytics Opt-out Browser Add-on.
Communications: If you contact us by email or through the services contact form, we retain your message and contact details to respond and track the inquiry.
We use your information to: fulfil software licence orders and manage your account; send transactional emails (receipts, licence keys, renewal notices); respond to support requests; detect and prevent fraud or abuse; and comply with legal obligations.
We do not use your data for advertising, profiling, or sale to third parties.
Stripe: Payment processing. Stripe’s handling of payment data is governed by the Stripe Privacy Policy.
Mailgun: Transactional email delivery. Your email address and system-generated email content pass through Mailgun’s infrastructure.
We do not share your personal data with any other third parties except as required by law.
We use session cookies strictly necessary for authentication (keeping you signed in). We set session cookies strictly necessary for authentication. We also set analytics cookies via Google Analytics (GA4) to understand site usage. No advertising or third-party tracking cookies are set beyond Google Analytics.
Account data is retained while your account is active and for 90 days after deletion is requested. Order records and licence history are retained for seven years for tax and accounting purposes. Server logs are retained for 30 days.
GDPR (EEA & UK residents): You have the right to access, correct, or erase your personal data; to restrict or object to processing; and to receive a portable copy of your data. To exercise these rights, email administratum@systemaobscura.com. We will respond within 30 days.
CCPA (California residents): You have the right to know what personal information we collect and how it is used; to request deletion; and to opt out of the sale of personal information (we do not sell personal information). We do not discriminate against users who exercise these rights.
Our services are intended for users aged 18 and older. We do not knowingly collect personal information from anyone under 18. If you believe a minor has submitted information to us, contact us and we will delete it promptly.
We use HTTPS for all data transmission, restrict database access to the minimum necessary, and follow standard practices for credential storage. No system is fully secure; we cannot guarantee that data will never be accessed without authorisation, but we take reasonable steps to protect it.
We may update this policy to reflect changes in our practices or applicable law. Material changes will be communicated by email or a notice on the site. The effective date at the top of this page indicates the most recent revision.
Privacy questions, requests, or complaints: administratum@systemaobscura.com