Nikita Mikheenkov

Home · Last updated: 21 March 2026

Privacy policy

This policy explains how personal data is processed when you use the website mikheenkov.com (“Website”). It is designed to meet the transparency requirements of the EU General Data Protection Regulation (Regulation (EU) 2016/679, “GDPR”) and applicable national law, including in Portugal.

This information does not replace legal advice. If you need certainty for your specific situation, consult a qualified professional.

1. Data controller

The controller of personal data processed in connection with this Website is:

Nikita Mikheenkov
Email: [email protected]
Location: Lisbon, Portugal

If you interact with this site in a way that relates to NMX Digital Agency Lda (for example, commercial correspondence about agency services), that company may process certain data as a separate controller in that context. This policy focuses on the personal website mikheenkov.com. For company-specific enquiries, please state clearly that your request concerns NMX Digital Agency Lda.

2. What personal data we process

Depending on how you use the Website, we may process:

  • Technical and usage data when you load pages (for example IP address, date and time of access, browser type and version, operating system, referrer URL). This data is typically created in server logs by the hosting provider or infrastructure used to deliver the site.
  • Communication data if you contact us by email or via links to third-party services (for example Telegram). In that case we process the data you provide (such as your email address, name if you include it, and message content).
  • No account registration is required to browse this Website, and we do not operate a login area on this site in its current form.

3. Purposes and legal bases (GDPR)

We process personal data only where we have a valid legal basis under Article 6 GDPR:

  • Providing the Website (displaying content, ensuring security and stability, troubleshooting): legitimate interests (Article 6(1)(f) GDPR) — balancing test: operating a minimal, secure site; you may object as described below where applicable.
  • Responding to your enquiries: depending on the case, legitimate interests (professional correspondence) or steps prior to entering into a contract (Article 6(1)(b) GDPR), or consent where we ask for it explicitly.
  • Compliance with legal obligations (for example retention for tax or commercial law, if applicable): legal obligation (Article 6(1)(c) GDPR).

4. Cookies and similar technologies

This Website is intended to use no analytics or advertising cookies by default. Your browser may still store or send technical data (for example as part of HTTP requests). Our hosting or security tools may use strictly necessary technical mechanisms to operate the service.

If we introduce optional cookies or similar tools that require consent under EU law, we will update this policy and, where required, provide a consent mechanism before any non-essential cookies are set.

5. Recipients and processors

Personal data may be processed by:

  • Hosting and infrastructure providers (for example the service used to host the Website and related logs). Servers are located in the European Economic Area (EEA) where we use EU-based hosting (e.g. Amsterdam, Netherlands), unless we notify you otherwise.
  • Email and communication providers that deliver or store messages when you write to us.
  • Professional advisers (for example lawyers or accountants) where required and subject to confidentiality.

We use processors under Article 28 GDPR where required (written agreements, instructions, security measures). A list of main processors can be provided upon request.

6. Transfers outside the EEA

If any recipient processes data outside the EEA (for example certain email or cloud providers), we ensure appropriate safeguards under Chapter V GDPR (such as Standard Contractual Clauses or an adequacy decision), unless an exception applies.

7. Retention

We keep personal data only as long as necessary for the purposes above. Server logs are typically kept for a limited period for security and diagnostics. Email correspondence is kept according to business needs and legal retention rules, unless you ask us to delete it earlier and we have no overriding obligation to keep it.

8. Your rights

Under the GDPR, you have the right to:

  • Access your personal data (Article 15 GDPR);
  • Rectification of inaccurate data (Article 16 GDPR);
  • Erasure (“right to be forgotten”) in certain cases (Article 17 GDPR);
  • Restriction of processing in certain cases (Article 18 GDPR);
  • Data portability, where applicable (Article 20 GDPR);
  • Object to processing based on legitimate interests (Article 21 GDPR);
  • Withdraw consent at any time, where processing is based on consent, without affecting the lawfulness of processing before withdrawal (Article 7 GDPR).

To exercise these rights, contact [email protected]. We may need to verify your identity before responding.

9. Right to lodge a complaint

You have the right to lodge a complaint with a supervisory authority. In Portugal, the supervisory authority is the Comissão Nacional de Proteção de Dados (CNPD). You may also contact the authority in your country of habitual residence or place of work.

10. Third-party websites

The Website contains links to third-party sites (for example LinkedIn, Instagram, Telegram, and corporate sites). Those services have their own privacy policies. We do not control how they process data when you leave our Website.

11. Children

The Website is not directed at children. We do not knowingly collect personal data from children under 16 without appropriate consent where required by law.

12. Changes

We may update this policy from time to time. The “Last updated” date at the top will change when we do. For significant changes, we may provide a more visible notice on the Website where appropriate.

13. Contact

Questions about this policy: [email protected]