Data protection is indeed important to us, which is why, for example, we do not use analysis tools such as Google Analytics on this website . Here we explain the nature, scope and purposes of the collection and use of personal data by the responsible provider of this website. The legal basis for data protection can be found in the German Federal Data Protection Act (BDSG) and the Telemedia Act (TMG).
Each time our website is accessed, the web server automatically saves a so-called server log file, which contains, for example, the name of the requested file, your IP address, the date and time of the access, the amount of data transferred and the requesting provider (access data) and documents the access. This access data is evaluated exclusively for the purpose of ensuring trouble-free operation of the site and improving our offer.
The provider uses the log data only for statistical evaluations for the purpose of operation, security and optimisation of the offer. However, the provider reserves the right to subsequently check the log data if there is a justified suspicion of unlawful use based on concrete indications.
On the public website, only the technical data that web browsers generally send to a web server, e.g. IP address, browser type, browser version, operating system, referrer URL, host name, time and date.
If you conclude a contentplanr subscription, it is necessary for the conclusion of the contract that you provide your personal data, which we require for the processing of your order. Mandatory information required for the processing of contracts is marked separately, other information is voluntary. We process the data you provide to process the order. The legal basis for this is Art. 6 para. 1 p. 1 lit. b DSGVO.
In this context, we only transfer your personal data to third parties if this is necessary for the processing of the contract, e.g. to the host provider of our platform or to the company commissioned with the processing of payments. Any further transmission of data will not take place or will only take place if you have expressly consented to the transmission. Your data will not be passed on to third parties without your express consent, for example for advertising purposes.
When you create an account, the data you provide will be stored revocably. You can delete all further data, including your user account, in the customer area at any time.
If you have taken out a subscription, we are obliged by commercial and tax law to store your address, payment and order data for a period of ten years. They will be deleted after expiry of the retention obligations.
... then we must of course process and store your personal data required for billing.
In addition, of course, all data that you enter or upload in connection with the use of the contentplanr service.
It goes without saying that all this data is treated as strictly confidential and will not be sold under any circumstances.
We engage service providers to process your personal data for the purposes described in this privacy notice. These service providers only process the data on our behalf and in accordance with our instructions. The data processed under these contracts will not be stored for longer than necessary, but at most for the duration of the contractual relationship with the relevant service provider or other legal requirements.
These service providers are the web hosting companies bitpalast and strato, and the payment service providers Stripe and Paddle. For technical monitoring, we rely on Sentry and Logrocket.
When making a payment via Stripe or Paddle, your payment data (e.g. order number, date, time and content of the order, your contact and payment data) are forwarded to Stripe via an interface on our site in order to carry out the payment. The transmission of the data is necessary for the execution of the contract, Art. 6 para. 1 p. 1 lit. b DSGVO.
To improve the technical stability of our services, we work together with Sentry, 132 Hawthorne St, San Francisco, CA 94107, USA and LogRocket 87 Summer St Boston, MA 02110, USA. This allows us to collect information about crashes and malfunctions of the services on your end device in order to improve them. In the process, your IP address is only collected in anonymised form and transmitted to Sentry's servers together with technical data of the end device (such as operating system version, screen resolution, device ID). It is not possible to draw conclusions about a specific person. The data collected is not processed for advertising purposes. The legal basis for the use of Sentry is our legitimate interest in the technical stability of our services (Art. 6 para. 1 p. 1 lit. f DSGVO). For more information, please visit https://sentry.io/privacy/ and https://logrocket.com/privacy/.
Our web hosters, payment service providers and code monitors. The latter help us to monitor the contentplanr programme code and only receive anonymised data for this purpose.
We use the widespread SSL procedure (Secure Socket Layer) in connection with the highest encryption level supported by your browser when visiting the website. As a rule, this is 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead.
We also use appropriate technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorised access by third parties.
The data transfer between the website and our servers is of course encrypted. We create regular backups of all data.
This data protection declaration is currently valid and was updated in March 2022. Due to the further development of our website and offers on it or due to changed legal or official requirements, it may become necessary to change this data protection declaration.
If you have any questions about this data protection declaration or about your data stored by us, please contact us at firstname.lastname@example.org.