1. Data Controller
Linus Thaler Sole Proprietorship
Innsbrucker Straße 37, 86163 Augsburg, Germany
E-Mail: [email protected]
2. Purpose and Legal Basis of Data Processing
| Datenkategorie | Zweck | Rechtsgrundlage |
|---|---|---|
|
Registration & Profile Data (Name, Email, Password Hash) |
Account creation, user management | Art. 6 para. 1 lit. b GDPR (Contract) |
|
Payment Data (Stripe Token, Transaction ID) |
Processing deposits/withdrawals, accounting | Art. 6 para. 1 lit. b, lit. c GDPR (Contract, legal obligation) |
|
Withdrawal Data (Bank/Wallet information) |
Transfer of credits | Art. 6 para. 1 lit. b GDPR (Contract) |
|
Server Log Data (IP, Timestamp, User-Agent) |
Operation, security, abuse prevention | Art. 6 para. 1 lit. f GDPR (legitimate interest) |
3. Recipients & Data Processors
| Dienst | Sitz / Garantien | Zweck |
|---|---|---|
| Hetzner Online GmbH (Data Processing) | EU / Germany | Server hosting, databases |
| Laravel Forge (Laravel LLC) | USA – Standard Contractual Clauses | Deployment automation, no customer data storage except logs |
| Stripe Payments Europe Ltd. | EU / Ireland | Payment processing; Stripe may transfer data to affiliated US companies (SCC, TIA available) |
| Tax advisors / Financial authorities | Germany | Legal retention and reporting obligations |
GDPR-compliant contracts exist with all data processors (Art. 28 GDPR).
4. Storage Duration
- Contract and tax data: 6 – 10 years (AO, HGB).
- Server logs: 14 days, longer only in case of security incidents.
- Deleted user accounts: personal data is anonymized within 30 days, unless retention obligations exist.
5. Data Subject Rights
You have the right to access, rectification, deletion, restriction of processing, data portability and objection to direct marketing. Complaints can be filed with any data protection supervisory authority or directly with us.
6. Cookies & Tracking
We only use technically necessary cookies (Session ID). Analytics or marketing cookies are only used with your consent. You can adjust your cookie settings at any time under "Cookie Settings".
Cookie Settings: Customize
7. Data Security
The platform uses TLS encryption ("https"), regular security updates, firewalling and server location Germany. Access data is strictly assigned according to the need-to-know principle.
8. Changes to this Privacy Policy
In case of changes in the legal situation or our service, this privacy policy will be adapted. The current version is always available at /legal/privacy.
Contact for Privacy Questions
If you have any questions about data protection, you can contact us at any time:
Or use our contact form.