Newsletter

If you subscribe to our newsletter, we will process your email address solely for the purpose of sending you our newsletter on a regular basis. The legal basis is your consent according to Art. 6 (1) (a) GDPR.

The subscription process uses a double opt-in procedure. After signing up, you will receive a confirmation email in which you are asked to confirm your subscription. Only after confirmation will your email address be added to our mailing list.

Your data will be stored as long as the newsletter subscription is active. You can withdraw your consent at any time with effect for the future by unsubscribing via the link included in every email.

We use the service MailerLite for sending the newsletter. The provider is MailerLite Limited, 38 Mount Street Upper, Dublin 2, D02 PR89, Ireland. MailerLite processes the data on our behalf (data processing agreement pursuant to Art. 28 GDPR) and may use servers outside the EU. In such cases, MailerLite ensures an adequate level of data protection by implementing appropriate safeguards (e.g., EU Standard Contractual Clauses).

Further information on data protection at MailerLite can be found here: https://www.mailerlite.com/legal/privacy-policy

Web fonts

For a consistent appearance of fonts, we use so-called web fonts. These web fonts are loaded locally from our own server. No data is transmitted to third parties, in particular not to Google.

Video Streaming (bunny.net Streaming)

For streaming video content, we use the video streaming and content delivery service bunny.net (BunnyWay d.o.o., Cesta komandanta Staneta 4A, 1215 Medvode, Slovenia).

When you play a video, technical data such as IP address, browser type, device information, and playback-related metadata may be processed in order to deliver the video stream efficiently and securely.

The videos are only loaded after you actively initiate playback. The processing is carried out completely within the European Union.

The legal basis for processing is Art. 6 (1) (f) GDPR (legitimate interest in providing the requested multimedia content).

We have concluded a data processing agreement pursuant to Art. 28 GDPR with the provider.

Further information:
https://bunny.net/privacy

User Accounts and Authentication

To provide user accounts and secure authentication, we use the service Clerk. The provider is Clerk, Inc., 548 Market Street, San Francisco, CA 94104, USA.

Clerk enables user registration, login, session management, and account security. When you create an account or log in, personal data such as your email address, authentication credentials, IP address, and device information may be processed. This processing is necessary to provide secure access to your account and to protect against misuse.

We use Clerk with data residency within the European Union. The processing is carried out on our behalf on the basis of a data processing agreement pursuant to Art. 28 GDPR.

Clerk may use sub-processors. Where data transfers to third countries occur, Clerk ensures an adequate level of data protection through appropriate safeguards, in particular the use of EU Standard Contractual Clauses pursuant to Art. 46 GDPR.

The legal basis for the processing of personal data in connection with user accounts is:

• Art. 6 (1) (b) GDPR (performance of a contract or pre-contractual measures), insofar as the account is required to use certain services

• Art. 6 (1) (f) GDPR (legitimate interest in secure and reliable authentication systems)

You can delete your user account at any time. In this case, your personal data stored in connection with the account will be deleted unless statutory retention obligations apply.

Further information on data protection at Clerk can be found at:
https://clerk.com/legal/privacy

Payment Processing (Stripe)

For the processing of payments and subscription fees, we use the payment service provider Stripe. The provider is Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland.

When you make a payment or subscribe to a paid plan, the data required for payment processing (e.g., name, billing address, email address, payment details, transaction amount, and subscription status) is transmitted to Stripe. Stripe processes this data on our behalf and as an independent controller for the purpose of payment execution, fraud prevention, and compliance with legal obligations.

The legal basis for the processing is:

• Art. 6 (1) (b) GDPR (performance of a contract),

• Art. 6 (1) (c) GDPR (legal obligations, e.g., accounting and tax law),

• Art. 6 (1) (f) GDPR (legitimate interest in secure and efficient payment processing).

Stripe may transfer data to third countries. In such cases, Stripe ensures an adequate level of data protection by implementing appropriate safeguards, in particular EU Standard Contractual Clauses pursuant to Art. 46 GDPR.

Further information can be found at:
https://stripe.com/privacy

Hosting and Infrastructure (Vercel)

Our website and application are hosted by Vercel Inc., 440 N Barranca Ave #4133, Covina, CA 91723, USA.

When you visit our website, technical data such as IP address, browser type, operating system, and access time may be processed automatically in order to ensure the stability, security, and proper delivery of the website.

The processing is carried out on the basis of Art. 6 (1) (f) GDPR (legitimate interest in secure and reliable provision of our online services).

We have concluded a data processing agreement pursuant to Art. 28 GDPR with Vercel. Where data is transferred to third countries, Vercel ensures an adequate level of data protection through appropriate safeguards, including EU Standard Contractual Clauses.

Further information:
https://vercel.com/legal/privacy-policy

Database Hosting (Neon)

To store and manage user-related data, we use the service Neon. The provider is Neon Inc., USA.

Personal data is processed within the database that is necessary for the use of our application. This includes, in particular, user identifiers (e.g., the user ID provided by Clerk) as well as user-generated content such as saved techniques, personal lists, or other content created by you.

The processing is carried out for the purpose of providing core functionality of our application, in particular the storage and management of individual user data.

The legal basis for processing is Art. 6 (1) (b) GDPR (performance of a contract), as the processing is necessary to provide the requested features of our application.

Neon processes the data on our behalf on the basis of a data processing agreement pursuant to Art. 28 GDPR.

Personal data may be transferred to third countries (in particular the USA). In such cases, Neon ensures an adequate level of data protection through appropriate safeguards, in particular the use of EU Standard Contractual Clauses pursuant to Art. 46 GDPR.