Skip to main content

Privacy Policy

Last Updated: Januar 2026

1. Responsible Party

The responsible party for data processing on this website is:

Tom Silas Helmke

c/o Online-Impressum.de #4746

Europaring 90

53757 Sankt Augustin

Deutschland

mrworldlink1@gmail.com
2. Data Collection

We collect and process the following data:

Automatically Collected Data

When you visit our website, certain data is automatically collected:

  • IP address (anonymized)
  • Browser type and version
  • Operating system
  • Referrer URL
  • Time of access

Data You Provide

We also collect data you provide directly:

  • Account information (email, password)
  • Profile information (name)
  • Business data (ventures, entities, tasks, etc.)
  • Payment information (processed by Stripe)
3. Purpose of Data Processing

We use your data for the following purposes:

  • Providing our services
  • Managing your account
  • Communication with you
  • Processing payments
  • Improving our services
  • Compliance with legal obligations
4. Legal Basis

The processing of your data is based on the following legal grounds:

  • Art. 6 Abs. 1 lit. a DSGVO: Consent - You have given consent to data processing
  • Art. 6 Abs. 1 lit. b DSGVO: Contract - Processing is necessary for contract fulfillment
  • Art. 6 Abs. 1 lit. c DSGVO: Legal Obligation - Processing is required by law
  • Art. 6 Abs. 1 lit. f DSGVO: Legitimate Interest - Processing is based on our legitimate interests
5. Hosting (Vercel)

Our website is hosted on Vercel. When you visit our website, Vercel automatically collects and stores information in server log files that your browser transmits.

Vercel Inc.

340 S Lemon Ave #4133

Walnut, CA 91789, USA

privacy@vercel.com

This includes: IP address, browser type and version, operating system, referrer URL, time of access. This data is not merged with other data sources.

Legal basis: Art. 6 Abs. 1 lit. f DSGVO (legitimate interest in the reliable provision of our website).

We have concluded a Data Processing Agreement (DPA) with Vercel. More information: https://vercel.com/legal/privacy-policy

6. Registration and User Account

You can create a user account on our platform. The following information applies:

  • Data collected: Email address, password (encrypted/hashed), display name
  • Purpose: Providing our service and managing your account
  • Retention: Until you delete your account
  • Legal basis: Art. 6 Abs. 1 lit. b DSGVO (contract fulfillment)
7. Database (Supabase)

We use Supabase Inc. as our database and authentication provider (data processor).

Supabase Inc.

970 Toa Payoh North #07-04

Singapore 318992

support@supabase.io

Server location: EU (Frankfurt, Germany). Your data is stored exclusively in the European Union.

Legal basis: Art. 6 Abs. 1 lit. f DSGVO (legitimate interest). A DPA with standard contractual clauses (SCCs) has been concluded.

DPA: https://supabase.com/legal/dpa

Privacy Policy: https://supabase.com/privacy

8. Payment Processing (Stripe)

We use Stripe Payments Europe Ltd. as our payment service provider. Stripe is an independent data controller for payment data.

Stripe Payments Europe Ltd.

Block 4, Harcourt Centre

Harcourt Road, Dublin 2

Irland

privacy@stripe.com

Important: We do NOT store any credit card data or complete payment information on our servers. All payment processing is handled directly by Stripe.

Legal basis: Art. 6 Abs. 1 lit. b DSGVO (contract fulfillment).

Stripe Privacy Policy: https://stripe.com/privacy

9. Cookies

We use only technically necessary cookies. No tracking or marketing cookies are used without your consent.

Essential Cookies

These cookies are necessary for the website to function:

  • sb-* - Authentication cookies
  • cookie-consent - Cookie consent preferences
  • theme - Theme preferences

Optional Cookies

We currently do not use any optional tracking or marketing cookies.

Legal basis: § 25 TDDDG (technically necessary cookies do not require consent).

10. Contact via Email

When you contact us via email, we store your email address and message content to process your inquiry.

Retention: Until your inquiry has been fully processed, then deleted.

Legal basis: Art. 6 Abs. 1 lit. f DSGVO (legitimate interest in answering inquiries).

11. Data Retention

We retain your data only as long as necessary:

  • Account data: Until account deletion
  • Business data: Until account deletion
  • Payment data: 10 years (legal requirement)
  • Access logs: 30 days
  • After account deletion, all personal data is removed within 30 days (except where legal retention periods apply)
12. Your Rights

Under GDPR, you have the following rights:

  • Right of Access (Art. 15 GDPR): You can request information about your stored data.
  • Right to Rectification (Art. 16 GDPR): You can request correction of inaccurate data.
  • Right to Erasure (Art. 17 GDPR): You can request deletion of your data.
  • Right to Restriction (Art. 18 GDPR): You can request restriction of data processing.
  • Right to Data Portability (Art. 20 GDPR): You can request your data in a machine-readable format.
  • Right to Object (Art. 21 GDPR): You can object to data processing.
  • Right to Withdraw Consent: You can withdraw consent at any time.

To exercise your rights, contact us at: mrworldlink1@gmail.com

13. Data Security

We take appropriate measures to protect your data:

  • TLS encryption for all data transfers
  • Row-level security in our database
  • Secure authentication with Supabase Auth
  • Regular security updates
14. Supervisory Authority

You have the right to lodge a complaint with a supervisory authority.

List of supervisory authorities in Germany

15. Changes to this Policy

We may update this policy from time to time. We will notify you of significant changes.