At a glance

Who is responsible for the collection of data on Boostful.io?

Rico Ocepek is responsible for the data collection and storage. Our contact data can be found in the Imprint.

How do we collect your data?

Primarily we collect data that you consciously give to us, e.g. when creating an account or when buying a non-free package. Other data will be automatically collected when you visit Boostful.io. These are mainly technical data like your browser, OS or the time of your visit. This happens automatically and helps us to see how we can improve our site. These data will never be linked to your personal data (like e.g. the e-mail address of your account). We can not (and do not want to) create a profile of you and your browsing habits.

How do we use your data?

We use statistics to further develop our website / product and to make sure to be able to deliver it without issue. Your e-mail address will only be used to send you information regarding your account or content and information around our product. Your personal / company data will only be used to create an invoice or provide the purchased services. Some data will be processed by Third Parties. This is limited to the tools we use to handle the purchase of our non-free plans or integrations (Paddle, see 1 below) and our Webspace Provider (Netlify and Google, see 1 below). We only share necessary data to provide a specific service with those parties. We will not share your data with any other third parties and we won’t use it for anything else ourselves. If you personally write us an e-mail, your address will be handled only by us, confidentially.

What are your rights?

You have the right to request information about origin, recipients and purpose of your data free of charge at any time. You can demand correction, locking or deletion of your data – just send us an informal e-mail. In case we don’t comply with your request, you have the right to complain at the responsible regulating authority. Of course, it’s in our interest to guarantee your personal data privacy. If you have any questions please feel free to contact us.

Which domains does this apply to?

Note that while this page is running at boostful.io (or www.boostful.io), the actual service is served from app.boostful.io. For that matter our privacy policy applies to both domains equally and also to all other subdomains of boostful.io.

Legal Notes

Scope

This privacy statement informs the user about the type, the extent and the purpose of the collection and usage of personal data through the responsible provider Rico Ocepek - Fledermausgasse 29, A-9020 Klagenfurt, Mail: hello@boostful.io, Tel: 0660/4006095 on this website and all subdomains of it. The legal basis for privacy can be found in the Data Protection Act (Datenschutzgesetz, DSG) and the Telemedia Act (Telemediengesetz, TMG).

Withdrawal, Change, Permissions & Updating of Data

The user has the right to be informed about the personal data saved by us upon request free of charge. Additionally, the user has the right to request the correction of incorrect data, suspension or deletion of his personal data, as far as we are not obliged by law to preserve these records.

1. Collection and Use of Personal Information

Access-Data / Server-Logfiles

For serving our webpages we use the services of the provider Netlify, Inc., located at 2325 3rd Street, Suite 215, San Francisco, California 94107. Netlify does not collect any user specific information like IP addresses in their server access logs. In fact, we don't have access to any server logs at all. While Netlify is also selling a product named "Netlify Analytics" that would allow us to gain some additional inside into user's behaviour we do NOT use this service. Furthermore, we have closed a Data Processing Agreement with Netlify which ensures that Netlify is protecting the data of our users, to only process data at our orders and in accordance with their data privacy statement and especially not to share data with third parties. We trust in the reliability and the IT- and data security of Netlify. Netlify is certified under the US-EU-Data Privacy Convention “Privacy Shield” and is therefore obligated to comply with EU data privacy requirements.
Read more about how Netlify handles your data here: https://www.netlify.com/privacy

Some parts of our infrastructure are hosted at Firebase by Google, LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043. This includes the user authentication, our API, as well as our databases. These are the individual services we use, listed alongside the data they store.

• Cloud Firestore: the user's project data, notes, links, tasks, ...
• Firebase Authentication: Email addresses, passwords, User agents, IP addresses (for authentication purposes)
• Cloud Functions for Firebase: temporary storage of IP addresses during execution (this data is not accessed / used by us)
• Cloud Storage for Firebase: no user data stored

All of the above mentioned services are subject to these terms: https://cloud.google.com/terms/

We have closed a Data Processing Agreement with Google which ensures that Google is protecting the data of our users, to only process data at our orders and in accordance with their data privacy statement and especially not to share data with third parties. We trust in the reliability and the IT- and data security of Google. Google is certified under the US-EU-Data Privacy Convention “Privacy Shield” and is therefore obligated to comply with EU data privacy requirements.
Read more about how Firebase handles your data here: https://firebase.google.com/support/privacy

Contact Information

When contacting us through the contact form or via e-mail, your data will be stored to handle the request or any further inquiries.

Cookies

This website uses cookies. Cookies are small pieces of information, stored in simple text files, placed on your computer by a website. Cookies can be read by the Website on your subsequent visits. The information stored in a cookie may relate to your browsing habits on the webpage, or a unique identification number so that the Website can “remember” you on your return visit. Most browsers let their users decide on how cookies should be handled. You can find these options in the settings of your browser. Please notice that the usage of our services and the user experience could suffer from preventing our website to set a cookie. You can manage many cookies of ad companies through the US site http://www.aboutads.info/choices or the EU site http://www.youronlinechoices.com/uk/your-ad-choices.

Data Processing for Business Purposes (Subscriptions)

We process the data of our contractual partners and other clients to fulfill contractual services. The processed data, the purpose, extent, purpose and the requirement of processing are governed by the underlying contractual relationship. We only process data that are required to conclude the contract and to fulfill the contractual services: The master data of our contractual partners (e.g. names & addresses), contact data (e.g. e-mail addresses) as well as contractual data (e.g. the purchased plan, communication in the context of the purchase,..); We don’t directly process any payment data. Your payment data (e.g. account data) will only be processed by our external payment provider Paddle (see chapter External Payment Provider). We don’t have access to any of your payment details (e.g. your credit card number) and only get a payment confirmation or the information that your payment has failed. These data will not be shared with other third party services than those listed below, except it’s explicitly necessary to fulfill a contractual service. We don’t process other data, except when they’re part of our contractual service (e.g. you include them in your generated images).

External Payment Provider

We are using an external payment provider to receive your payments for subscriptions: Paddle.com, 340 S Lemon Avenue, Los Angeles, California 91789, USA. We trust in the reliability and the IT- and data security of Paddle. Paddle is using Amazon’s infrastructure that is certified under the US-EU-Data Privacy Convention “Privacy Shield” and is therefore obligated to comply with EU data privacy requirements. Furthermore, we closed a Data-Processing-Agreement with Paddle. This contract ensures that Paddle is protecting the data of our users, to only process data at our orders and in accordance with their data privacy statement and especially not to share data with third parties. You can consult their privacy policy for further information: https://paddle.com/privacy

2. E-Mail

We may contact you via e-mail regarding account and product functionality or payment. If you want to receive our newsletter, we need a valid e-mail address. We also need information to ensure that you own the e-mail address with which you are subscribing / that the owner is consenting to receive our newsletter. Other data will not be saved. These data are only used for the listed purpose and will not be passed on to third parties. With the verification of your e-mail address, we will store your IP address and the timestamp of your verification. Storing this information is important to prove that the owner of the e-mail address gave his consent to receive our mails. You can revoke your consent to our storing of your data and to receive e-mails at any time free of charge. You can unsubscribe through a link in every e-mail that announces new features or informs you about the product through managing your preferences in your profile or by sending us an informal request. For revoking your consent to send you information linked your account status (like invoices), you need to delete your account by sending us an informal request.

3. Analytics Tools

Google Analytics

Our website is using Google Analytics, an analytics tool from Google Inc. (“Google”). Google Analytics is using cookies – small text files that are saved on your computer and that allow the analysis of the usage of our site. The information gathered by the cookie is sent to Google’s servers in the USA and stored there.Your IP-address is anonymized. Your full IP-address will not be sent to Google’s servers in the USA, except in exceptional cases where the address will be sent first, and then shortened before it’s stored. According to our orders, Google is using this information to analyze the usage of our website, create reports about the user’s activity and to offer other services that are related to our user’s activity and the usage of the web. Your IP address will not be consolidated with other data stored on Google’s servers. You can prevent us and Google Analytics setting a cookie via your browser settings. Please notice that the usage of our services and the user experience could suffer from preventing our website to set a cookie. If you want to prevent Google from setting any cookies on your computer through activating the following browser-plugin: http://tools.google.com/dlpage/gaoptout?hl=en.

For further information about the usage of data for advertising purposes, setting- and your options to opt-out of the transmission of your data, read the information on Google’s Websites:

• https://www.google.com/intl/de/policies/privacy/partners?hl=en (“How Google uses data when you use our partners’ sites or apps”)
• https://policies.google.com/technologies/ads?hl=en (“Advertising”),
• http://www.google.de/settings/ads?hl=en and
• http://www.google.com/ads/preferences?hl=en (“Control the information Google uses to show you ads”)

Alternatively, or if you’re using a mobile browser, click on this link to prevent Google from gathering data on our website. With clicking this link, an opt-out cookie will be saved on your device. If you delete your cookies, you will need to click on the link again to stay opted-out.

Privacy Statement Changes

We may change this Privacy Statement from time to time, and in our sole discretion. We encourage you to frequently check this page for any changes to this Privacy Statement. Your continued use of the Website after any change in this Privacy Statement will constitute your acceptance of such change.

last updated – 11.05.2020