1. Overview
This Privacy Policy explains how [FIRMENNAME] ("we", "us", "our"), operating the website 0--o.com ("Service"), collects, uses, and protects your personal data in accordance with the EU General Data Protection Regulation (GDPR) and other applicable data protection laws.
2. Data Controller
The data controller responsible for your personal data is:
[FIRMENNAME]
[STRASSE UND HAUSNUMMER]
[PLZ] [ORT]
[LAND]
Email: privacy@0--o.com3. Data We Collect
3.1 Data You Provide
- Account Data: Email address, name, password (hashed)
- Payment Data: Processed securely through Stripe; we do not store credit card numbers
- Uploaded Files: Code files you upload for processing
- Communication: Messages you send to our support
3.2 Automatically Collected Data
- Log Data: IP address, browser type, access times, pages visited
- Device Data: Device type, operating system, unique device identifiers
- Usage Data: Features used, processing options selected, file sizes
4. How We Use Your Data
We process your personal data for the following purposes:
- Service Provision: To provide, operate, and maintain our code optimization service
- Account Management: To create and manage your user account
- Payment Processing: To process subscriptions and payments
- Communication: To respond to your inquiries and provide support
- Service Improvement: To analyze usage patterns and improve our service
- Security: To detect and prevent fraud, abuse, and security incidents
- Legal Compliance: To comply with legal obligations
5. Legal Basis for Processing (GDPR Art. 6)
- Contract Performance (Art. 6(1)(b)): Processing necessary to provide our services
- Legitimate Interests (Art. 6(1)(f)): Service improvement, security, fraud prevention
- Legal Obligation (Art. 6(1)(c)): Tax and accounting requirements
- Consent (Art. 6(1)(a)): Marketing communications (where applicable)
6. File Processing & Zero-Knowledge
Important Information:
- Uploaded files are processed in isolated, secure environments
- Files are automatically deleted within 24 hours after processing
- We do not store, analyze, or use your code for any purpose other than providing the requested service
- We do not use your code to train AI models or machine learning systems
- Processed files are encrypted during transmission and storage
7. Data Sharing & Third Parties
We share your data only with the following categories of recipients:
Service Providers
- Stripe Inc. - Payment processing (USA, EU-US Data Privacy Framework certified)
- Hosting Provider - Server infrastructure (EU-based servers)
We do not sell your personal data to third parties.
8. International Data Transfers
Where we transfer data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, including:
- EU Standard Contractual Clauses (SCCs)
- EU-US Data Privacy Framework certification
- Adequacy decisions by the European Commission
9. Data Retention
- Account Data: Retained until account deletion, then deleted within 30 days
- Uploaded Files: Automatically deleted within 24 hours
- Payment Records: Retained for 10 years (legal requirement)
- Log Data: Retained for 90 days
10. Your Rights (GDPR)
Under the GDPR, you have the following rights:
- Right of Access (Art. 15): Request a copy of your personal data
- Right to Rectification (Art. 16): Correct inaccurate personal data
- Right to Erasure (Art. 17): Request deletion of your personal data
- Right to Restriction (Art. 18): Restrict processing of your data
- Right to Data Portability (Art. 20): Receive your data in a portable format
- Right to Object (Art. 21): Object to processing based on legitimate interests
- Right to Withdraw Consent (Art. 7(3)): Withdraw consent at any time
To exercise your rights, contact us at privacy@0--o.com. We will respond within 30 days.
11. Cookies
We use the following types of cookies:
- Essential Cookies: Required for the service to function (session management, security)
- Functional Cookies: Remember your preferences (theme, language)
- Analytics Cookies: Help us understand how visitors use our service (anonymized)
You can manage cookie preferences through your browser settings.
12. Security Measures
We implement appropriate technical and organizational measures to protect your data:
- TLS 1.3 encryption for all data transmission
- AES-256 encryption for data at rest
- Regular security audits and penetration testing
- Access controls and authentication measures
- Intrusion detection and monitoring systems
13. Children's Privacy
Our service is not intended for individuals under 16 years of age. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately.
14. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by email or by posting a notice on our website. The "Last updated" date at the top indicates when the policy was last revised.
15. Supervisory Authority
You have the right to lodge a complaint with a data protection supervisory authority if you believe your data protection rights have been violated.
The competent supervisory authority for our company is:
[ZUSTÄNDIGE DATENSCHUTZBEHÖRDE]
16. Contact
For questions about this Privacy Policy or our data practices, please contact us:
Data Protection Contact
Email: privacy@0--o.com
Address: [STRASSE], [PLZ] [ORT], [LAND]