Logo
Sign inSign up

Privacy Policy

We are glad that you use our platform Memofreeze. Protecting your personal data is important to us. Below we inform you about the processing of your data according to Art. 13 of the General Data Protection Regulation (GDPR).

1. Responsible party

Responsible for data processing on this website within the meaning of the GDPR is:

Kevin Linne
Fröbelstr. 40
35394 Gießen
Germany

info@memofreeze.com

2. Collection and storage of personal data

When visiting our website and using our services, we process the following personal data:

a) Website visit

  • IP address
  • Date and time of access
  • Browser type and version
  • Operating system
  • Referrer URL

These data are temporarily stored in log files to ensure the functionality of the website. The legal basis for this is Art. 6 para. 1 lit. f GDPR.

b) Registration and use of the guestbook

For using our guestbook and creating events, we process the following data:

  • Name
  • Email address
  • Posts (texts, photos, and answers to questions and votings)

Processing is carried out to fulfill the usage contract according to Art. 6 para. 1 lit. b GDPR.

c) Payment data

For processing payments, we use the payment service provider Stripe. Processing is carried out to fulfill the contract according to Art. 6 para. 1 lit. b GDPR.

d) Photos

Guests can upload photos. Please note that you are responsible for obtaining consent from the persons depicted. The legal basis is Art. 6 para. 1 lit. a GDPR (consent).

3. Purpose and legal basis of data processing

We process the data we collect for the following purposes:

  • Provision of the platform and its functions
  • Storage of guestbook entries for 3 years
  • Processing of payments
  • Support and error correction

The legal basis is Art. 6 para. 1 lit. b (contract fulfillment) and lit. f (legitimate interest).

4. Disclosure to third parties

We only pass on personal data to third parties if this is necessary for contract fulfillment or if there is a legal obligation:

  • Hosting: Our platform is hosted by Netcup. To provide our services, we use the services of our processor Supabase, Inc., a Delaware corporation, 970 Toa Payoh North #07-04, Singapore 318992, Singapore, with whom we have concluded a data processing agreement (DPA). The DPA with Supabase includes the EU standard contractual clauses (SCC) and thus provides sufficient guarantees according to Art. 46 ff. GDPR. The DPA and SCC can be found here: https://supabase.com/legal/dpa
  • Payment service provider: We cooperate with Stripe for payment processing.
  • Analytics: If we use tools like Google Analytics, this only happens with your consent.

Transfer to third countries only occurs if an adequate level of data protection is ensured (e.g., through EU standard contractual clauses).

5. Duration of storage

We store your personal data:

  • Guestbook entries and event data: 3 years after event creation
  • Payment data: according to legal retention periods (usually 10 years)
  • Log files: maximum 30 days

After expiration of the periods, the data will be deleted or anonymized.

6. Rights of the data subjects

You have the right to access, correction, deletion, restriction of processing, data portability, and objection. Please contact us if you want to exercise your rights.

7. Cookies

We only use cookies that are essential for using our site (e.g., login).

8. Data security

We take technical and organizational measures to protect your data from loss, destruction, manipulation, and unauthorized access.

9. Changes to the privacy policy

We reserve the right to change the privacy policy. The current version is always available on our website.