Privacy Policy

1. Controller

2. What data is collected

a) Dashboard (shop operators)

When you register and use the dashboard, we process:

• E-mail address (for login via magic link)
• Name (optional, for personalised communication)
• Shop data (name, domain)
• Payment information (processed directly by Stripe)

b) Widget (end customers / consumers)

When a consumer submits a withdrawal through the widget, the following data is processed:

• Customer name (mandatory)
• Means of contact – e-mail address or phone number (mandatory)
• Order reference (optional)
• Free-text message (optional, max. 2,000 characters)
• IP address (stored hashed, not in plain text, solely for abuse protection)
• Browser user agent (for technical debugging)
• Time of the withdrawal

3. Legal basis for processing

Personal data is processed on the following legal bases:

• Art. 6(1)(b) GDPR (performance of a contract): Processing the account data of shop operators is necessary to provide our SaaS service.
• Art. 6(1)(f) GDPR (legitimate interests): Storing hashed IP addresses serves to prevent abuse (rate limiting).
• Art. 6(1)(c) GDPR (legal obligation): Withdrawal data is processed to fulfil the statutory obligations under § 356a of the German Civil Code (BGB).

4. Processing on behalf of a controller

When processing the withdrawal data of end customers, WiderrufButton acts as a processor within the meaning of Art. 28 GDPR on behalf of the respective shop operator (the controller).

We offer all shop operators a data processing agreement (DPA) pursuant to Art. 28 GDPR. It is available in full on the DPA page and can be saved or printed as a PDF; it is deemed concluded upon registration.

Further information can be found on our DPA page.

5. Hosting

Our services are hosted on servers of Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, Germany.

All data is processed and stored exclusively in German data centres. No transfer to third countries takes place as a result of the hosting.

Hetzner processes data on our behalf. A data processing agreement has been concluded.

6. E-mail dispatch

For sending transactional e-mails (acknowledgements of receipt, notifications, magic-link login) we use the SMTP service of IONOS SE, Elgendorfer Straße 57, 56410 Montabaur, Germany. A data processing agreement has been concluded; processing takes place in German data centres.

Only the data required for dispatch (recipient e-mail, subject, content) is transmitted. There is no e-mail tracking, no open-rate measurement and no link tracking. The legal basis is Art. 6(1)(b) and (c) GDPR (performance of a contract as well as the statutory obligation to provide evidence of the acknowledgement of receipt pursuant to § 356a BGB).

7. Payment processing

For payment processing we use Stripe, Inc. (510 Townsend Street, San Francisco, CA 94103, USA). Stripe is certified as a payment service provider under PCI DSS.

Payment data (credit card numbers, IBAN) is processed exclusively by Stripe and is not stored on our servers. From Stripe we only receive a customer number, the payment status and the current plan.

Stripe also processes data in the USA. The Stripe privacy policy applies. Stripe has joined the EU-U.S. Data Privacy Framework.

8. Cookies

WiderrufButton uses only technically necessary session cookies that are required for authentication in the dashboard.

We do not use any tracking cookies, analytics cookies or marketing cookies.

The WiderrufButton widget sets no cookies and uses neither localStorage nor sessionStorage. It is fully compliant with the German Telecommunications-Telemedia Data Protection Act (TTDSG).

No tracking cookies and no US analytics services such as Google Analytics or Facebook Pixel are used.

Where activated, we use exclusively the privacy-friendly, cookieless analytics tool Plausible Analytics (Plausible Insights OÜ, Estonia, EU; hosted in the EU). Plausible records only aggregated, anonymous reach statistics (page views, referral sources) without cookies, without localStorage and without personal tracking of individual visitors. The legal basis is Art. 6(1)(f) GDPR (legitimate interest in a data-minimising measurement of reach).

9. Ad performance measurement (Google Click ID)

If you reach our website via a Google ad, the address bar usually contains the parameter gclid (Google Click ID). We read this value from the URL and store it exclusively locally in your browser (in first-party localStorage). No cookie is set for this purpose.

The cached value serves solely to measure advertising success upon a later registration (offline conversion measurement). Only the Google Click ID and the time of conversion are processed; no further personal data is collected or transmitted for this purpose.

No cross-site tracking cookies are set. The legal basis is Art. 6(1)(f) GDPR (legitimate interest in measuring the effectiveness of our advertising).

10. Storage period

• Account data (shop operators): Stored for as long as the contractual relationship exists (legal basis Art. 6(1)(b) GDPR). After termination or cancellation of the account, the data is deleted within 30 days, unless a statutory retention obligation applies.
• Withdrawal data (end customers): Retained in accordance with statutory obligations (legal basis Art. 6(1)(c) GDPR), as a rule for 6 years pursuant to § 257 of the German Commercial Code (HGB) as a tamper-proof acknowledgement of receipt.
• IP hashes (pseudonymised): For abuse prevention on the basis of Art. 6(1)(f) GDPR; automatic deletion after 90 days.

11. SSL encryption

For security reasons, this site uses SSL or TLS encryption. You can recognise an encrypted connection by the fact that the address bar of the browser changes from “http://” to “https://” and by the padlock symbol in your browser bar. All data you transmit to us cannot be read by third parties.

12. Your rights as a data subject

You have the following rights with regard to your personal data:

• Right of access (Art. 15 GDPR) – you can request information about the data stored about you.
• Right to rectification (Art. 16 GDPR) – you can request the correction of inaccurate data.
• Right to erasure (Art. 17 GDPR) – you can request the erasure of your data, unless statutory retention obligations apply.
• Right to restriction (Art. 18 GDPR) – you can request the restriction of processing.
• Right to data portability (Art. 20 GDPR) – you can request the release of your data in a machine-readable format.
• Right to object (Art. 21 GDPR) – you can object to the processing of your data.

To exercise your rights, please contact: info@ateliernodus.com

13. Right to lodge a complaint with a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement, if you consider that the processing of personal data relating to you infringes the GDPR.