WAVG ← Back to app

Privacy Policy

1. Controller

The controller within the meaning of the General Data Protection Regulation (GDPR) is:
Jonas Rösch, Hauptstraße 154, 77876 Kappelrodeck, Germany
Email: support@wavg.de

2. General Information on Data Processing

We process personal data only insofar as this is necessary to provide a functional website as well as our content and services, or where you have given your consent. Legal bases are in particular Art. 6 (1) (a) (consent), (b) (contract / pre-contractual measures) and (f) (legitimate interest) GDPR.

3. Hosting

Our website is hosted by Hetzner Online GmbH (Industriestr. 25, 91710 Gunzenhausen, Germany). The server location is Germany. A data processing agreement (Art. 28 GDPR) is in place with the provider. Legal basis: Art. 6 (1) (f) GDPR (secure, efficient provision of the service).

4. Server Log Files

When you access the website, information transmitted by your browser is automatically collected (e.g. IP address, date/time, requested resource, referrer, browser type). This data serves the technical provision, security and stability of the service. Legal basis: Art. 6 (1) (f) GDPR.

5. Registration & User Account

For a user account we process your email address and a securely stored (hashed) password. Optionally, you may provide a name, country and phone number. This data is used for login, authentication and providing the personalized features. Legal basis: Art. 6 (1) (b) GDPR. You can delete your account at any time in your profile settings.

6. Email Delivery

For transactional emails (e.g. password reset, email confirmation, support transcript) we use the service Resend (Resend, Inc., USA). Your email address is transmitted to the provider. A data processing agreement is in place; transfer to the USA takes place on the basis of the EU Standard Contractual Clauses. Legal basis: Art. 6 (1) (b) and (f) GDPR.

7. Payment Processing

For paid subscriptions, payment processing is carried out via Stripe (Stripe Payments Europe, Ltd., Ireland). The data required for payment is processed directly by Stripe; we do not store complete payment data (e.g. card numbers) ourselves. Stripe's privacy notices apply. Legal basis: Art. 6 (1) (b) GDPR.

8. Local Storage

For login and your settings, we store technically necessary information locally in your browser (including a login token and your alert/display preferences). This data remains in your browser and is not used for tracking purposes. Legal basis: Art. 6 (1) (b) and (f) GDPR (§ 25 (2) TDDDG – strictly necessary).

9. Browser Notifications

If you enable notifications, your browser will ask for your explicit consent. You can revoke this at any time in your browser settings. Legal basis: Art. 6 (1) (a) GDPR.

10. External Content (CDN, Fonts)

To render the site, we embed resources from third parties (e.g. program libraries via cdnjs and fonts via Google Fonts). Your IP address may be transmitted to the respective providers. Legal basis: Art. 6 (1) (f) GDPR. (Operator note: fonts and libraries should ideally be self-hosted to minimize data transfer.)

11. Retention Period

Personal data is deleted as soon as the purpose of processing no longer applies and no statutory retention obligations apply (e.g. commercial and tax retention periods for payment transactions). Account data is stored until the account is deleted.

12. Your Rights

Under the GDPR you have, in particular, the following rights:

To exercise these rights, an email to support@wavg.de is sufficient.

13. Right to Lodge a Complaint

You have the right to lodge a complaint with a data protection supervisory authority — e.g. the State Commissioner for Data Protection and Freedom of Information of Baden-Württemberg.

14. Changes

We will adapt this privacy policy if the legal situation or our processing changes. The version published on this page at any given time applies.