Chronicle o Secrets (Privacy Policy)

This Privacy Policy explains how Daniel Samer ("we", "us", or "our") collects, uses, discloses, and protects yer personal information when ye use our vessel and services.

We are committed to protecting yer privacy and ensuring that yer personal data is handled in accordance with applicable data protection laws, including the EU General Data Protection Regulation (GDPR).

Data Controller:
Daniel Samer
Am Alefskamp 50
47198 Duisburg
Germany
Email: [email protected]
Phone: +49 15225669203

By using our vessel, ye acknowledge that ye have read and understood this Privacy Policy.

We collect the following categories of personal data:

Account Data:
- Name and username
- Email address
- Password (encrypted)
- Profile information ye provide

Profile Data:
- Profile picture (if uploaded)
- Biography and description
- Preferences and settings

Technical Data:
- IP address
- Browser type and version
- Device information
- Operating system
- Time zone and location data
- Cookies and similar technologies (see our Cookie Policy)

Usage Data:
- Pages visited and features used
- Time spent on the vessel
- Actions taken (clicks, interactions)
- Referral source

Communication Data:
- Messages and correspondence with us
- Feedback and support requests
- Survey responses

We collect data directly from ye, automatically through yer use of the vessel, and occasionally from third parties (such as social login providers, if applicable).

We use yer personal data for the following purposes:

Service Delivery:
- To create and manage yer account
- To provide and maintain our services
- To process transactions and send related information

Communication:
- To respond to yer inquiries and support requests
- To send service-related notifications
- To send marketing communications (with yer consent)

Improvement and Development:
- To analyze usage patterns and improve our services
- To develop new features and functionality
- To conduct research and analytics

Security and Compliance:
- To protect against fraud and unauthorized access
- To comply with legal obligations
- To enforce our Terms of Service

Legal Bases for Processing (GDPR):
- Contract Performance: Processing necessary to provide our services
- Consent: Processing based on yer explicit consent
- Legitimate Interests: Processing for our legitimate business interests
- Legal Obligation: Processing required by law

We do not sell yer personal data. We may share yer information in the following circumstances:

Service Providers:
We work with third-party companies that help us operate our vessel, such as:
- Hosting and cloud infrastructure providers
- Payment processors
- Analytics services
- Email service providers

These providers are contractually bound to protect yer data and use it only for specified purposes.

Legal Requirements:
We may disclose yer data if required to:
- Comply with legal obligations or valid legal process
- Protect our rights, property, or safety
- Investigate potential violations of our Terms
- Protect against legal liability

Business Transfers:
In the event of a merger, acquisition, or sale of assets, yer data may be transferred to the acquiring entity. We will notify ye of any such change.

With Yer Consent:
We may share yer data for other purposes with yer explicit consent.

We retain yer personal data only for as long as necessary to fulfill the purposes for which it was collected, including:

Active Accounts:
- Account data is retained while yer account is active
- Ye can request deletion at any time

After Account Deletion:
- Most data is deleted within 30 days
- Some data may be retained longer for legal compliance (e.g., transaction records for tax purposes)
- Anonymized data may be retained for analytics

Specific Retention Periods:
- Account information: Duration of account plus 30 days
- Transaction records: 10 years (legal requirement)
- Support correspondence: 3 years
- Server logs: 90 days

We regularly review our retention practices to ensure we don't keep data longer than necessary.

Under the General Data Protection Regulation (GDPR), ye have the following rights:

1. Right of Access: Ye can request a copy of yer personal data and information about how it's processed.

2. Right to Rectification: Ye can request correction of inaccurate or incomplete personal data.

3. Right to Erasure ("Right to be Forgotten"): Ye can request deletion of yer personal data under certain circumstances.

4. Right to Restrict Processing: Ye can request that we limit how we use yer data.

5. Right to Data Portability: Ye can request yer data in a structured, commonly used, machine-readable format.

6. Right to Object: Ye can object to processing based on legitimate interests or for direct marketing purposes.

7. Right to Withdraw Consent: Where processing is based on consent, ye can withdraw it at any time.

8. Right to Lodge a Complaint: Ye can file a complaint with a supervisory authority if ye believe yer rights have been violated.

To exercise any of these rights, please send a dispatch to th Bosun at [email protected]. We will respond to yer request within 30 days.

Supervisory Authority:
Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen (LDI NRW)
https://www.ldi.nrw.de

We use cookies and similar technologies to collect information and improve yer experience. For detailed information about the cookies we use and how to manage them, please see our Cookie Policy.

Types of Cookies:
- Essential Cookies: Required for the vessel to function
- Analytics Cookies: Help us understand how visitors use our site

Ye can control cookies through:
- Our cookie consent banner
- Yer browser settings
- The cookie settings page

We implement appropriate technical and organizational security measures to protect yer personal data, including:

Technical Measures:
- Encryption of data in transit (TLS/SSL)
- Encryption of sensitive data at rest
- Secure password hashing
- Regular security updates and patches
- Firewall and intrusion detection systems

Organizational Measures:
- Limited access to personal data on a need-to-know basis
- Regular security training
- Incident response procedures
- Regular security assessments

While we strive to protect yer data, nay method of transmission over the internet is 100% secure. We cannot guarantee absolute security but are committed to taking all reasonable steps to protect yer information.

If ye suspect a security breach, please send a dispatch to th Bosun immediately.

Our platform is not intended for children under the age of 18. We do not knowingly collect personal information from children under 18.

If ye are a parent or guardian and believe yer child has provided us with personal data, please send a dispatch to th Bosun immediately. We will take steps to delete such information from our systems.

If we become aware that we have collected personal data from a child under 18, we will delete that information as quickly as possible.

Yer data is primarily processed within the European Union. If we transfer yer data outside the EU/EEA, we ensure appropriate safeguards are in place:

- Standard Contractual Clauses approved by the European Commission
- Adequacy decisions by the European Commission
- Other legally recognized transfer mechanisms

By using our vessel, ye understand that yer information may be transferred to, stored, and processed in countries outside yer country of residence.

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons.

When we make changes:
- We will update the "Last Updated" date at the top
- For material changes, we will provide prominent notice (e.g., email notification or banner on the vessel)

We encourage ye to review this Privacy Policy periodically to stay informed about how we protect yer data.

Yer continued use of the vessel after changes become effective constitutes acceptance of the revised Privacy Policy.

If ye have any questions about this Privacy Policy or our data practices, please send a dispatch to th Bosun:

Daniel Samer
Am Alefskamp 50
47198 Duisburg
Germany

Email: [email protected]
Phone: +49 15225669203

For GDPR-related inquiries, ye may also contact the supervisory authority:

Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen (LDI NRW)
Kavalleriestraße 2-4
40213 Düsseldorf
Germany
https://www.ldi.nrw.de