Privacy Policy

1. General Information

The operators of this website take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration.

Responsible body for data processing on this website:

Michael Zogot
Germany
Email: mzogot@googlemail.com

2. Hosting (Vercel)

We host our website with Vercel Inc., 340 S Lemon Ave #4133, Walnut, CA 91789, USA.

When you visit our website, your personal data (e.g., IP addresses in server log files) is processed on Vercel's servers. This is necessary to safeguard our legitimate interest in providing a reliable and secure website (Art. 6 Para. 1 lit. f GDPR).

Data Processing Agreement: We have concluded a Data Processing Agreement (DPA) with Vercel. This ensures that Vercel processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.

US Data Transfer: Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://vercel.com/legal/dpa.

3. Data Collection on our Website

Cookies & Local Storage

We use Local Storage and cookies to save your preferences (e.g., theme, session data) directly on your device. Session cookies are used for authentication purposes via Supabase.

Server Log Files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • Browser type and browser version
  • Operating system used
  • Referrer URL
  • Hostname of the accessing computer
  • Time of the server inquiry
  • IP address

This data is not merged with other data sources. The collection of this data is based on Art. 6 para. 1 lit. f GDPR.

4. Authentication (Supabase)

We use Supabase for authentication and data storage. Supabase is provided by Supabase Inc., 970 Toa Payoh North #07-04, Singapore 318992.

When you create an account, we store your email address and encrypted password. Your subscription data is stored securely in our Supabase database with Row Level Security (RLS) enabled, ensuring that only you can access your own data.

The use of Supabase is based on Art. 6 Para. 1 lit. b GDPR (Performance of a Contract).

5. Email Notifications

We use Resend to send transactional emails such as payment reminders and account notifications. Your email address is shared with Resend solely for the purpose of delivering these emails.

You can manage your notification preferences in your account settings at any time.

6. Payment Card Information

SubScraby allows you to add payment cards for organizational purposes only. We never store full card numbers, CVVs, expiration dates, or any sensitive payment credentials. The card feature is purely for helping you track which subscriptions are linked to which card. We do not process payments or connect to any banking APIs.

7. Your Rights

You have the right to request information about your stored personal data, its origin and recipients and the purpose of the data processing at any time and free of charge. You also have the right to demand the correction, blocking or deletion of this data. You can contact us at any time at the address given in the imprint if you have further questions on the subject of personal data.

You also have the right to lodge a complaint with the competent supervisory authority.