Codefluss Logo

Privacy Policy

Information about the processing of your personal data

Last updated: January 2026

1. Data Controller

The data controller within the meaning of the GDPR is:
Friedrich Bachinger, MSc
Windegg 61
4311 Schwertberg
Austria

Email: codefluss@gmail.com

2. Data Processing Principles

We process your personal data in accordance with the GDPR and the Austrian Data Protection Act (DSG 2018). The following principles apply:

  • Data minimization: We only collect data necessary for the respective purpose
  • Purpose limitation: Your data is only used for the stated purpose
  • Storage limitation: Data is not stored longer than necessary
  • Integrity and confidentiality: We ensure appropriate security

3. Data Collected and Legal Bases

Depending on your use of our services, we process different personal data:

3.1 Registration and User Account

During registration, we collect:

  • Email address (required for login and communication)
  • Name (for personalization)
  • Password (stored encrypted, hashed)

Legal basis: Art. 6(1)(b) GDPR – Contract performance

3.2 Usage Analysis (only with consent)

With your consent to analytics cookies, we collect:

  • Page views and navigation
  • Clicks and interactions (anonymized)
  • Device and browser information (anonymized)

Legal basis: Art. 6(1)(a) GDPR – Consent

3.3 Payment Processing

For paid services, payment data is processed through our payment provider Stripe. We do not store any credit card data ourselves.

Legal basis: Art. 6(1)(b) GDPR – Contract performance

4. Third Parties and Data Processors

We use the following third-party providers to operate our services:

PostHog (EU Cloud)

Purpose: Anonymized usage statistics (only with consent)
Location: Frankfurt, Germany (EU)
Privacy Policy

Stripe

Purpose: Secure payment processing
Location: EU/US with EU Standard Contractual Clauses
Privacy Policy

bunny.net CDN

Purpose: Fast delivery of media and images
Location: Slovenia (EU)
Privacy Policy

Hetzner Cloud

Purpose: Server hosting and database storage
Location: Germany (EU)
Privacy Policy

5. Cookies and Storage Technologies

Information about the cookies we use can be found on our Cookie Settings page. There you can also change your settings at any time.

→ To Cookie Settings page

Newsletter

When you subscribe to our newsletter, we process the following data:

Data Collected

  • Email address
  • Time of subscription (consent timestamp)
  • IP address at the time of subscription
  • Language preference

Purpose of Processing

We process your email address to send you regular information about product updates, new features, and relevant content about CODEFLUSS.

Legal Basis

Processing is based on your consent pursuant to Art. 6(1)(a) GDPR in conjunction with § 174 TKG 2021 (Austrian Telecommunications Act).

Data Processor

For sending newsletters, we use the service Brevo (formerly Sendinblue), operated by Sendinblue GmbH, Köpenicker Str. 126, 10179 Berlin, Germany. Brevo is a GDPR-compliant provider based in the EU. We have concluded a data processing agreement (DPA) with Brevo in accordance with Art. 28 GDPR.

Storage Duration

Your data will be stored until you unsubscribe from the newsletter. After unsubscribing, your data will be deleted within 30 days, unless legal retention requirements apply.

Withdrawal of Consent

You can withdraw your consent at any time with effect for the future. Use the unsubscribe link at the end of each email or contact us at codefluss@gmail.com.

Email Tracking

Our newsletters contain tracking pixels that provide us with information about whether and when you opened the email. This data is used to optimize our communication. You can prevent tracking by disabling the loading of external images in your email program.

6. Your Rights

Under the GDPR, you have the following rights:

  • Right of Access (Art. 15 GDPR): You can request information about your stored data.
  • Right to Rectification (Art. 16 GDPR): You can request the correction of incorrect data.
  • Right to Erasure (Art. 17 GDPR): You can request the deletion of your data, unless legal retention obligations exist.
  • Right to Restriction (Art. 18 GDPR): You can request restriction of processing.
  • Right to Data Portability (Art. 20 GDPR): You can receive your data in a structured format.
  • Right to Object (Art. 21 GDPR): You can object to the processing of your data.
  • Withdrawal of Consent (Art. 7(3) GDPR): You can withdraw given consents at any time. The lawfulness of processing based on consent before its withdrawal remains unaffected.

To exercise your rights, contact us at: codefluss@gmail.com

7. Data Security

We implement technical and organizational measures to protect your data:

  • Encrypted transmission of all data (TLS/HTTPS)
  • Passwords are stored hashed (not in plain text)
  • Regular security updates and access restrictions

8. Data Retention

Your data is only stored as long as necessary for the respective purpose. After deletion of your account, personal data is anonymized. Due to legal retention requirements (§132 BAO), accounting-relevant data is retained for 7 years.

9. Right to Complain

If you believe that the processing of your data violates the GDPR, you have the right to lodge a complaint with the supervisory authority:

Competent supervisory authority:
Austrian Data Protection Authority
https://www.dsb.gv.at

10. Changes to this Privacy Policy

We reserve the right to adapt this privacy policy as needed to accommodate changes in legal requirements or changes to our services. The current version can always be found on this page.