Privacy Policy

    Last Updated: March 2026

    The protection of your personal data is a top priority for us. This Privacy Policy explains how ShieldIT UG (haftungsbeschränkt) ("we", "us", "our") collects, processes, and protects your information when you use our web application relayve.xyz.

    1. Controller (Responsible Party)

    The party responsible for data processing on this website under the General Data Protection Regulation (GDPR) is:

    ShieldIT UG (haftungsbeschränkt)

    Kastanienstraße 33

    15366 Neuenhagen bei Berlin

    Germany

    Email: contact@relayve.xyz

    Represented by: Simon Eichenauer (Managing Director)

    2. Hosting and Infrastructure

    A. Web Hosting (netcup)

    Our web application and its databases are hosted by netcup GmbH (Daimlerstraße 25, 76185 Karlsruhe, Germany). We use their infrastructure located in the United States.

    • Data processed: IP addresses, browser information, log files, and all data entered by users.
    • Legal Basis: Art. 6 (1) (f) GDPR (Legitimate interest in a secure and performant operation of our service).
    • Data Transfer: We have concluded a Data Processing Agreement (DPA) including Standard Contractual Clauses (SCCs) with netcup to ensure a level of data protection equivalent to EU standards.

    B. Infrastructure (DigitalOcean)

    For specific technical processing (Inference), we use infrastructure provided by DigitalOcean, LLC (101 Avenue of the Americas, New York, NY 10013, USA).

    Note: We have configured our integration to ensure that no personally identifiable information (PII) is transmitted to DigitalOcean during these processes.

    3. Data Collection and Purposes

    A. Registration and User Accounts

    You can create an account using your email address or via third-party providers.

    • Direct Registration: We collect your email address and a password.
    • Social Login: If you register via Google, Apple, Microsoft, GitHub, LinkedIn, or X, we receive a unique identifier and your email address from the respective provider to identify you.

    Purpose: To manage your user account and provide the features of our application.

    Legal Basis: Art. 6 (1) (b) GDPR (Performance of a contract).

    B. Payment Processing (Stripe)

    We use Stripe (Stripe Payments Europe, Ltd.) for payment processing.

    • Data processed: Name, email, transaction data, and payment method details. Stripe processes this data independently as a controller. We do not store your full credit card information.

    Legal Basis: Art. 6 (1) (b) GDPR.

    C. Error Tracking (Sentry)

    We use Sentry (Functional Software, Inc.) to monitor system stability and detect code errors.

    • Data processed: Masked IP addresses and technical metadata at the time of an error.

    Legal Basis: Art. 6 (1) (f) GDPR (Legitimate interest in a bug-free application).

    D. Analysis and Statistics (Google Analytics)

    Subject to your consent, we use Google Analytics (Google Ireland Limited) to analyze website usage.

    • Data processed: IP address (anonymized), device info, and user interactions.

    Legal Basis: Art. 6 (1) (a) GDPR (Consent).

    Revocation: You can withdraw your consent at any time via the "Cookie Settings" link in our footer.

    4. International Data Transfers (USA)

    As our servers and several service providers are based in the United States, your data is processed outside the EEA.

    • For providers certified under the EU-U.S. Data Privacy Framework (e.g., Google, Microsoft, Stripe, Sentry), the transfer is based on an adequacy decision.
    • For others, we rely on Standard Contractual Clauses (SCCs) to ensure data safety.

    5. Storage Duration

    We store your personal data only as long as necessary for the purposes for which it was collected or to comply with legal retention periods (e.g., 6–10 years for commercial/tax records).

    6. Your Rights

    Under the GDPR, you have the following rights:

    • Right of Access (Art. 15): Request information about your stored data.
    • Right to Rectification (Art. 16): Correct inaccurate data.
    • Right to Erasure (Art. 17): Request deletion of your data.
    • Right to Restriction (Art. 18): Limit how we process your data.
    • Right to Data Portability (Art. 20): Receive your data in a machine-readable format.
    • Right to Object (Art. 21): Object to processing based on legitimate interests.
    • Right to Lodge a Complaint: You have the right to complain to a data protection authority (e.g., Landesbeauftragter für den Datenschutz Brandenburg).

    To exercise these rights, please contact us at contact@relayve.xyz.

    7. Consent Management

    You can change your privacy preferences or withdraw your consent for non-essential cookies at any time by clicking the "Cookie Settings" link in the footer of our website.