Privacy Policy

1. Controller of Data Processing

Yanik Kendler
Pfennigmayrstraße 8
4641 Steinhaus
Austria
Email: yanik.kendler@gmail.com

2. Collection and Processing of Personal Data

The following personal data is processed when using Shotly:

• Username
• Email address
• Password (stored in encrypted form)

Authentication and user data management are handled by the service provider Auth0 (Okta Inc.). More information about data processing by Auth0 can be found at: https://auth0.com/privacy

3. Purpose and Legal Basis of Data Processing

Data is processed for the purpose of providing and using the web application and managing user accounts.
Legal basis: Art. 6 (1) lit. b GDPR (performance of a contract) and Art. 6 (1) lit. f GDPR (legitimate interest).

4. Hosting and Data Processing

Shotly is hosted on Google Cloud Run (Google LLC). Data processing may occur in data centers located in the EU or the USA.
A data processing agreement with Google exists pursuant to Art. 28 GDPR and includes standard contractual clauses for securing data transfers to third countries.

5. Cookies & Analytics

Shotly only uses technically necessary cookies to ensure the basic functionality of the web application (e.g., for login and session management). No tracking or marketing cookies are used.

6. Storage Duration

Your data is stored as long as necessary to use the app. When the account is deleted, all personal data will be permanently removed.

7. Rights of Data Subjects

You have the right to access, rectify, delete, restrict processing, and data portability. You may also withdraw consent at any time.

Please direct complaints to the Austrian Data Protection Authority: https://www.dsb.gv.at/

8. Contact for Data Protection Issues

Email: yanik.kendler@gmail.com