Privacy Policy

This website and the product "Sentinel" are currently in a private, non-commercial testing phase. No paid services are offered at this time.

No business is legally registered yet. Before the public release (Version 1.0.0), a business will be formally registered and this Privacy Policy will be updated.

When accessing this website, the following technically necessary data may be processed:

• IP address (shortened or anonymized where possible)
• Date and time of access
• Browser type and version
• Operating system
• Referrer URL
• Requested pages and server status codes

Legal basis (GDPR): Art. 6(1)(f) — legitimate interest in operating and securing the service.

We use Hetzner Online GmbH (Germany) for server hosting and infrastructure services.

Hetzner provides the physical and virtual infrastructure on which this website and service operate. As part of this hosting service, Hetzner may process technical data such as:

• IP addresses
• Server logs and access data
• Technical metadata required for server operation

Data location: All servers are located in Germany (EU).
Recipient: Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, Germany.

Legal basis: Art. 6(1)(f) GDPR — necessary for providing and securing the service.
More information: Hetzner Privacy Policy

We use Cloudflare services (Cloudflare, Inc., USA / Cloudflare Ltd, EU) for:

• Content Delivery Network (CDN)
• DNS and performance optimization
• DDoS protection and security (WAF)

Cloudflare may collect connection-related data such as IP addresses and browser information. Cloudflare participates in the EU–US Data Privacy Framework (adequate data protection).

Legal basis: Art. 6(1)(f) GDPR — necessary for security and performance.
More information: Cloudflare Privacy Policy

Stripe is currently integrated in sandbox/test mode only for development and testing purposes. No real payments are processed, and no actual money is collected or earned.

Because registration is disabled, no payment transactions—even test transactions—are possible at this time.

Once the service goes live and Stripe is activated in production mode, Stripe will process:

• Payment details
• Billing information
• Potentially identifiers for fraud prevention

Recipient: Stripe Technology Europe Limited (Dublin, Ireland) and Stripe, Inc. (USA) where applicable.

Legal basis when active: Art. 6(1)(b) GDPR (performance of a contract).

A Data Processing Agreement (DPA) will be signed before production activation.

Under GDPR, you have the right to:

• Access your data (Art. 15)
• Rectification (Art. 16)
• Erasure (Art. 17)
• Restriction of processing (Art. 18)
• Data portability (Art. 20)
• Object to processing (Art. 21)

You may file a complaint with your local data protection authority.

This Privacy Policy will be updated before the public release (v1.0.0), especially when:

• Registration / login becomes available
• Stripe payments are activated
• Analytics or monitoring tools are added
• The business registration is completed