Privacy Policy

1. Introduction

50Data ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our professional EU compliance calendar platform.

We are a data controller under the EU General Data Protection Regulation (GDPR) and process personal data in accordance with applicable data protection laws.

2. Information We Collect

2.1 Personal Information

• Email address (for account creation and communication)
• Company name and role (for professional verification)
• Payment information (processed securely by Paddle)
• Communication preferences

2.2 Usage Information

• Calendar downloads and usage patterns
• Platform interaction data
• Technical information (browser type, IP address, device information)
• Analytics data for service improvement

2.3 Cookies and Tracking

We use essential cookies for platform functionality and analytics cookies to improve our services. See our Cookie Policy for detailed information.

3. How We Use Your Information

• Provide and maintain our compliance calendar services
• Process payments and manage subscriptions
• Send regulatory updates and compliance notifications
• Improve our platform and develop new features
• Comply with legal obligations and regulatory requirements
• Protect against fraud and unauthorized access

4. Legal Basis for Processing

We process your personal data based on:

• Contract performance: To provide our services
• Legitimate interests: For business operations and service improvement
• Legal compliance: To meet regulatory obligations
• Consent: For marketing communications (where required)

5. Data Sharing and Disclosure

We may share your information with:

• Service providers: Paddle (payments), ConvertKit (email), Cloudflare (hosting)
• Legal requirements: When required by law or regulation
• Business transfers: In case of merger or acquisition

We do not sell your personal data to third parties.

6. Data Security

We implement appropriate technical and organizational measures to protect your personal data:

• Encryption in transit and at rest
• Access controls and authentication
• Regular security assessments
• Secure hosting infrastructure (Cloudflare)

7. Data Retention

We retain your personal data for as long as necessary to fulfill the purposes outlined in this policy:

• Account data: Until account deletion or 3 years of inactivity
• Payment records: 7 years for tax and regulatory compliance
• Communication data: 3 years or until withdrawal of consent

8. Your Rights Under GDPR

You have the following rights regarding your personal data:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate or incomplete data
• Erasure: Request deletion of your personal data
• Restriction: Limit processing of your data
• Portability: Receive your data in a structured format
• Objection: Object to processing based on legitimate interests
• Withdraw consent: For processing based on consent

To exercise these rights, contact us at hello@50data.eu

9. International Data Transfers

Your data may be processed outside the EEA by our service providers. We ensure adequate protection through:

• EU-US Data Privacy Framework (for US providers)
• Standard Contractual Clauses
• Adequacy decisions by the European Commission

10. Children's Privacy

Our services are designed for professional use and are not intended for individuals under 16 years of age. We do not knowingly collect personal data from children.

11. Updates to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes via email or prominent notice on our platform.

12. Contact Information

For privacy-related questions or concerns:

• Email: hello@50data.eu
• Data Protection Officer: hello@50data.eu
• Address: Blinktank GmbH, Berlin, Germany

You also have the right to lodge a complaint with a supervisory authority if you believe we have not complied with data protection laws.