This is a courtesy translation of the German Datenschutzerklärung. In case of conflict or interpretation issues, the German version prevails. References to German and EU statutes (GDPR, DSGVO, TTDSG, TMG, BGB) are not translated, as they identify specific provisions of law.
The operators of these pages take the protection of your personal data seriously. We treat your personal data confidentially and in accordance with statutory data-protection regulations as well as this Privacy Policy. Use of our website is generally possible without providing personal data. Where personal data (for example name, address or e-mail addresses) is collected on our pages, this is, as far as possible, always done on a voluntary basis. This data will not be passed on to third parties without your express consent. We point out that data transmission over the internet (e.g. communication by e-mail) may have security gaps. Complete protection of data against access by third parties is not possible.
Responsible for the data processing on this website (artilier.dev) within the meaning of the General Data Protection Regulation (GDPR):
Comitatus Software AG
Vorstand Stefan Craatz
Albert-Einstein-Straße 14, 12489 Berlin, Germany
Phone: +49 (0)30 210 90 850
E-mail: [email protected]
The website may use so-called cookies in some places. Cookies do not damage your computer and do not contain viruses. Cookies serve to make our offering more user-friendly, more effective and more secure. Cookies are small text files that are stored on your computer by your browser. Most of the cookies we use are so-called "session cookies". They are automatically deleted at the end of your visit. Other cookies remain stored on your device until you delete them. These cookies enable us to recognize your browser on your next visit. You can configure your browser to inform you about the setting of cookies and allow cookies only in individual cases, exclude the acceptance of cookies for certain cases or in general, and enable the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be limited.
This website itself only stores the following two settings in your browser's local storage — neither leaves your device:
artilier-theme — your chosen appearance (light/dark).artilier-consent-v2 — your consent decisions from the
banner (two independent toggles: Live pricing / Paddle and
Ad-measurement / Reddit). This value ensures the banner does
not reappear while it remains valid.artilier-rdt-cid, artilier-utm,
artilier-external-id — only
when you have explicitly consented to ad-measurement: the Reddit click
identifier and any UTM parameters from the URL that brought you here,
plus a random, anonymous device ID (artilier-external-id)
we generate ourselves as an attribution key. Used solely to attribute
later conversions to a specific ad (see the "Reddit" section below).
Without consent these values are not persisted.Clerk, Paddle and Reddit are not loaded or contacted automatically on first visit. Clerk only loads when you click "Log in" or "Buy subscription" — or when we locally detect existing session cookies indicating you signed in previously. Paddle only loads after consent via the banner or when you click "Buy subscription". Reddit conversion events are sent only if you have ticked the ad-measurement consent — and even then only from our server (see "Reddit" below); no Reddit script is ever loaded in your browser. See "Processors" for details.
The provider of the pages (Cloudflare, see below) automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are: browser type and browser version, operating system used, referrer URL, hostname of the accessing computer, time of the server request. This data cannot be assigned to specific persons. This data is not merged with other data sources. We reserve the right to subsequently review this data if we become aware of specific indications of unlawful use.
We use the following service providers to operate this website:
Some of the providers listed below are based, or run their server infrastructure, in the United States. The USA is a "third country" within the meaning of the GDPR in which, according to the CJEU ruling in Schrems II, no legal level of data protection equivalent to European law is guaranteed. For transfers to the USA we primarily rely on the European Commission's adequacy decision of 10 July 2023 regarding the EU-U.S. Data Privacy Framework and, where possible, use only providers certified under the DPF. As an additional safeguard, the EU Standard Contractual Clauses (Implementing Decision (EU) 2021/914) apply pursuant to Art. 46(2)(c) GDPR. For transfers to the United Kingdom, a European Commission adequacy decision applies (Implementing Decision (EU) 2021/1772). You may request a copy of the relevant safeguards at any time by contacting [email protected].
Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA. Cloudflare processes access data for the delivery of the website (server log files, see above). A data-processing agreement is in place.
Third-country transfer: Cloudflare is a US company; processing may take place in the United States — a third country within the meaning of the GDPR. Cloudflare is certified under the EU-U.S. Data Privacy Framework (European Commission adequacy decision of 10 July 2023). As an additional safeguard, the EU Standard Contractual Clauses under Art. 46(2)(c) GDPR (Implementing Decision (EU) 2021/914) apply. You can request a copy of the safeguards at [email protected].
Clerk Inc., 660 King Street, San Francisco, CA 94107, USA. Clerk powers our sign-in and account management. The Clerk SDK is not loaded automatically on the website. Data is transmitted to Clerk (in particular your IP address) only when:
Once you sign in, Clerk processes your e-mail address and profile data on our behalf and sets cookies on a Clerk subdomain for session management.
Third-country transfer: Clerk is a US company; processing takes place in the United States — a third country within the meaning of the GDPR. Clerk is certified under the EU-U.S. Data Privacy Framework (European Commission adequacy decision of 10 July 2023). As an additional safeguard, the EU Standard Contractual Clauses under Art. 46(2)(c) GDPR (Implementing Decision (EU) 2021/914) apply. You can request a copy of the safeguards at [email protected].
Paddle.com Market Ltd., Judd House, 18-29 Mora Street, London EC1V 8BT, UK. Paddle is the "Merchant of Record" and therefore the contractual counterparty for payment — not Comitatus Software AG.
Third-country transfer: Paddle is based in the United Kingdom. For transfers from the EEA to the UK, a European Commission adequacy decision applies (Implementing Decision (EU) 2021/1772, extended 2024), so no additional safeguards are required. Paddle operates group entities and sub-processors in, among other countries, the United States, Ireland and Canada. For transfers from the EEA or the UK to countries without an adequacy decision, Paddle relies on the EU Standard Contractual Clauses (Implementing Decision (EU) 2021/914) and the UK Information Commissioner's Office Addendum. You can request a copy of the safeguards from Paddle at [email protected] or from us at [email protected].
When Paddle receives data: The Paddle JavaScript
(cdn.paddle.com/paddle/v2/paddle.js) is not automatically loaded
when the website is accessed. Data is transmitted to Paddle (in particular your IP
address) only in the following cases:
artilier-consent-v2 in your browser.If you reject the banner and do not click "Subscribe", no data is transmitted to Paddle. In that case static default prices (incl. 19% VAT) from our source code are displayed.
When you purchase a subscription, your payment and billing data are collected and processed directly by Paddle. Paddle may set its own cookies during the checkout process.
When you use the online cancellation form at artilier.dev/kuendigen or artilier.dev/en/cancel, we process the data you enter into the form: your e-mail address (mandatory) and, optionally, your name, order or subscription ID, the desired effective date, and an optional reason. The sole purpose is to process your cancellation. Legal basis: Art. 6(1)(b) GDPR (performance of a contract) in conjunction with § 312k BGB.
Technical processing takes place in a Cloudflare Pages Function located in the EU. To identify and cancel your subscription, we transmit your e-mail address to Paddle (see above); Paddle performs the actual cancellation and sends the statutory confirmation e-mail including the effective date. The entries from your form (e-mail, effective date, name and order ID if provided, length of the optional reason text) are additionally stored for a maximum of 7 days in Cloudflare's function logs and are then deleted automatically. We do not store the content of any reason text. Long-term storage of your cancellation declaration is held by Paddle as Merchant of Record.
Reddit Inc., 1455 Market Street, Suite 1600, San Francisco, CA 94103, USA.
When we run advertising campaigns on reddit.com and you reach our
website via such an ad, Reddit appends a click identifier
(rdt_cid) to the destination URL. If you then click
"Download", "Sign up" or complete a subscription, we transmit a conversion
event server-side (event type, the click identifier, an anonymous
device ID (external_id), the URL of the page visited (referrer),
your e-mail address hashed via SHA-256 where available, your IP
address, user-agent) via the Reddit Conversions API to Reddit. Reddit uses
this data to measure the effectiveness of our advertising. No Reddit
script is loaded in your browser; no Reddit cookies are set on your device.
This transmission is optional and happens only if you have enabled ad-measurement in the cookie window. If the toggle is off (or you reject the banner), no data whatsoever is sent to Reddit and none of the values above are stored.
Legal basis: Art. 6(1)(a) GDPR (consent) and § 25(1) TTDSG
for the local-storage retention of the click identifier. Without your
consent (banner toggle "Ad-measurement") neither retention nor transmission
to Reddit takes place. You can withdraw your consent at any time — delete
the local-storage keys artilier-consent-v2,
artilier-rdt-cid, artilier-utm and
artilier-external-id in your
browser, or contact us at
[email protected].
Third-country transfer: Reddit is a US entity; processing takes place in the United States — a third country under GDPR. Reddit is certified under the EU-U.S. Data Privacy Framework (adequacy decision of 10 July 2023). In addition we have concluded the EU Standard Contractual Clauses pursuant to Art. 46(2)(c) GDPR. A copy of the safeguards is available on request at [email protected].
Retention: The click identifier and UTM parameters remain in your browser's local storage until you withdraw consent or clear local storage. Reddit's retention of the transmitted conversion events follows Reddit's own policies — see reddit.com/policies/privacy-policy.
You have the right to receive, free of charge at any time, information from us as well as confirmation regarding the personal data stored about you, and a copy of that information.
You have the right to have the personal data concerning you erased without undue delay, provided that one of the following grounds applies and to the extent that the processing is not necessary: the personal data is no longer necessary for the purposes for which it was collected or otherwise processed; you withdraw your consent on which the processing was based and there is no other legal ground for the processing; you object to the processing pursuant to Art. 21(1) GDPR and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Art. 21(2) GDPR; the personal data has been unlawfully processed; the erasure of the personal data is required to comply with a legal obligation under Union or Member State law to which we are subject; the personal data was collected in relation to information-society services offered pursuant to Art. 8(1) GDPR.
You have the right, on grounds relating to your particular situation, to object at any time to the processing of personal data concerning you which is based on Art. 6(1)(e) or (f) GDPR. In the event of an objection we will no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or for the establishment, exercise or defence of legal claims. You have the right to object at any time to the processing of personal data concerning you for direct-marketing purposes.
You have the right to lodge a complaint with a data-protection supervisory authority. The competent authority for Berlin is:
Berliner Beauftragte für Datenschutz und Informationsfreiheit
Friedrichstr. 219, 10969 Berlin, Germany
For security reasons and to protect the transmission of confidential content, such as inquiries that you send to us as the site operator, this site uses SSL encryption. You can recognize an encrypted connection by the fact that the browser address bar changes from "http://" to "https://" and by the lock symbol in your browser bar. If SSL encryption is activated, the data you transmit to us cannot be read by third parties.