New moret 2.0 is here Explore features
moret

Privacy Policy

Information about the processing of personal data

Introduction

The protection of your personal data is of particular concern to us. We therefore process your data exclusively on the basis of legal provisions (GDPR, TKG 2003). In this privacy policy, we inform you about the most important aspects of data processing within the scope of our services.

Data Controller

Responsible for data processing on this website is:

[FIRMENNAME] GmbH

[GESCHÄFTSFÜHRER]

[STRASSE HAUSNUMMER]

[PLZ ORT], Germany

Contact for Privacy Inquiries

For questions about data protection, please contact us at:

datenschutz@moret.io

Collection and Processing of Data

Visiting our Website (moret.rocks)

Each time you access our website, the following data is automatically collected:

  • IP address (anonymized)
  • Date and time of access
  • Page accessed/name of retrieved file
  • Amount of data transferred
  • Notification of successful access
  • Browser type and version
  • Operating system
  • Referrer URL (previously visited page)

This data is processed on the basis of Art. 6 para. 1 lit. f GDPR (legitimate interest) to ensure the operation and security of the website.

Using moret.cloud (SaaS Application)

When registering and using our SaaS application, we process:

  • Email address (for account and communication)
  • Name (optional, for personalization)
  • Payment information (processed by our payment provider Lemon Squeezy)
  • Usage data (queries, settings, team affiliation)

Processing is based on Art. 6 para. 1 lit. b GDPR (contract fulfillment).

Cookies and Tracking

We use various types of cookies on our website:

Necessary Cookies

These cookies are required for the operation of the website and cannot be disabled. They do not store personal data.

  • Session cookies
  • Cookie preference cookies
  • Authentication cookies

Analytics Cookies (Google Analytics)

With your explicit consent, we use Google Analytics to understand and improve the use of our website. Data processing is based on Art. 6 para. 1 lit. a GDPR (consent).

  • _ga (Duration: 2 years) - Distinguishing users
  • _gid (Duration: 24 hours) - Distinguishing users
  • _gat (Duration: 1 minute) - Throttling request rate

Google Analytics collects: page views, session duration, device/browser used, approximate location (based on anonymized IP), referrer. We have enabled IP anonymization, so your IP address is truncated within the EU/EEA.

You can change your cookie settings at any time via the cookie banner.

Third Parties and Data Transfer

Some services involve data transfer to the USA. The USA does not have a level of data protection comparable to the EU. There is a risk that US authorities may access your data. Data transfer is based on your consent (Art. 49 para. 1 lit. a GDPR).

Google Analytics

Web analytics to improve our website

Data: Usage data, device/browser information, anonymized IP address, location (approximate)

Location: USA

Privacy Policy →

Lemon Squeezy

Payment processing and subscription management

Data: Email, name, payment data

Privacy Policy →

Vercel

Website hosting

Data: Server logs, IP addresses

Privacy Policy →

Hetzner Cloud

Application hosting (moret.cloud)

Data: Application data

Privacy Policy →

Your Rights

Under the GDPR, you have the following rights regarding your personal data:

Right of Access (Art. 15 GDPR)

You may request information about the data we process at any time.

Right to Rectification (Art. 16 GDPR)

You have the right to have incorrect data corrected.

Right to Erasure (Art. 17 GDPR)

You may request deletion of your data, provided no legal retention obligations exist.

Right to Restriction (Art. 18 GDPR)

You may request restriction of processing of your data.

Right to Data Portability (Art. 20 GDPR)

You have the right to receive your data in a structured, machine-readable format.

Right to Object (Art. 21 GDPR)

You may object to the processing of your data.

Revocation of Consent

If you have given us consent to data processing, you can revoke it at any time. The lawfulness of the processing carried out on the basis of consent until revocation remains unaffected.

Right to Complain

You have the right to lodge a complaint with a data protection supervisory authority. The supervisory authority responsible for us is:

Berlin Commissioner for Data Protection and Freedom of Information

Friedrichstr. 219, 10969 Berlin, Germany

https://www.datenschutz-berlin.de

Retention Period

We only store your personal data for as long as is necessary for the fulfillment of the respective purposes or as required by legal retention periods.

Data Type Duration
Server logs 7 days
Account data Until account deletion + 30 days backup
Billing data 10 years (legal retention requirement)
Email communication 3 years after last contact

Data Security

We employ technical and organizational security measures to protect your data against manipulation, loss, destruction, or unauthorized access:

  • SSL/TLS encryption for all data transfers
  • Encryption of sensitive data at rest
  • Regular security audits
  • Access control and authorization concepts
  • Regular backups

Changes to this Privacy Policy

We reserve the right to adapt this privacy policy to adapt it to changed legal situations or when our services change. The current version can always be found on this page.

Last updated: January 2026