Privacy Policy

Last updated: 16 May 2026

1. General Information

The protection of your personal data is very important to us. This website is operated for informational purposes only and does not use advertising networks, tracking technologies, or profiling tools beyond those explicitly described herein. It complies with applicable data protection laws, including the Swiss Federal Act on Data Protection (nFADP/DSG) effective September 1, 2023, and the EU General Data Protection Regulation (GDPR).

Please note that this website is publicly accessible and its pages may be indexed by search engines (such as Google). As a result, publicly available content may appear in search engine results.

2. Data Collection and Usage

This website automatically collects certain technical information, such as your IP address and browser type, solely for security, error detection, and operational logging purposes. This data is not used to profile users or shared with third parties. It is stored securely and retained only as long as necessary to ensure the website's stability and integrity.

Publicly available content on this website may be discoverable via search engines, which may collect and display such content in their search results according to their own privacy policies.

Account Information: If you choose to log in via Google or Microsoft, we collect and store the following information in our secure database:

• Internal user ID - generated from your Google or Microsoft account identifier
• Name, email address, and profile picture URL - as provided by your authentication provider, if available
• Authentication provider - whether you logged in via Google or Microsoft
• Account creation date, last login time, and active status
• User role - for access control (user, moderator, or admin)
• Credit and access information - monthly credit allocation, credits used, credit reset date, account tier, and API/MCP request counters used to enforce daily and per-minute limits
• Optional API key metadata - if an API key is issued for your account, the key and its last update timestamp are stored
• Session token records - hashed session-token identifiers, provider, user ID, creation/update time, expiry time, and automatic time-to-live data

We use this information to:

• Verify your identity and maintain your login session
• Personalize your experience on the website
• Enable features such as saving cases, following customers or partners, alerts, API access, and submitting content
• Operate account limits, credit usage, and admin/moderator permissions
• Communicate with you about your account if necessary

When a new account is created, a limited notification email may be sent to the maintainer for operational awareness. This notification can include your name, email address, authentication provider, internal user ID, and account creation time.

We do not receive your password from Google or Microsoft. OAuth tokens and our own session tokens are used only to authenticate requests and keep you signed in. Your account data is retained until you request deletion, unless a longer retention period is required for security, legal, or abuse-prevention purposes. Third-party providers may process your data in jurisdictions outside Switzerland; we use appropriate safeguards (e.g., Standard Contractual Clauses) to protect your personal information.

3. User-Generated Content

When you use features of our website while logged in, we store:

• Saved cases - use cases you have saved, including the date saved and any alert frequency you choose
• Followed customers and partners - entity names you follow and the date you followed them
• Alert and newsletter preferences - entity alerts, in-app alert state, newsletter filters, frequency, and unsubscribe metadata
• Submitted URLs - any URLs and descriptions you submit for inclusion in our database
• Feedback and ratings - Any feedback or ratings you provide on use cases
• Search activity - for logged-in users, search queries, search type, source, filters, result counts, timestamps, and summary counters such as total searches and last search metadata
• Contact messages - if you use the contact form, your email address, optional name, message, and submission time are sent to the maintainer by email

This information is stored or transmitted to provide a personalized experience, deliver requested alerts or messages, prevent abuse, and improve the service.

4. Cookies and Tracking

This website uses cookies for the following purposes:

• A strictly necessary cookie to store your cookie consent preference.
• Local storage and session storage entries for login state, selected authentication provider, provider profile data, our session token, and token expiry time.
• Microsoft authentication cache data stored in session storage when you sign in with Microsoft.
• Local or session storage entries for user interface preferences, such as theme, navigation visibility, search state, and explorer settings.
• Application Insights telemetry is configured without cookie usage and is limited to sampled page views and critical errors when a production connection string is configured. No cookies are used for advertising or marketing purposes.

Consent and Personal Data Use: We may ask for your consent to use cookies or browser storage for site functionality, preferences, and service development. Your personal data, unique identifiers, or device data may be stored on or accessed from your device where necessary for these purposes.

Vendors and Partners: Information from your device may be processed by third-party service providers described in this policy, including authentication and hosting/telemetry providers. You can object to processing based on legitimate interests by adjusting your settings where available.

Manage or Withdraw Consent: You can manage or withdraw your consent at any time. Click the button below or at the bottom of this page to update your cookie and privacy preferences.

5. Data Storage and Security

Your personal data is stored in secure Microsoft Azure Cosmos DB databases with the following measures:

• Encryption at rest and in transit
• Access controls and authentication requirements
• Regular security updates and patches
• Secure backup and recovery procedures

We retain your account data for as long as your account is active or as needed to provide you services. Session token records are time-limited and expire automatically. Some operational logs, notification emails, contact emails, or abuse-prevention records may be retained for a reasonable period where necessary. You may request deletion of your account and associated data at any time.

6. Your Rights

Under applicable data protection laws, you have the following rights:

• Access - You can request a copy of the personal data we hold about you
• Correction - You can request correction of inaccurate personal data
• Deletion - You can request deletion of your account and associated data
• Portability - You can request your data in a machine-readable format
• Objection - You can object to certain processing of your data

To exercise these rights, please contact us using the details in the Impressum page.

7. Third-Party Services and Authentication

Google Fonts: This website uses Google Fonts to enhance the visual presentation of text. When you visit this website, your browser may download fonts directly from Google servers. This connection may result in Google collecting certain information, including your IP address and browser details.

Google processes this data according to their privacy policy. You can learn more about how Google handles data collected through Google Fonts here and review Google's general privacy policy here.

Login with Google and Microsoft: Our website offers authentication via Google LLC and Microsoft Corporation using OAuth 2.0. When you log in through these providers, we receive limited profile information such as your provider account ID, name, email address, and profile picture URL where available. We use this information to authenticate you, maintain your account, apply access controls, and personalize your browsing experience. We do not receive your password. These providers may process your data in the United States or other jurisdictions; we ensure their processing is covered by appropriate safeguards (e.g., Standard Contractual Clauses) to protect your personal information.

8. Analytics & User Tracking

This website uses Microsoft Azure Application Insights to monitor reliability and critical errors. Telemetry is configured with sampling, cookie usage disabled, automatic AJAX/fetch tracking disabled, and minimized user/device context. Application Insights may receive sampled page views and exception details, but it is not used for advertising or profiling.

Separately, if you are logged in and use search features, we may store search activity linked to your account as described above so we can provide recent searches, usage summaries, and improve the service.

9. External Links

This website may contain links to external websites. We have no influence over the content or privacy practices of these third-party websites and therefore assume no responsibility or liability for them. We recommend reviewing their respective privacy policies.

10. Data Breach Notification

In the event of a data breach that may affect your personal information, we will notify affected users via email within 72 hours of becoming aware of the breach, as required by applicable data protection laws.

11. Changes to This Policy

We may update this privacy policy from time to time to reflect legal or functional changes. The latest version will always be available on this page. Significant changes will be communicated to registered users via email.

12. Contact

If you have questions regarding this privacy policy or wish to exercise your data protection rights, feel free to contact us using the details provided on the Impressum page or through the contact form on the About page. If you use the contact form, your message is delivered by email to the maintainer so it can be answered.

Last updated: 16 May 2026