Privacy Policy
Last updated: 15 October 2025
This Privacy Policy explains how Clause24 (“we”, “us”, “our”) processes your personal data when you use our application (the “Service”). It also outlines your rights under the EU/UK GDPR and how to exercise them.
Quick Summary
- We only collect what we need to run the Service and improve it.
- Analytics and ads respect your consent (Google Consent Mode v2).
- You can withdraw consent anytime in the app’s privacy settings or by contacting us.
Who is the Controller?
Clause24 GmbH
Langestrasse 4
Wolfsburg, Germany
Email: privacy@clause24.com
Data Protection Officer: dpo@clause24.com
What Data We Collect
- Account data: name, email, authentication identifiers (when you sign up or sign in).
- Usage data: pages visited, interactions, device/browser info. Collected via analytics only after consent.
- Diagnostic logs: errors, performance metrics (legitimate interests / security).
- Advertising data: limited to what’s permitted by your consent.
Why We Process Your Data (Legal Bases)
- Contract (Art. 6(1)(b) GDPR): to provide and maintain the Service.
- Consent (Art. 6(1)(a)): analytics and advertising cookies/IDs.
- Legitimate interests (Art. 6(1)(f)): security, fraud prevention, debugging.
- Legal obligation (Art. 6(1)(c)): to comply with applicable laws.
Cookies & Consent
We use Google Consent Mode v2 to respect your choices. Before you consent, analytics and ads are limited. You can change your choice anytime (see “Your Choices” below).
| Name | Purpose | Provider | Expires |
|---|---|---|---|
| privacy_consent | Stores your consent choice | This site | 12 months |
| _ga / _ga_<container> | Google Analytics measurement (only if consented) | Up to 24 months | |
| adsbygoogle_* (limited) | Ad delivery (personalized only if consented) | Varies |
Your Choices
- Consent: Use the in-app Privacy dialog to accept/decline or withdraw consent anytime.
- Emails: You can opt out of non-essential emails by using unsubscribe links or contacting us.
Analytics
We use Google Analytics 4 to understand how the Service is used. GA4 does not store IP addresses and respects Consent Mode. Metrics are only collected after consent.
Google Sign-In
If you choose to use the “Sign in with Google” option, we collect certain information from your Google account after you grant permission via Google’s OAuth service. This may include:
- Email address – used to identify your account and communicate with you.
- First and last name – used to personalize your profile within the Service.
We never access your Google password, and authentication is handled directly by Google. Tokens and identifiers received from Google are stored securely and used solely to verify your identity and maintain your session. You may revoke our access at any time from your Google Account settings (https://myaccount.google.com/permissions). Revoking access will remove your ability to sign in with Google until reauthorized.
Your use of Google Sign-In is also governed by Google’s Privacy Policy and Terms of Service. We are not responsible for the availability or performance of Google’s systems.
Advertising
We may use Google AdSense/Ad Manager. In the EEA/UK, personalized ads require consent through a Google-certified CMP. Without consent, only limited/contextual ads (if any) are served.
Data Sharing
We share data with service providers (e.g., hosting, analytics, advertising) bound by contracts and only as necessary. We do not sell your personal data.
International Transfers
When data is transferred outside the EEA/UK, we rely on appropriate safeguards such as Standard Contractual Clauses.
Retention
We keep data only as long as needed for the purposes above, then delete or anonymize it.
Your Rights
- Access, rectification, erasure, and portability
- Restriction or objection to certain processing
- Withdraw consent at any time (does not affect prior lawful processing)
- Lodge a complaint with your local supervisory authority (e.g., Berlin DPA if applicable)
Contact
For privacy requests, email [privacy@yourdomain]. We’ll respond within the timeframes required by law.