Privacy Policy

This is a courtesy translation. The legally binding version is the German Datenschutzerklärung.

1. Controller

The controller responsible for data processing on this website is Ria Rosenauer, Viergiebelweg 4, 70192 Stuttgart, Germany, email: hello@qifora.com. Full contact details are in the Imprint.

2. Principle of data minimisation

This website is deliberately designed to be data-minimal. It sets no cookies and builds no advertising user profiles. For operation it only uses a hosting provider, a form service and a cookieless analytics tool (sections 3 to 5). Data processed via the forms is something you actively provide yourself.

3. Forms (beta, newsletter, feature requests)

When you submit one of the forms on this website, we process the details you enter (e.g. email address, operating system, your message) solely for the purpose stated in the form: organising the beta programme, sending product news, or evaluating feature requests. The legal basis is Art. 6 (1) (a) GDPR (consent) or (b) GDPR (pre-contractual measures at your request).

For the newsletter signup we process your email address on the basis of your consent (Art. 6 (1) (a) GDPR) in order to inform you about news regarding Qifora. You can unsubscribe at any time — informally by email to hello@qifora.com — and withdraw your consent with effect for the future.

The forms are technically received and delivered via the service Web3Forms (Softenger, operated in the USA) as a processor (Art. 28 GDPR). Web3Forms forwards the form contents to us by email and does not store them permanently. The EU Commission's standard contractual clauses apply to the transfer to the USA. We do not otherwise pass your details on to third parties and delete them once the purpose no longer applies (e.g. end of the beta programme or unsubscribing from the newsletter) and no statutory retention obligations prevent deletion.

4. Hosting and server log data

This website is hosted with Cloudflare (Cloudflare, Inc., USA) via Cloudflare Pages. When the site is accessed, Cloudflare, as a processor, handles technically necessary access data (e.g. IP address, time of request, file requested, browser type) for delivery and secure operation of the website on the basis of Art. 6 (1) (f) GDPR (legitimate interest in a functional and secure service). The EU Commission's standard contractual clauses apply to the transfer to the USA. The logs are deleted after a short period.

5. Analytics (without cookies)

To improve the service, we measure the use of this website anonymously and without cookies. No personal profiles are created and you are not recognised.

We use Plausible Analytics (Plausible Insights OÜ, Estonia; processing within the EU). Only aggregated information such as pages viewed, approximate time on page, referring website, device type and country is collected. No cookies are set and no data is sold to third parties. If additionally enabled, the likewise cookieless Cloudflare Web Analytics is used. The legal basis is Art. 6 (1) (f) GDPR (legitimate interest in data-minimal analytics). As no cookies are set and no personal data is analysed, no consent is required.

6. Contact by email

If you contact us by email (e.g. to be notified at launch), we process your details solely to handle your enquiry or for the one-off notification, on the basis of Art. 6 (1) (b) or (f) GDPR. We do not pass this data on to third parties and delete it once the purpose no longer applies and no statutory retention obligations prevent deletion.

7. Your rights

Under the GDPR you have the right to access (Art. 15), rectification (Art. 16), erasure (Art. 17), restriction of processing (Art. 18), data portability (Art. 20) and objection (Art. 21). You also have the right to lodge a complaint with a data protection supervisory authority (Art. 77).

8. Changes

We will update this privacy policy whenever the data processing changes (e.g. on introducing a shop, payment provider or newsletter). Last updated: 2026.

← Back to the home page