struqo
DEEN

Privacy policy

This statement informs you, per Art. 13 GDPR, about the processing of your personal data when using Struqo.

Controller

The controller within the meaning of the GDPR is:

Stephan RiessGeorg-Kerschensteiner-Str. 1281829 MünchenEmail: contact@struqo.app

Scope

This statement applies to the websites at struqo.app, struqo.de and struqo.eu and the related web application ("Editor").

Server logs

When you visit the site, technically required data is collected (IP address, date and time, requested page, browser, operating system). This data is necessary to deliver the site and ensure its security. Legal basis: Art. 6 (1) (f) GDPR (legitimate interest). Retention: at most 14 days.

Account

If you create an account, we process your email address and a password hash for authentication. Legal basis: Art. 6 (1) (b) GDPR (performance of a contract). Data is stored as long as your account exists. You can delete it at any time in settings.

Project data

Plans, components, materials and dimensions you create in the editor are stored under your account. They are accessible only to you (row-level security in the database). Legal basis: Art. 6 (1) (b) GDPR. In guest mode no project data is stored.

Cookies

We use only strictly necessary cookies required for login and session handling (Supabase auth cookies). There is no tracking, advertising, or third-party analytics.

Processors

We use the following service providers, each under a data processing agreement per Art. 28 GDPR:

  • Supabase Inc., hosted in Frankfurt am Main (eu-central-1). Purpose: authentication and database.
  • Vercel Inc., EU edge hosting. Purpose: delivery of the website and the web application.

Retention

Account and project data are retained as long as your account exists. Server logs are deleted after at most 14 days. When the account is deleted, all associated data is removed promptly.

Your rights

Under the GDPR you have the following rights:

  • Right of access to data stored about you (Art. 15 GDPR).
  • Right to rectification of inaccurate data (Art. 16 GDPR).
  • Right to erasure of your data (Art. 17 GDPR).
  • Right to restriction of processing (Art. 18 GDPR).
  • Right to data portability, available in settings under "Export data" (Art. 20 GDPR).
  • Right to object to processing (Art. 21 GDPR).
  • Right to lodge a complaint with a supervisory authority (Art. 77 GDPR). The competent authority is the Bavarian State Office for Data Protection Supervision (BayLDA), based in Ansbach, Germany.

Security

Your data is transmitted encrypted via TLS. In the database, row-level security policies ensure that only you can access your data.

Changes to this statement

We adjust this statement when the processing of your data changes. The current version is always available on this page.

Struqo | Wood Construction Planner