Privacy Policy

1. Responsible Party

2. Data Protection Officer

A Data Protection Officer is currently not appointed as there is no legal obligation. For data protection inquiries, please contact the address above.

3. General Information

Data protection is of high importance to us. We process personal data exclusively in accordance with GDPR and German data protection law.

This policy covers:

• The website www.saasx.de
• The SaaS platform SaaS Premium
• Communication with interested parties and customers
• Contract execution and billing

4. Categories of Data Subjects

We process personal data from:

• Website visitors
• Interested parties
• Customer contact persons (B2B)
• Platform users
• Business partners and service providers

5. Legal Basis for Processing

Data processing is based on:

• Art. 6 (1) lit. b GDPR - Contracts and pre-contractual measures
• Art. 6 (1) lit. c GDPR - Legal obligations
• Art. 6 (1) lit. f GDPR - Legitimate interests

6. Website Access Data

When accessing our website, the following data is collected automatically:

• IP address
• Browser type and version
• Accessed pages and timestamps
• Referrer URL

7. Web Hosting

Our website is hosted by AWS Europe (Frankfurt). AWS processes personal data on our behalf as a data processor. AWS complies with GDPR requirements.

8. Contact Forms

When you use our contact forms, we collect your name, email, and message content.

This data is used exclusively to respond to your inquiry and is not shared with third parties.

9. Cookies

We use cookies to improve your user experience. You can manage cookie preferences in your browser settings.

Essential cookies are necessary for website functionality and cannot be disabled.

10. Google Analytics

We use Google Analytics to analyze website traffic and user behavior.

Google processes data on our behalf. Data is anonymized and not shared with third parties.

You can opt-out of Google Analytics tracking using the <a href='https://tools.google.com/dlpage/gaoptout' target='_blank'>Google Analytics Opt-Out Browser Add-on</a>.

11. Platform Registration & Account Data

When registering for our platform, we collect:

• Name and company information
• Email address
• Contact details
• Login credentials (hashed)

This data is used for account management, billing, and service delivery.

12. Data Processing Agreement

For customers using our platform as a data controller, we enter into a Data Processing Agreement (DPA) pursuant to Art. 28 GDPR. The DPA covers:

• Processing instructions
• Data security measures
• Sub-processor management
• Data subject rights

13. Payment Processing

Payment information is processed by our payment service providers:

• Stripe (for card payments)
• PayPal (for PayPal transactions)

14. Legal Retention Periods

15. Your Data Subject Rights

You have the following rights under GDPR:

• Right to access your data
• Right to correction of inaccurate data
• Right to erasure ('right to be forgotten')
• Right to restrict processing
• Right to data portability
• Right to object to processing

To exercise these rights, contact us at datenschutz@saasx.de.

16. Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority (data protection authority) in your country.

17. Security Measures

• SSL/TLS encryption for data transmission
• AES-256 encryption for data at rest
• Regular security audits and penetration testing
• Access controls and authentication mechanisms
• Employee data protection training

18. Updates to This Privacy Policy

We may update this privacy policy to reflect changes in our practices or legal requirements.

Changes are effective immediately upon posting. Your continued use of our services constitutes acceptance of the updated policy.