Clarify Wiki / Privacy Policy

Important Note

The privacy policy has been created to the best of our knowledge and belief. If there are any uncertainties or questions, please do not hesitate to contact us immediately at hallo@clarify.wiki. We will be available to clarify any issues as quickly as possible.

Other Languages

German English

Data Controller

Mailing Address

Productivity Rocks UG (haftungsbeschränkt)
Charles-de-Coster-Str. 11
52074 Aachen, Germany

Complete provider information can be found in the Legal Notice.

Contact

For complaints, please preferably use the forms on the respective website, or alternatively via the following email:

hallo@clarify.wiki
+49 176 56928667

Data Protection Officer

According to Art. 37 GDPR in conjunction with § 38 BDSG, a Data Protection Officer is currently not required, as the legally mandated number of employees regularly involved in processing personal data is not reached.

Collected User Data

The following section lists the use of data when interacting with our services. This exclusively concerns data that we manage ourselves:

Registration

No user account is required to use basic services (e.g., reading articles). If an account is created to access advanced features, the following information is collected:

  • Username
  • First name
  • Last name
  • Email address
  • Account type (User, Author, ...)

Contact Forms

To optimize services and maintain user satisfaction, our platform includes numerous forms. When using these forms, the following information is collected and stored in the database until processing is complete or retention periods expire:

  • User-provided content
    This varies depending on the form. It may include direct messages in input fields (e.g., contact requests) or user preferences (e.g., marked text passages for improvement or reporting entire content).
  • User's IP address
    Used to identify spam. This is neither used to identify users nor to create user profiles. Forms that do not store IPs include corresponding notices. "Anonymous forms" truncate or mask the last octet of the IP address during storage, making it impossible to trace back to an individual.
    Note that your IP is automatically visible in server requests during any interaction with our content; use VPN providers if you wish to conceal it.
  • User account (if logged in)
    While forms often include an opt-out option to submit without linking to an account, this is not guaranteed. Users wishing to avoid this should log out before submission.
  • User's email (if provided)
  • User's phone number (if provided)

Newsletter

Users can subscribe to the newsletter via forms on our services or, for registered users, through account settings. The following information is stored:

  • Email address
  • Subscription date
  • Consent status for marketing materials
  • Preferences (if provided)
    If selected in the form, content preferences are stored (e.g., topics: Politics, Philosophy; Excluded: History).

Newsletter subscriptions use a double opt-in process. After registration, a confirmation email is sent. Only upon confirmation is the email added to the mailing list. Unconfirmed subscriptions are automatically deleted after 30 days.

Third Parties

To provide relevant functionalities, we rely on experienced third parties handling complex tasks like secure payment processing:

Payment Providers

Stripe

We offer payment processing via Stripe Payments Europe Limited, 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, D02 H210, Ireland (Stripe). This serves our legitimate interest in providing efficient and secure payment methods (Art. 6(1)(f) GDPR). The following data is shared with Stripe as necessary for contract fulfillment (Art. 6(1)(b) GDPR):

  • Cardholder name
  • Email address
  • Customer number
  • Order number
  • Bank details
  • Credit card data
  • Card expiration date
  • CVV code
  • Transaction date/time
  • Transaction amount
  • Provider name
  • Location

This data processing is neither legally nor contractually required. Without providing this data, Stripe payments cannot be processed. Alternative payment methods are available.

Stripe's Responsibilities

Stripe acts as both controller and processor. As a controller, Stripe uses transmitted data to fulfill regulatory obligations (Art. 6(1)(f) GDPR) and contract performance (Art. 6(1)(b) GDPR). We cannot influence this process.

As a processor, Stripe completes transactions within payment networks under our instructions per Art. 28 GDPR.

Data Transfers and Compliance

Stripe implements compliance measures for international data transfers, including EU Standard Contractual Clauses (SCCs).

Objection and Removal Options

For objection rights regarding Stripe, see: https://stripe.com/privacy-center/legal.

Data Retention

We retain payment data until processing is complete, including refunds and fraud prevention. Invoice-related data is kept for 10 years per § 147 AO / § 257 HGB.

Legal Notice

This does not constitute legal advice. Information reflects legal requirements as of April 7, 2025, and may change. Consult legal counsel for detailed advice.

Data Retention Periods

Personal data is stored only as long as necessary for its purpose or as legally required:

  • Account Data: Until deletion + 90 days
    Stored post-deletion to ensure complete removal and handle inquiries. Legal basis: Art. 6(1)(f) GDPR.
  • Content Reports: Until processed
    Retained for processing, quality assurance, or evidence. No fixed period due to variable needs. Legal basis: Art. 6(1)(f) GDPR.
  • Support Requests: Until account deletion + 90 days
    Stored for documentation while the account exists. Removed within 90 days post-deletion. Legal basis: Art. 6(1)(f) GDPR.
  • Error Logs: 30 days
    Kept for troubleshooting. Extended only if needed for further analysis. Legal basis: Art. 6(1)(f) GDPR.
  • Newsletter Data: Until unsubscription + 30 days
    Unconfirmed subscriptions deleted after 30 days (double opt-in). Confirmed subscriptions stored until opt-out. Legal basis: Art. 6(1)(a) GDPR.
  • Invoice Data: 6 years (§ 147 AO) / 10 years for tax-relevant documents.

After expiration or upon request, data is deleted by month-end unless still required for contract fulfillment.

Data Processing

This section explains fundamental data processing concerning technically necessary infrastructure and core functionalities:

Connection Data

When accessing our website, the user's origin (e.g., via referrer URL or IP) is processed to ensure correct redirection. This data is not stored and is used solely for technical delivery. No user profiling occurs.

Hosting Provider

Our website is hosted by netcup GmbH, Daimlerstr. 25, 76185 Karlsruhe, Germany. Netcup provides the technical infrastructure without accessing personal data. An Art. 28 GDPR data processing agreement is in place.

Cookies and Tracking

To improve and finance content, we use cookies to analyze usage and display personalized ads, keeping content largely free. Third-party services like Microsoft Clarity and Google AdSense are used, activated only upon consent via cookie banner.

Essential Cookies

Necessary for website functionality (e.g., dark/light mode preference for logged-out users). No opt-out available; disabling in browser settings may impair functionality.

Essential cookies include:

  • Privacy Preferences
    Stores cookie consent (74 hours if declined; 365 days if accepted).
  • Display Preferences
    Stores design choices (e.g., dark mode) locally without profiling.

Analytics Cookies

Microsoft Clarity provides interaction analytics to optimize content:

Microsoft Clarity

Tracks popular pages, regional sources, and errors. Activated only upon consent. Example: Clarity Demo.

Provider

Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA.

Data Collected
  • Browser/device info
  • Visited links + interactions (clicks, scrolling, text selection)
  • Performance data
  • IP address
  • Session duration

Data is anonymized ("Balanced" mode). Details: Microsoft Clarity Masking.

International Transfers

Data may be processed outside the EU (e.g., USA) under SCCs (Art. 46(2)-(3) GDPR). US authorities may access data under certain laws.

Consent

Processing occurs only per Art. 6(1)(a) GDPR. Withdraw consent anytime (no retroactive deletion).

Marketing Cookies

Google AdSense displays targeted ads to fund free content:

Google AdSense

Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Activated upon consent. Example: AdSense Help.

Data Collected
  • Browser/device info
  • Page interactions
  • IP address
  • Geolocation
International Transfers

Data may be transferred outside the EU under SCCs, with potential US authority access.

Consent

Art. 6(1)(a) GDPR applies. Withdrawal stops future collection (existing data remains).

Preference Settings

Adjust cookie preferences anytime via Privacy Preferences. New tools require renewed consent.

EU/Germany Notices

Legal Bases for Processing

Per Art. 6 GDPR:

  • Art. 6(1)(a): Consent (account creation/push notifications)
  • Art. 6(1)(b): Contract fulfillment (service provision)
  • Art. 6(1)(f): Legitimate interest (improvements/error analysis)

User Rights

Under GDPR:

  • Access (Art. 15)
  • Rectification (Art. 16)
  • Erasure (Art. 17)
  • Restriction (Art. 18)
  • Data portability (Art. 20)
  • Objection (Art. 21)
  • Lodge complaints (Art. 77)

Contact us via email above to exercise rights.

Definitions

Terms align with GDPR:

  • Personal data: Information relating to an identifiable individual
  • Processing: Any operation performed on personal data
  • Data subject: Individual whose data is processed
  • Third party: Entity outside the controller's organization with data access

Supervisory Authority

Note: We encourage prior contact for resolution. For formal complaints:

Landesbeauftragte für Datenschutz und Informationsfreiheit NRW (LDI NRW)
Postfach 20 04 44
40102 Düsseldorf, Germany

Phone: +49 211 38424-0
Email: poststelle@ldi.nrw.de
Website: https://www.ldi.nrw.de

This privacy policy is regularly updated. Last update: April 7, 2025