Privacy policy.

Klaus-E. Klingner
c/o IP-Management #6585, Ludwig-Erhard-Str. 18, 20459 Hamburg, Germany
Email: klingner@silverday.de

No data protection officer is required based on the scope and nature of processing under Art. 37 GDPR. The competent supervisory authority is the Bayerisches Landesamt für Datenschutzaufsicht (BayLDA), Promenade 18, 91522 Ansbach.

• Account information: name, email address, and encrypted password hash
• Application data: application names, descriptions, and SBOM uploads you create
• Technical data: IP addresses for security, session data for authentication

• Account & authentication — Art. 6(1)(b): contract performance — retained until account deletion or 3 years after last login
• Application data & SBOM uploads — Art. 6(1)(b): contract performance — retained until you delete them
• Session & security logs — Art. 6(1)(f): legitimate interest — session duration; IP logs up to 30 days

You have the right to access, correct, delete, and export the data we hold about you, and to object to or restrict processing. To exercise these rights, contact klingner@silverday.de — we respond within 48 hours.

• Server4You GmbH, Hessen-Homburg-Platz 1, 63452 Hanau — web hosting & server infrastructure — Germany (EU) — DPA in place
• IMPRESSUMPRIVATSCHUTZ GmbH, Ludwig-Erhard-Str. 18, 20459 Hamburg — secure postal address — Germany (EU) — DPA in place

All data processing occurs within the EU. No third-country transfers.

EndoScan uses only essential session cookies required for authentication and functionality. No tracking cookies, no analytics, no advertising. Session cookies are deleted on logout or browser close. We do not use Google Analytics, Facebook pixels, or any third-party tracking service.