Privacy Policy

This Privacy Policy explains how personal data is collected, used, and protected when you use Coderr ("the Platform", "we", "us", "our"). It applies to the website, related pages, and API services used to provide the platform functionality.

We are committed to processing personal data transparently and in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR), where applicable.

1. Controller

The controller responsible for data processing on this website is:

Controller (data protection law):
Sascha Heinze
Eckhoffplatz 34, 22547 Hamburg, Germany
Email: sascha.heinze.dev@gmail.com

2. What data we process

Depending on how you use the platform, we may process the following categories of data:

• Account data (e.g. username, email address, password hash)
• Profile data (e.g. first name, last name, location, phone number, description, working hours, profile image)
• Authentication data (e.g. login requests, session/token-related data)
• Technical data (e.g. IP address, browser type, device information, timestamps, log data)
• Communication data (if you contact us, e.g. by email)
• Usage data (e.g. interactions with platform pages and features)

3. Purposes of processing

We process personal data for the following purposes:

• Providing and operating the platform
• Creating and managing user accounts
• Authenticating users and securing access
• Displaying and updating user profiles
• Ensuring technical stability, security, and abuse prevention
• Responding to inquiries and support requests
• Complying with legal obligations

4. Legal bases (GDPR, where applicable)

Where the GDPR applies, processing is based on one or more of the following legal bases:

• Art. 6(1)(b) GDPR – performance of a contract / pre-contractual steps (e.g. account registration, login, profile management)
• Art. 6(1)(f) GDPR – legitimate interests (e.g. IT security, fraud prevention, server logs, platform operation)
• Art. 6(1)(c) GDPR – compliance with legal obligations (where required)
• Art. 6(1)(a) GDPR – consent (only where consent is requested, e.g. optional services/cookies)

5. Guest login

The platform may provide guest login/demo accounts to allow users to test certain functions. Guest accounts are intended for demonstration purposes only. Please do not enter sensitive personal data when using a guest account, as guest/demo environments may be reset or shared for testing.

6. Recipients of data

Personal data may be processed by service providers who support the operation of the platform (e.g. hosting providers, server infrastructure, technical maintenance), strictly to the extent necessary and under appropriate contractual safeguards where required.

We do not sell personal data.

7. Hosting and server log files

When you access this website, technical information may be automatically processed in server log files (for example: IP address, date/time, requested resource, browser/user agent, referrer, response status). This data is processed to ensure security, stability, and reliable operation of the platform.

8. Cookies and similar technologies

This website may use technically necessary cookies or similar technologies required for core functions such as authentication, security, and session handling.

If optional/non-essential cookies (e.g. analytics or marketing) are used, they should only be activated after obtaining valid user consent, where legally required.

9. Data retention

We store personal data only for as long as necessary for the purposes described in this Privacy Policy, or as long as required by law. Retention periods may vary depending on the type of data and legal or operational requirements.

Demo/guest account data may be changed, reset, or deleted at any time for maintenance or testing purposes.

10. Your rights

Where applicable under data protection law, you may have the following rights:

• Right of access to your personal data
• Right to rectification of inaccurate data
• Right to erasure ("right to be forgotten")
• Right to restriction of processing
• Right to data portability
• Right to object to processing based on legitimate interests
• Right to withdraw consent at any time (where processing is based on consent)
• Right to lodge a complaint with a supervisory authority

To exercise your rights, please contact us using the contact details listed above.

11. Data security

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, loss, misuse, or alteration. However, no system can guarantee absolute security.

12. International data transfers

If personal data is transferred to countries outside the EU/EEA, we will take appropriate safeguards as required by applicable law (for example, adequacy decisions or standard contractual clauses), where applicable.

13. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect legal, technical, or operational changes. The current version published on this page applies.

14. Contact

If you have questions about this Privacy Policy or the processing of your personal data, please contact: [your-email@example.com]

Last updated: 26 February 2026