Privacy Policy

1.1 Information you provide:

• Account information (name, email, business details)
• Payment information (processed by Stripe)
• Business data entered into your Hub
• Communications with our support team

1.2 Automatically collected information:

• Usage data and analytics
• IP address and browser information
• Cookies and similar technologies

We process your personal data for the following purposes:

• Providing and maintaining our services
• Processing payments and managing subscriptions
• Sending service updates and notifications
• Providing customer support
• Improving our services and developing new features
• Ensuring security and preventing fraud

We process your personal data based on:

• Contract: To provide services you've subscribed to
• Legitimate interests: To improve our services and prevent fraud
• Legal obligation: To comply with tax and accounting requirements
• Consent: For marketing communications (you can withdraw anytime)

We implement industry-standard security measures:

• End-to-end encryption for data transmission
• Regular security audits and penetration testing
• Access controls and authentication
• Regular backups stored in secure locations
• Compliance with ISO 27001 standards

We do not sell your personal data. We may share data with:

• Service providers: Stripe (payments), Hetzner (hosting), Cloudflare (CDN)
• Legal requirements: When required by law or to protect our rights

All data is stored within the EU (Germany). Any international transfers comply with GDPR requirements through Standard Contractual Clauses.

Under GDPR, you have the following rights:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate data
• Erasure: Request deletion of your data (right to be forgotten)
• Restriction: Limit how we use your data
• Portability: Receive your data in a machine-readable format
• Object: Object to processing based on legitimate interests
• Withdraw consent: For processing based on consent

To exercise these rights, contact us at support@erplora.com. We will respond within 30 days.

We retain your personal data for as long as your account is active. After account deletion, we retain data for 30 days to allow recovery, then permanently delete it. We may retain certain data longer if required by law (e.g., tax records for 7 years).

We use cookies to improve your experience. You can manage your cookie preferences at any time. Cookie Settings

Our services are not intended for individuals under 18. We do not knowingly collect data from children.

We may update this Privacy Policy. We will notify you of significant changes via email or service notification at least 30 days before they take effect.

For privacy-related questions or to exercise your rights:

• Email: support@erplora.com
• Data Protection Officer: dpo@erplora.com

You have the right to lodge a complaint with your local data protection authority if you believe we have not complied with GDPR.