Privacy

Privacy at dbosoft

This policy applies to all dbosoft websites, your account, and any emails we send you.

No Google Analytics

We don't use Google Analytics. Where campaign measurement is used, it requires your explicit consent.

All personal data in the EU

We choose hosting providers and services that keep your data in the European Union.

You choose what we track

Optional tracking only runs after you give explicit consent.

Our own data pipeline

All analytics events route through our own servers first — we control what reaches each service.

What we never do

  • We never build advertising profiles from your behavior.
  • We never share data without consent or legal basis.
  • We never use dark patterns to trick you into giving consent.
  • We never track you across other websites.
  • We never sell your personal data.

Data controller

dbosoft GmbH

Bielefeld, Germany

Email: privacy@dbosoft.eu

What we collect and why

Multiple services work together to run our websites and products. We group them by what they do and whether they need your consent.

Technically necessary services

These services are technically necessary to deliver pages, keep the site fast, and detect problems. They don't track you, don't set cookies for profiling, and require no consent.

VercelCloudflareAzurePostHog CoreRudderStack CDP

Anonymous usage statistics

To understand which pages are visited and how fast they load, we use tools that work without cookies, IP addresses, or personal data. Fathom Analytics counts page views, Vercel Speed Insights measures load times and web vitals — both fully anonymous and GDPR-exempt. No consent needed.

Fathom AnalyticsVercel Speed Insights

Understanding how you use our site

Anonymous page counts show what is popular, but not where visitors get stuck or what we should improve. With your consent, we collect more detailed usage data. This data is processed exclusively on our behalf via our own data plane and is never shared or sold.

PostHog Analyticscustomer.io

Email communications

We use customer.io for email delivery (newsletters, service notifications, transactional messages) and for website analytics (see above). Like most email platforms, it can track whether an email was opened and which links were clicked. Every marketing email includes an unsubscribe link.

customer.io

Campaign measurement

When we run campaigns on LinkedIn or Facebook, we want to know whether they led visitors to our site. With your consent, these services place a small tracking code on our pages to measure that. LinkedIn and Meta are independent data controllers. This means they may also use the collected data for their own purposes. This is why we ask for separate consent.

LinkedIn Insight TagFacebook Pixel

Your account

Some dbosoft services require you to sign in. We store your identity securely so you can access your data across sessions and devices.

Sign-in and identity

Your account is currently managed by Azure Active Directory B2C, a Microsoft identity service running in the EU. B2C handles credential storage — we do not have access to your password, and Microsoft does not use your credentials for any purpose beyond authentication. During 2026, we are migrating to our own identity provider on our infrastructure in the EU. After migration, we will store your credentials directly (securely hashed). In both cases, your identity data is used solely for authentication and stays in the EU.

Azure AD B2C

Search and query processing

Some of our services use Typesense Cloud for search functionality. When you search, your query is processed by Typesense servers in the EU. Depending on the service, search indexes may contain your email address or username to enable features like user lookup or autocomplete.

Typesense Cloud

Backend services

Our backend services run on Microsoft Azure in the EU. Azure provides the infrastructure — servers, databases, caching — that powers our applications.

Microsoft AzureRedisWeb API

Your rights

  • Access — request a copy of your personal data
  • Correction — have inaccurate data corrected
  • Deletion — ask us to erase your personal data
  • Restriction — ask us to limit how we process your data
  • Portability — receive your data in a machine-readable format
  • Objection — object to processing based on legitimate interest
  • Withdraw consent — change your cookie preferences at any time

Creating an account is only required to use services that need authentication. Browsing our websites does not require providing any personal data.

We do not use automated decision-making or profiling that produces legal or similarly significant effects.

Our services are not directed at children. We do not knowingly collect personal data from anyone under 16 years of age.

To exercise any of these rights, email privacy@dbosoft.eu. We respond within 30 days.

International transfers

All personal data is stored in the EU. Edge services (Vercel, Cloudflare) process requests globally but do not store personal data outside the European Union. The RudderStack data plane is self-hosted on Azure in the EU — RudderStack Inc. has no access to user data.

Changes and contact

Last updated: March 2026

If you have questions about this privacy policy, contact us at privacy@dbosoft.eu