Logo helllo.me

Introduction

I take your privacy seriously. This Privacy Policy explains how I collect, use, disclose, and safeguard your information when you use my service (helllo.me).

Information I Collect

I collect:

Information you provide directly (email, name, profile details)
Login data when you authenticate with Google
Content you create in your digital business card (UGC)
Automatically collected technical data (IP address, device type, browser version, server logs)
Metadata generated through usage of the service

Legal Bases for Processing (GDPR Art. 6)

I process your data based on the following legal grounds:

Art. 6(1)(b) – Contract performance: Providing your account, handling authentication, storing your business card
Art. 6(1)(f) – Legitimate interest: Ensuring platform security, preventing abuse, maintaining server operations
Art. 6(1)(c) – Legal obligations: Compliance with EU and German regulations
Art. 6(1)(a) – Consent: Only when you explicitly opt in to optional features

How I Use Your Information

Your data is used to:

Provide and operate the helllo.me service
Manage authentication and account access
Store your digital business card and related content
Improve service reliability and security
Communicate with you when necessary (e.g., support)
Meet legal and regulatory obligations

Data Retention

I store personal data only as long as necessary:

Account data: Until you delete your account
UGC (business card): Deleted immediately once your account is deleted
Server logs: Automatically deleted within 30 days
Backup copies: Automatically removed according to Supabase backup cycles

You may request deletion at any time.

Data Security

I use appropriate technical and organizational measures to protect your personal data from unauthorized access, accidental loss, and unlawful processing. This includes encryption, secure hosting infrastructure, access control, and monitoring procedures.

Your Rights

Under GDPR, you have the right to:

Access your personal data
Correct inaccurate data
Delete your data ("right to be forgotten")
Restrict processing
Object to processing based on legitimate interest
Data portability

Contact: helllo.me.app@gmail.com

Hosting

The service is hosted on Vercel using European data centers. Vercel acts as a data processor under a GDPR-compliant Data Processing Agreement.

Backend & Database

The backend, authentication, and database are provided by Supabase, hosted in the EU. Supabase processes data on my behalf under a Data Processing Agreement (DPA).

Google Authentication

If you log in with Google, Google processes your name and email address to authenticate you. I do not receive access to any other Google account data. Google acts as an independent controller for the login process.

User-Generated Content (UGC)

When you create a digital business card, all content is user-generated. You decide what information to publish. You are responsible for the content you upload. I store your UGC until you delete it or your account is removed.

Analytics

I use Vercel Analytics to understand service usage. It does not use cookies and does not track identifiable individuals.

This service does not use cookies. No tracking cookies, no analytics cookies, and no marketing cookies are stored on your device.