← seofable.com
Privacy Policy
Controller: Tobias Lochau, Teltower Straße 15, 14109 Berlin, Germany —
[email protected]
1. What we process
- Account data: your email address (magic-link login, no passwords stored).
- Project data: the website URL you connect, the site context our pipeline
extracts from your public pages, keywords and generated articles.
- CMS credentials: if you connect WordPress, we store the URL, username and
application password to publish on your behalf. They are stored server-side, are never
exposed to your browser after saving, and are deleted when you delete the project.
- Payment data: processed by Stripe; we never see your card number.
- Server logs: our hosting provider Cloudflare processes IP addresses for
security and delivery (legitimate interest, Art. 6(1)(f) GDPR).
2. Processors
- Cloudflare, Inc. — hosting/CDN
- Supabase (AWS Frankfurt, Germany) — database and authentication
- Stripe Payments Europe, Ltd. — payments
- Anthropic, PBC — article generation (your site's public content and the
article briefing are processed; no account data is shared)
- DataForSEO — keyword and search-results data (receives keywords, not personal data)
3. Legal basis
Contract performance (Art. 6(1)(b) GDPR) for account, project and payment data;
legitimate interest (Art. 6(1)(f)) for security logs.
4. Retention & your rights
Account data is deleted when you delete your account; invoices are kept as required by
tax law. You have the right to access, rectification, erasure, restriction, portability and
objection, and to lodge a complaint with a supervisory authority. Contact:
[email protected].
5. Cookies
Seofable uses only technically necessary storage (login session). No tracking, no ads,
no third-party analytics — therefore no cookie banner.
6. Fonts
All fonts are self-hosted; no requests are sent to third-party font services.