Legal

Privacy Policy

August 16, 2022
Atualizado a June 11, 2026
20 min de leitura

1. Introduction and Scope

Welcome to Browser.lol (the "Service"), operated by Zesiger.net ("we," "us," or "our"). We are committed to protecting your personal data and respecting your privacy. This Privacy Policy ("Policy") explains how we collect, use, disclose, and safeguard your information when you visit our website https://browser.lol, use our services, or interact with us in any other way. It also describes your data protection rights and how you can exercise them.

We process personal data in accordance with the Swiss Federal Act on Data Protection (FADP, revised version in force since 1 September 2023), the EU General Data Protection Regulation (GDPR) where it applies to us, the UK GDPR, and other applicable data protection laws. We apply Privacy by Design and Privacy by Default principles: the Service is built so that the content of your browser sessions is not monitored or stored by us, and the data we do keep is limited to what is needed to run the Service.

One account, two services

Browser.lol and Guard.ch are operated by the same entity and share one account system, one API, and one database. A single account serves both services: the account, authentication, session-token, and billing records described in this Policy are stored once and are used for whichever of the two services you use. This Policy describes processing in connection with Browser.lol; processing specific to Guard.ch features is described in the privacy policy published on guard.ch.

This Policy is a factual description of what we do today. Where we state targets or aims, they are targets and not guarantees unless a binding document says otherwise.

2. Responsible Entity and Contact Information

The entity responsible for the processing of your personal data (the "Controller") is:

Operator (registered name): Zesiger.net, trading as Browser.lol

Legal Representative: Janis Zesiger

Address: Mügeri 340, 5046 Schmiedrued, Switzerland

Legal Form: Einzelunternehmen (Sole Proprietorship)

Registered Office: Schmiedrued, Switzerland

UID (Enterprise Identification Number): CHE-488.503.816

CH-ID: CH-400-1610391-2

EHRA-ID: 1618337

For any questions, concerns, or requests regarding this Privacy Policy or our data processing practices, please contact us:

Email: legal@browser.lol

Postal Mail: Janis Zesiger, Mügeri 340, 5046 Schmiedrued, Switzerland

Website: https://browser.lol

We have not appointed a data protection officer because none of the thresholds that would require one applies to our processing. We have also not currently appointed an Article 27 GDPR representative in the EU or in the UK; if we appoint one, we will publish the representative's name, address, and contact details in this Section without delay.

Data Storage Location

Primary Data Storage: All durable user data — account information, billing records, the integrated mail service, workspace metadata, and our databases and encrypted backups — is stored in a single primary region: Hetzner's datacenter in Helsinki, Finland (EEA). There is no multi-region replication of this data.

Browser Workspace Compute: For latency reasons, the ephemeral compute capacity that runs browser workspaces is operated in several regions (currently Helsinki and the edge regions operated by the hosting partners listed in our Subprocessors List). Workspaces are destroyed at the end of a session; persistent data remains in Helsinki.

3. Data We Collect and How We Use It

We collect and process your personal data only for specified, explicit, and legitimate purposes, and always on a valid legal ground (see Section 4). We practice data minimization: we only collect personal data that is adequate, relevant, and limited to what is necessary for the purposes for which it is processed.

3.1. Personal Data You Provide to Us

  • Account Registration:
    • Data: Email address, password (stored hashed using bcrypt), and optionally a display name, company name, country, default language for browser workspaces, default keyboard layout, and a mail alias for our integrated mail service. If you sign in with Google or Microsoft, we receive your verified email address and basic profile information (such as your name) from the identity provider instead of a password.
    • Purpose: To create and manage your user account, provide access to our services, identify you as a user, and for security purposes.
    • Legal Basis: Performance of a contract (Art. 6(1)(b) GDPR).
  • Contact and Communication:
    • Data: Email address and the content of your communications with us (e.g., support requests, feedback, reports).
    • Purpose: To respond to your inquiries, provide customer support, send service-related communications (e.g., updates, security alerts, administrative messages), and gather feedback.
    • Legal Basis: Performance of a contract (Art. 6(1)(b) GDPR); legitimate interests (Art. 6(1)(f) GDPR) in effective support and communication.
  • Financial and Transactional Data:
    • Data: Billing details and transaction history. Card payments are processed by Stripe and cryptocurrency payments by NOWPayments; we do not receive or store full card numbers. We store records of your purchases and entitlements.
    • Purpose: To process payments, manage entitlements, prevent fraudulent transactions, and comply with financial and accounting obligations.
    • Legal Basis: Performance of a contract (Art. 6(1)(b) GDPR); legal obligation (Art. 6(1)(c) GDPR), in particular Swiss bookkeeping law (Art. 957 et seq. of the Swiss Code of Obligations).

You are not obliged to provide personal data, but failure to provide data that is required for a feature may prevent us from providing it.

3.2. Data We Collect Automatically

  • Technical and Device Data:
    • Data: IP address, device type, operating system, browser type and version (User-Agent), browser language, screen resolution, session ID. Our server logs may also include a server ID and workspace ID if applicable to the logged event.
    • Purpose: To ensure the functionality, security, and stability of our website and services; for troubleshooting and abuse detection; and for security purposes such as fraud prevention and identifying malicious activity.
    • Legal Basis: Legitimate interests (Art. 6(1)(f) GDPR) in operating and securing our services; performance of a contract (Art. 6(1)(b) GDPR) for essential functionality.
  • Usage Data:
    • Data: Pages visited on our website, features used, session timestamps (creation, update, expiration, last activity), and aggregated usage statistics.
    • Purpose: To understand how users interact with our services, improve service design and functionality, and identify areas for improvement.
    • Legal Basis: Legitimate interests (Art. 6(1)(f) GDPR) in service improvement.

We do not collect biometric data and we do not process special categories of personal data (Art. 9 GDPR) as part of operating the Service. Bot detection on our forms is performed by Cloudflare Turnstile (see Section 3.5); we do not build behavioral biometric profiles of our users.

3.3. Browser Workspace Data

When you use our browser workspace services, we collect data related to the workspace instance:

  • Data: Associated user ID (if logged in), session ID, browser image used, the server on which the workspace runs, workspace status (e.g., running, deleted), creation, last update and last activity (lastseen) timestamps, browser language, and keyboard layout settings.
  • Purpose: To provide and manage your browser workspace sessions, monitor resource usage, ensure service stability, and for billing purposes.
  • Legal Basis: Performance of a contract (Art. 6(1)(b) GDPR).
  • Retention: Workspace records are deleted no later than 1 month after the workspace was last updated.

We do not monitor, record, or log your activities within the browser workspace itself. The content of your workspace sessions — websites visited, data entered, files downloaded inside the workspace — remains private and is not persistently stored by us. Workspaces are isolated, ephemeral containers that are destroyed when the session ends. To protect the platform and prevent abuse, automated systems may analyze workspace resource and traffic patterns (not page content), and in specific cases of suspected abuse a manual review of metadata may be conducted; such analysis data is not persistently stored beyond our normal log retention.

3.4. Integrated Mail Service Data

  • Data: Sender and receiver email addresses, subject, message content (plain text and HTML), attachments, and your user ID. Inbound messages to your mail alias are received through Cloudflare Email Routing and attachments are stored in our object storage in Helsinki, Finland.
  • AI Features: We may generate an AI-powered summary of a message and detect calls to action. For this, message content is processed through OpenRouter, which routes the request to the configured model provider (currently Google Gemini). This is the only channel through which mail content reaches an AI provider, and the content is not used by us to train models.
  • Purpose: To receive, store, and display your emails as part of the mail service; to provide AI-powered features for email management.
  • Legal Basis: Performance of a contract (Art. 6(1)(b) GDPR).
  • Retention: Email messages are automatically deleted 30 days after receipt. Each user can store a maximum of 50 messages; if this limit is exceeded, the oldest messages are deleted first.

3.5. Security and Fraud Prevention Data

To protect our platform and users from fraud, abuse, and security threats, we process certain data through security measures:

  • IP Address Analysis: IP addresses are checked against locally hosted databases for geolocation, VPN/proxy detection and risk assessment, particularly for anonymous users. These lookups are performed on our own infrastructure.
  • Email Verification: During registration, email addresses are checked against a local database and, where needed, against the external Reoon Email Verifier API to detect invalid or disposable email addresses.
  • Bot Detection: Cloudflare Turnstile analyzes browser signals to distinguish between human users and automated bots on registration, sign-in and similar forms.
  • Hostname Reputation: Hostnames may be checked against Google Web Risk to detect known malware and phishing infrastructure. No account data is sent with these lookups.
  • Legal Basis: Legitimate interests (Art. 6(1)(f) GDPR) in protecting our platform and users from fraud and abuse.

4. Legal Basis for Processing Personal Data

Under the Swiss FADP, processing of personal data by private parties does not require a specific legal basis for every operation; it must comply with the processing principles of Articles 6 and 8 FADP, and any overriding of a data subject's interests must be justified (Art. 31 FADP). Where the GDPR or UK GDPR applies, we rely on the following legal grounds under Article 6(1):

  • Performance of a Contract (Art. 6(1)(b) GDPR): Creating and operating your account, providing browser workspaces and the integrated mail service, processing payments, and providing support.
  • Legal Obligation (Art. 6(1)(c) GDPR): Bookkeeping and tax record-keeping (Art. 957 et seq. of the Swiss Code of Obligations) and responding to lawful requests from authorities.
  • Legitimate Interests (Art. 6(1)(f) GDPR): Securing the platform, preventing fraud and abuse, enforcing our terms, defending legal claims, measuring and improving the Service, and funding the free tier through advertising on our website. When relying on legitimate interests, we balance them against your interests and fundamental rights.
  • Consent (Art. 6(1)(a) GDPR): Only where we ask for it for a specific purpose. We do not rely on consent for any processing that is necessary to run the Service.

We do not process special categories of personal data (Art. 9 GDPR) as part of operating the Service.

5. Data Processing Activities Overview

5.1. Automated Abuse Detection and Decision-Making

We use automated systems to detect abuse of the platform, such as rate-limit enforcement, IP reputation checks, and automated analysis of resource and traffic patterns. An automated system may temporarily block access (for example, refuse a registration or a workspace start) if highly suspicious activity is detected. Where such a decision significantly affects you, you have the right to obtain human intervention, to express your point of view, and to contest the decision (Art. 22 GDPR; Art. 21 FADP): contact legal@browser.lol and we will review the decision manually. We do not perform automated decision-making that produces legal effects beyond these security measures, and we do not use profiling for advertising decisions about you.

5.2. Data Retention and Deletion

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including satisfying legal, accounting, or reporting requirements, or as long as necessary for the establishment, exercise, or defense of legal claims.

Data Type / Purpose Retention Period Justification
Account data Lifetime of the account; deleted within 30 days after account deletion Service provision
Unverified accounts Deleted 7 days after registration if the email address is never verified Data minimization
Browser workspace records (metadata only) Deleted no later than 1 month after last update Service provision, billing
Integrated mail service messages 30 days from receipt; at most 50 messages per user (oldest deleted first) Service provision
Application and access logs 30 to 90 days, depending on log class; longer only if required for a specific security incident investigation Security, troubleshooting
Billing and transactional records (invoices, accounting evidence) 10 years from the end of the fiscal year Swiss bookkeeping law (Art. 958f Swiss Code of Obligations)
Support correspondence 3 years from the last message Service quality, dispute resolution
Backups Rotated within 35 days; a restore from backup is re-deleted on the next purge run Business continuity

Where no specific period is listed, we delete personal data when it is no longer necessary and no legal hold applies. Upon expiry of the applicable retention period, personal data is deleted or anonymized.

5.3. Data Security

We have implemented technical and organizational security measures (TOMs) appropriate to the risk to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. These include:

  • Encryption in transit: TLS (minimum version 1.2, TLS 1.3 preferred) for connections to our website and API; WebRTC media streams are additionally protected with DTLS-SRTP.
  • Encryption at rest: Block-level encryption on our primary storage in Helsinki; passwords are stored hashed with bcrypt.
  • Isolation: Each browser workspace runs in an isolated, ephemeral container with its own filesystem and network namespaces, destroyed at the end of the session.
  • Access control: Role-based access on the principle of least privilege; administrative access is restricted and logged.
  • Operations: Logging and monitoring of relevant system events, regularly exercised backup and recovery procedures, and a documented incident response process.

We are transparent about our certification posture: we are not ISO/IEC 27001 certified, we do not hold a SOC 2 report, and we do not claim any certification or external audit that does not exist. No method of transmission or storage is 100% secure, and we cannot guarantee absolute security. In the event of a data breach we follow the process described in Section 10.

5.4. Privacy by Design

  • Data Minimization: We collect and process only the personal data necessary for each specific purpose; the content of your browsing sessions is deliberately not stored.
  • Purpose Limitation: Personal data is processed only for the specific, explicit, and legitimate purposes for which it was collected.
  • Storage Limitation: Data is retained only as long as listed in Section 5.2.
  • No data mining: We do not mine, profile, monetise, or use the content of your workspace sessions or mail for advertising or to train models.

6. Third-Party Services and Data Sharing

We share personal data with third-party service providers (processors) only where this is needed to deliver the Service. These providers are contractually bound to protect your data and may only use it for the purposes for which we disclose it to them. We do not sell your personal data. The complete, current register of our vendors — including their roles, locations, and transfer safeguards — is published in our Subprocessors List; the most important ones are:

  • Hetzner Online GmbH — primary hosting of all durable data in Helsinki, Finland (EEA), including databases, object storage and encrypted backups.
  • OVHcloud and FiberState, LLC — ephemeral edge compute capacity for browser workspaces outside Europe (no durable storage of your data).
  • Cloudflare, Inc. — DNS, delivery of the web frontend, bot protection (Turnstile), and inbound email routing for the integrated mail service.
  • Stripe (Stripe Payments Europe, Ltd. and Stripe, Inc.) — card payment processing, receipts and invoices.
  • NOWPayments — cryptocurrency payment processing for one-time purchases.
  • Google — "Sign in with Google" (OAuth), the Google Workspace SMTP relay used to send transactional email from noreply@browser.lol, Google Web Risk hostname checks, and Google Analytics 4 on our website.
  • Microsoft Corporation — "Sign in with Microsoft" / Entra ID single sign-on for organizations that enable it.
  • OpenRouter, Inc. — AI gateway used for optional mail summaries (routing to the configured model provider, currently Google Gemini). This is the only channel through which mail content reaches an AI provider.
  • OpenAI OpCo, LLC — automated anomaly detection over aggregated server-side operational logs. The content of your workspace sessions and your mail is never sent to this provider.
  • Axiom, Inc. — server-side log aggregation; log events can include IP addresses and user/session identifiers.
  • Reoon — email address verification at registration.
  • Playwire LLC — advertising on the free, ad-supported tier of the Service (see Section 7.2).

We may also disclose your personal data if required by law, regulation, legal process (e.g., a court order), or governmental request, or if we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, or investigate fraud. In the event of a merger, acquisition, or sale of all or a portion of our assets, your personal data may be transferred as part of that transaction, subject to this Policy and notification where required by law.

6.1. International Data Transfers

Switzerland is recognised by the European Commission as providing an adequate level of data protection, and by the United Kingdom under its adequacy regulations. Some of our providers process data outside Switzerland and the EEA, in particular in the United States. When we transfer personal data to such countries, we rely on the following safeguards:

  • Adequacy decisions of the European Commission and the Swiss Federal Council (e.g., for Canada).
  • The EU-U.S. Data Privacy Framework (DPF) and its Swiss-U.S. and UK extensions, for U.S. providers that are certified (e.g., Cloudflare, Google, Microsoft, Stripe, OpenAI).
  • The EU Standard Contractual Clauses (2021/914) and the Swiss FDPIC-recognised equivalent, plus the UK International Data Transfer Addendum where required, for providers that are not DPF-certified (e.g., OpenRouter, FiberState, NOWPayments).

Browser.lol itself is a Swiss entity and is not, and cannot be, certified under the Data Privacy Framework; we do not claim otherwise. We conduct transfer impact assessments where required and the per-vendor mechanisms are listed in the Subprocessors List.

6.2. Subprocessor Management

We assess vendors before engagement, put data processing agreements in place where they process personal data on our behalf, and review them periodically. Our current subprocessors are published in the Subprocessors List, together with the notification and objection process for changes.

7. Technical Aspects of Data Processing

7.1. Website Provision & System Log Files

When you access our website or use our services, our systems automatically record log entries. A log entry typically includes:

  • Timestamp, log title or category, the log message, log level, and the location in our code that generated the entry.
  • Identifiers where applicable: IP address of the requesting client, user ID (if authenticated), User-Agent string, session ID, server ID, workspace ID.
  • HTTP request details (method, URL, status code) for access logs.

Purpose and Legal Basis: This data is processed to enable the use of the website and services, ensure system security and stability, perform technical administration and troubleshooting, and detect abuse. The legal basis is our legitimate interest (Art. 6(1)(f) GDPR) in providing a functional, secure, and reliable service. We reserve the right to review this data retrospectively if we become aware of specific indications of illegal use.

Storage: Log entries are stored in our PostgreSQL database in Helsinki and shipped to our log aggregation provider Axiom, Inc. (see Section 6). They are deleted according to the periods in Section 5.2.

7.2. Cookies, Local Storage and Advertising

Our own code does not use cookies for authentication. After sign-in, an opaque session token is kept in your browser's localStorage and sent to our backend as an authorization header. We also use localStorage and sessionStorage for functional entries such as your session token, workspace references, selected browser, preferred locale, and similar preferences. These entries are strictly necessary for the Service or store choices you have made; they are not used to track you across other websites.

The following third-party technologies are in use on our website:

  • Google Analytics 4 (measurement ID G-VLXBKHVENH): website usage analytics. Google sets cookies (e.g., _ga) and processes usage data; see Google's privacy policy. You can opt out with the Google Analytics Opt-out Browser Add-on.
  • Playwire (Ramp): the free tier of the Service is funded by advertising delivered by Playwire LLC and its demand partners. On ad-supported pages, Playwire and its partners may set cookies and process your IP address, device information and ad interaction data to deliver, cap, and measure ads; depending on your region, this may include personalised advertising with the disclosures and choices presented by the ad framework. No ads are shown to Premium users, and ads never run inside legal, account, or checkout pages. See the Playwire privacy policy.
  • Cloudflare Turnstile: bot protection on registration, sign-in and similar forms; Cloudflare may set operational security cookies.
  • Stripe: on checkout surfaces, Stripe.js sets cookies (e.g., __stripe_mid, __stripe_sid) for payment processing and fraud prevention.

Managing cookies: You can delete or block cookies and site data at any time in your browser settings; blocking strictly necessary entries may break sign-in or checkout. Purchasing Premium removes advertising entirely.

US state privacy laws: We do not sell personal information for money. Depending on the definitions of your state's privacy law, the delivery of personalised advertising on the free tier may qualify as "sharing" or "targeted advertising"; you can opt out of it through the choices offered in the ad framework, by using the free tier without personalised ads where that choice is offered, by upgrading to Premium, or by contacting legal@browser.lol.

Do Not Track (DNT) and Global Privacy Control (GPC): Our own first-party storage is strictly necessary, so it is the same whether or not your browser sends such a signal. Where an opt-out preference signal must be honoured for third-party advertising under the law of your state, the consent and choice mechanisms of the ad framework apply.

8. Your Data Protection Rights

Under the Swiss FADP and the GDPR (for individuals in the EU/EEA) and the UK GDPR, you have the following rights regarding your personal data:

Your Rights

  • Right of Access (Art. 15 GDPR; Art. 25 FADP): Obtain confirmation as to whether personal data concerning you is being processed, and, where that is the case, access to the personal data and related information.
  • Right to Rectification (Art. 16 GDPR; Art. 32 FADP): Have inaccurate personal data corrected and incomplete data completed.
  • Right to Erasure (Art. 17 GDPR): Have personal data erased under certain conditions. You can delete your account at any time; deletion follows the schedule in Section 5.2.
  • Right to Restriction of Processing (Art. 18 GDPR): Obtain restriction of processing under certain circumstances.
  • Right to Data Portability (Art. 20 GDPR; Art. 28 FADP): Receive personal data you provided to us in a structured, commonly used, machine-readable format.
  • Right to Object (Art. 21 GDPR): Object, on grounds relating to your particular situation, to processing based on legitimate interests, and object at any time to processing for direct marketing purposes.
  • Right to Withdraw Consent (Art. 7(3) GDPR): Where processing is based on consent, withdraw it at any time with effect for the future.
  • Rights related to automated decisions (Art. 22 GDPR; Art. 21 FADP): As described in Section 5.1, you can request human review of automated security decisions that significantly affect you.
  • Right to Lodge a Complaint (Art. 77 GDPR): With a supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement.

How to Exercise Your Rights

To exercise any of these rights, contact us at legal@browser.lol or by postal mail (Section 2). To protect your privacy, we may need to verify your identity before responding; we will only ask for what is proportionate to the request (for most requests, writing from the email address associated with your account is sufficient).

We respond without undue delay and at the latest within one month of receipt (Art. 12(3) GDPR; 30 days under Art. 25(7) FADP). This period may be extended by two further months for complex or numerous requests; we will inform you of any extension within the first month, together with the reasons. If we do not act on your request, we will tell you why and inform you of your right to complain to a supervisory authority and to seek a judicial remedy.

Exercising your rights is free of charge. We may charge a reasonable fee or refuse to act only if a request is manifestly unfounded or excessive, in accordance with applicable data protection laws.

9. Children's Privacy

Our Service is not directed to individuals under the age of 16 (or a higher age threshold where applicable local law requires one). We do not knowingly collect personal data from children under 16. If you are a parent or guardian and you believe that your child has provided us with personal data, please contact us using the details in Section 2. If we become aware that we have collected personal data from a child under 16 without verifiable parental consent, we will take steps to delete that information promptly.

10. Data Breach Notification

We have implemented procedures to detect, investigate, and respond to personal data breaches. Where a breach is likely to result in a risk to the rights and freedoms of natural persons, we will notify the competent supervisory authority without undue delay and, where feasible, not later than 72 hours after becoming aware of it (Art. 33 GDPR); where notification is made later, it will be accompanied by reasons for the delay. Under Swiss law, we notify the FDPIC as soon as possible of breaches that are likely to lead to a high risk for data subjects (Art. 24 FADP).

When a breach is likely to result in a high risk to your rights and freedoms, we will also communicate it to you directly without undue delay (Art. 34 GDPR), unless:
  • the affected data was protected by measures that render it unintelligible to unauthorized persons, such as encryption;
  • we have taken subsequent measures that ensure the high risk is no longer likely to materialize; or
  • direct communication would involve disproportionate effort, in which case we will inform you through a public communication or similar equally effective measure.
Our notification will describe in clear and plain language the nature of the breach, our contact details, the likely consequences, and the measures taken or proposed to address it and mitigate its possible adverse effects.

11. Links to Other Websites

Our Service may contain links to other websites that are not operated by us, and you can use browser workspaces to visit any website you choose. If you visit a third-party site, that site's own privacy policy applies to the data it collects from you. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services. Websites you visit inside a browser workspace see the workspace's IP address and environment rather than your own device, but any data you actively submit to them (such as logging into your accounts) is governed by their terms and policies.

12. Policy Changes and Updates

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will post any changes on this page and update the "Last Updated" date. We encourage you to review this Privacy Policy periodically.

Version Effective Date Summary of Key Changes
5.0 2026-06-11 Full accuracy revision: corrected the description of our security posture and removed unfounded certification claims; consolidated the privacy contact on legal@browser.lol; documented the shared account system with Guard.ch; added Stripe, NOWPayments, Microsoft sign-in, OpenRouter, Axiom and Cloudflare Email Routing; corrected the cookie and local-storage description and retention periods; updated international transfer mechanisms (DPF and SCCs with Swiss equivalent); clarified that no DPO and no Art. 27 representative are appointed.
4.1 2025-11-14 Swiss law compliance update: added complete company registration details (CH-ID, EHRA-ID, legal form); clarified data storage locations (durable data in Hetzner Helsinki, Finland) and edge compute usage.
4.0 2025-05-15 Updated data collection details (account registration, technical data, usage data, browser workspace data, mail data); updated retention for mail and logs; revised system log description; updated third-party services, AI processing and security verification disclosures.
3.0 2025-01-21 GDPR and Swiss FADP compliance update: added AI processing, Cloudflare Turnstile, analytics and advertising disclosures, and security and fraud prevention processing.
2.0 2024-10-24 Comprehensive update: full translation to English, expansion of all sections, new sections on children's privacy, breach notification and external links, more detail on legal bases, security measures, international transfers, and user rights.
1.0 2022-08-16 Initial version of the Privacy Policy.

Change Notification: For significant changes that materially affect your rights or the way we handle your personal data, we will provide prominent notice (e.g., at least 30 days' advance notice via email to registered users and/or a clear notification in the Service) before the changes take effect. For less significant changes, updating the "Last Updated" date and posting the revised policy is sufficient. Where a change requires your consent under applicable law, we will ask for it.

Last Updated: 2026-06-11

13. Governing Law and Dispute Resolution

This Privacy Policy and any disputes arising out of or related to it shall be governed by and construed in accordance with the laws of Switzerland, without regard to its conflict of law provisions.

Any disputes arising from or in connection with this Privacy Policy that cannot be resolved amicably shall be subject to the jurisdiction of the competent courts at our seat in Schmiedrued, Switzerland. This does not affect mandatory data protection rights or forum rules of the country in which you habitually reside, and it does not affect your right to lodge a complaint with a data protection supervisory authority as described in Section 8.