SpeedMetrics.io
SpeedMetrics.io

Privacy Policy

Last updated: September 02, 2025


Privacy Policy of speedmetrics.io

_Last updated: 02.09.2025_

We take the protection of your personal data seriously. This Privacy Policy explains what data we collect, how we use it, and what rights you have under the EU General Data Protection Regulation (GDPR).

1. Controller

Micro SaaS Solutions Owner: Malte Hoffmann Am Salzstadel 13 83022 Rosenheim Germany

E-Mail: malte@scarb.de


2. Data We Collect


We collect and process the following categories of data:

1. Account & Login Data
- E-Mail address
- Name (optional)
- Google account data (if you sign in with Google)

2. Payment Data
- Payments are processed by Stripe via secure redirection to Stripe Checkout.
- We do not store credit card or banking information.
- We receive transaction metadata (e.g. payment status, customer email, invoice ID).

3. Service Data
- URLs of the websites you add to be monitored.
- Performance metrics of the monitored website.
- This data does not contain personal data (PII).

4. System & Logs
- Technical logs for ensuring the stability and security of our service.
- No profiling or tracking beyond what is necessary for operation.

3. Cookies & Local Storage

- We do not use marketing or analytics cookies. - Only necessary session cookies and local storage entries are used for authentication (login/logout functionality).

4. Purpose and Legal Basis

We process personal data based on:

- Art. 6 (1) lit. b GDPR – performance of a contract (account creation, payment, and service delivery).
- Art. 6 (1) lit. f GDPR – legitimate interests (security, fraud prevention, server logs).
- Art. 6 (1) lit. c GDPR – compliance with legal obligations (invoicing, tax).

5. Service Providers (Processors)

We use the following third-party providers under GDPR-compliant agreements:

- Hosting: Vercel Inc., EU data centers (with possible transfers to the US under appropriate safeguards).
- Database & Authentication: Supabase, hosted in Frankfurt (Germany).
- Payments: Stripe Payments Europe, Ltd. (Ireland).
- Email Delivery: Resend, used only for transactional emails (signup confirmations, password resets, notifications).

6. Data Retention

- Trial Accounts: If you do not purchase after your 14-day trial, your account and associated data will be deleted after a reasonable period of time. - Paid Accounts: Your data is stored for at least the guaranteed runtime of two (2) years. - Logs: Technical logs are deleted regularly and only kept as long as necessary for security and troubleshooting. - Invoices & Payment Records: Retained for the legally required period (usually 10 years under German tax law).

7. Data Transfers Outside the EU

Some of our service providers (e.g. Vercel, Resend, Stripe) may transfer data to countries outside the EU/EEA. Such transfers are safeguarded by: - EU adequacy decisions, or - Standard Contractual Clauses (SCCs) approved by the European Commission.

8. Your Rights

Under the GDPR, you have the following rights:

- Right of access (Art. 15 GDPR)
- Right to rectification (Art. 16 GDPR)
- Right to erasure (Art. 17 GDPR)
- Right to restriction of processing (Art. 18 GDPR)
- Right to data portability (Art. 20 GDPR)
- Right to object (Art. 21 GDPR)

You also have the right to lodge a complaint with a supervisory authority (e.g. Bayerisches Landesamt für Datenschutzaufsicht, Germany).

9. Security

We implement appropriate technical and organizational measures to protect your data against unauthorized access, loss, or misuse.

10. Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or technical developments. We will inform you in advance of any significant changes.