Melon Markets

Privacy Policy
Legal Disclosure

Privacy Policy

(At the moment, this document is very inconsistent with the use of “I”/“me” vs. “we”/“us”. I will improve in this soon. Also, I will eventually have a professional go over and improve this. Promise.)

This privacy policy covers www.melon.markets and newsletters for www.melon.markets.

tl;dr
We collect as little data as necessary, transmit it only to few companies and try to keep the data as close as possible to the EU (preferably inside the EU all the way through). We don't just do this because it's mandated by law, but also because we believe in the right to data privacy.
Latest Update:
2023-04-03

Name and Details of the Data Controller

Plietsch un so GmbH
KnorrestraĂźe 5
20099 Hamburg
Germany

Represented by:
Sven Herzberg

Regulatory Body in Charge of Data Protection

The supervisory authority responsible for our company is:

Freie und Hansestadt Hamburg
The Commissioner for Data Protection and Freedom of Information
Ludwig-Erhard-Str. 22, 7. OG
20459 Hamburg
Germany
Phone: +49 40 428 54 – 4040
further details are available by visiting https://datenschutz-hamburg.de (in German)

Your Rights

tl;dr
Just send a message to [email protected] and I've got you covered'!
More Details:
You have the right to access, to rectify, to erasure, to object, to restrict processing, to data portability, to withdraw your consent and to launch a complaint with your local data protection authority. We are governed by the data protection authority of Hamburg (see above).
Living Document:
Due to the ongoing development of my offerings, it may become necessary to modify this privacy policy. You can always find the most recent version at https://www.melon.markets/privacy-policy

Data Collection and Usage

1. www.melon.markets

When you browse the main page at www.melon.markets:

tl;dr
I provide you with the website through a few services, making sure it's available and stays secure.
Purpose
Your personal data is used for two purposes:
  1. Send the content of pages like this one to you (“traffic data”, i.e. your IP address), and
  2. use your personal data to ensure the security of this page.
Storage:
  1. Traffic data is not stored.
  2. Security data is deleted within 6 months unless there is a particular reason to store it for a longer period (e.g. when storing individual IP addresses of misbehaving actors in reject-lists).
Legal Basis:
  1. Your consent to receive the page you requested.
  2. Our legitimate interests in maintaining the security and availability of our page while keeping the page secure, as mandated by law.
Data Processors:
We may use trustworthy processors that only process your personal data on our behalf (“processors”). The particular provider may be subject to change over time. Currently all our core systems, including our website, are hosted on DigitalOcean and are behind CloudFlare's CDN (content delivery network); details about data processors will be listed below.
Other Recipients:
I do not share personal data with other parties.
Third Country Transfers:
It is possible that CloudFlare processes traffic data outside the EU/EEA (see below for further details). Our core system is hosted within the EU and data processors are selected to keep data within the EU/EEA if possible.
Cookies:
I do not use cookies on www.melon.markets. CloudFlare may use cookies for technical reasons to ensure security and availability of this site.
Statistics:
At the moment, no statistics tool is used.

2. The Wait List on www.melon.markets

tl;dr
In addition to (1.), I store personal data provided by you in order to contact you. I invite you to use a privacy relay (like Firefox Relay) and other aliases instead of your personal data.
Details:
If you join the waitlist, we store the data you provided in the forms, along with a timestamp of submitting the data. This data may be transferred to data processors in order to contact you via email. After confirming your interest (and implicitly the ownership/control of the email address) via link, we store the data about this so-called double opt-in. We may also store the IP address temporarily to prevent abuse of the forms
Purpose:
Orderly management of customer relations to you via email.
Storage:
If you do not complete the initial form, no data is stored. If you fail to complete the double opt-in process, your data will be deleted within 30 days. If you complete the process, we will store your data according to German data protection laws and delete it once legally permitted to do so. Also, we reserve the right to extend the data storage duration if there is a particular reason to do so (e.g. on ongoing lawsuit related to the data).
Legal Basis:
Your consent to data processing, as granted in the initial form. And my legitimate interest to contact you during the development process of the product.
Legitimate Interests:
For reasons of fraud prevention we process personal information (IP addresses) and may process data in legal disputes about data protection.
Processors:
We will use data processors to process personal data on your behalf (e.g. to send an email to you). The particular provider may be subject to change over time. At the moment, we use Mailjet and Sendinblue to send emails, as well as Typeform to perform surveys (see below for details).
Other Recipients:
I do not share personal data with other parties.
Third Country Transfers:
It is possible that CloudFlare processes traffic data outside the EU/EEA (see below for further details). Our core system is hosted within the EU and data processors are selected to keep data within the EU/EEA if possible.
Cookies:
I do not use cookies on www.melon.markets. CloudFlare may use cookies for technical reasons to ensure security and availability of this site.

3. When you Send an Email

tl;dr
Your email messages, and all the information inside of then will be processed.
Purpose:
We will process your emails in order to communicate with you.
Storage:
Copies of your emails will be stored only for six months, unless I am required to keep the email for legal reasons.
Legal Basis:
Your consent when sending the email.
Data Processors:
We will use data processors to process personal data on your behalf (e.g. to send an email to you). The particular provider may be subject to change over time. At the moment, I use MailJet and Sendinblue to send emails in automated processes. Your incoming email is screened and forwarded by CloudFlare to be processed and stored by Microsoft, which is the email provider I use for business.

Data Processors

CloudFlare

tl;dr
CloudFlare makes our website fast and protects our service from some malicious actors.
Details:
CloudFlare's threat protection service is used both for web and email services.
Privacy Policy:
https://www.cloudflare.com/privacypolicy/

DigitalOcean

tl;dr
DigitalOcean provides services to host web sites and web services.
Details:
I use DigitalOcean's app platform to provide our web services. Services are hosted in their FRA1 data center in Frankfurt, Germany.
Privacy Policy:
https://www.digitalocean.com/legal/privacy/

Mailjet

tl;dr
Mailjet provides services to send emails to customers.
Details:
I use Mailjet to send automated email to my customers.
Privacy Policy:
https://www.mailjet.com/legal/privacy-policy/

Microsoft

tl;dr
Microsoft provides email addresses.
Details:
I use Microsoft Exchange Online for my business email.
Privacy Policy:
https://go.microsoft.com/fwlink/?LinkId=248681

Sendinblue

tl;dr
Sendinblue provides services to send emails to customers.
Details:
I use Sendinblue to send automated email to my customers.
Privacy Policy:
https://www.sendinblue.com/legal/privacypolicy/

Typeform

tl;dr
Typeform allows the collection of structured feedback.
Details:
I use typeform to perform surveys among my customers.
Privacy Policy:
https://admin.typeform.com/to/dwk6gt