Privacy Policy

This Privacy Policy explains how we process your personal data when you use ChakraScan. If you have any questions, please contact us at chakra.scan.pay@gmail.com.

1. Controller

Nick Krüger – Digital Solutions, Parkstraße 74, 87439 Kempten, Germany. Contact: chakra.scan.pay@gmail.com

2. Data We Process

• Account and contact details you provide (e.g., email address).
• Images you upload for generating chakra visualizations.
• Technical data (IP address, device, and usage data) for security and analytics.
• Payment-related metadata handled by our payment processor (see Section 6).

3. Purpose and Legal Basis

• Service provision and account management (Art. 6(1)(b) GDPR).
• Payment processing (Art. 6(1)(b) GDPR).
• Security, fraud prevention, and service improvement (Art. 6(1)(f) GDPR).
• Compliance with legal obligations (Art. 6(1)(c) GDPR).

4. Storage and Hosting (Supabase)

We store application data using Supabase. We configure Supabase to use servers located in Germany. Supabase acts as our data processor under a data processing agreement. For details on their security and compliance, please refer to Supabase documentation.

5. Image Uploads

Images you upload are processed to generate your chakra visualization. Do not upload images that you do not have the right to use. We may retain processed results and related metadata for service functionality and troubleshooting, subject to your rights below.

6. Payments (creem.io)

Payments are handled by creem.io as our independent payment processor. We do not store your full payment details. creem.io processes payment information under their own terms and privacy policy. We receive limited payment metadata (e.g., transaction status) necessary to fulfill your order.

7. Data Sharing

We only share data with service providers necessary to operate ChakraScan (e.g., hosting, analytics, payments) under appropriate data processing agreements. We do not sell personal data.

8. Retention

We retain personal data only as long as necessary for the purposes outlined above, to comply with legal obligations, or to resolve disputes. When data is no longer needed, it will be deleted or anonymized.

9. Your Rights (GDPR)

• Access, rectification, deletion, and portability of your data.
• Restriction and objection to processing where applicable.
• Right to lodge a complaint with a supervisory authority.

10. Security

We implement appropriate technical and organizational measures to protect your data. No method of transmission or storage is 100% secure; we work to continuously improve our safeguards.

11. Contact

For privacy requests, please contact chakra.scan.pay@gmail.com.

Note: This page is provided for informational purposes and does not constitute legal advice.