Privacy Policy

Effective Date: June 7, 2025

This Privacy Policy explains how Opskr.dk ("we", "us", "our") collects, uses, and protects the personal information of its users ("you", "your"). We are committed to processing your data responsibly and in accordance with the General Data Protection Regulation (GDPR).

1. Who We Are

Opskr.dk is operated by private individual Eli Jakobsen and hosted by Hetzner Online GmbH in Germany. For privacy-related inquiries, please contact: privacy@opskr.dk.

2. What We Collect

• Account Information: Name, email address, and password (Passwords are stored in a hashed and salted format using industry-standard algorithms).
• Subscription Metadata: Status, plan name, renewal date, and whether auto-renewal is active. Payment processing is delegated to Paddle.
• Usage Data: Browser user-agent, IP address, and non-identifiable analytics (if consented).
• Cookies: Functional cookies for login and session state. Optional analytics cookies are only used with your consent. Third-party services such as Paddle may also set cookies for payment processing and fraud prevention.

3. Why We Process Your Data

• To register and manage your user account
• To enable access to subscription-only features
• To support user authentication and improve site functionality

All payment processing, billing, invoicing, and tax compliance are handled by Paddle, our Merchant of Record. We do not directly collect or process payment card or billing details.

4. Legal Basis for Processing

We rely on the following legal bases:

• Consent – for analytics cookies and email communications
• Contract – to provide you access to the service and manage your account
• Legitimate interest – for basic fraud prevention and service operation

5. Third-Party Services

• Paddle.com – Acts as Merchant of Record for all payments. They collect and store your payment data and issue invoices. Paddle may set cookies for payment processing and fraud prevention. See their privacy policy: https://paddle.com/legal/privacy.
• Hetzner Online GmbH – Hosts our servers located in Germany. Our Data Processing Agreement (DPA) with Hetzner can be found here https://www.hetzner.com/AV/DPA_en.pdf.

6. Your Rights

Under GDPR, you have the right to:

• Access the personal data we hold about you
• Rectify incorrect or incomplete data
• Request deletion of your data (right to be forgotten)
• Withdraw consent at any time
• Request a copy of your data in a machine-readable format
• File a complaint with your local Data Protection Authority

To exercise these rights, email: privacy@opskr.dk

7. Data Retention

We retain your user account information as long as your account is active. Upon request, your account and associated data can be deleted. Subscription metadata is retained only while your account is active. We do not store payment or invoice data ourselves.

8. Security

We implement strong encryption, password hashing, access control, and secure session management. All traffic is secured with HTTPS. Nevertheless, no platform can guarantee 100% security.

9. Changes to This Policy

We may update this Privacy Policy to reflect changes in legal, technical, or business developments. Updated versions will be posted here with a new effective date.