Privacy Policy

This privacy policy informs you about the processing of personal data on our website.

1. Data Controller

The data controller for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is:

Florian Zandberg

Am Bahnhof 8A, 21739 Dollern, Germany

Email: datenschutz@blocq.io

2. Hosting and Server Log Files

This website is hosted by Hetzner in Germany. Each time you access this website, information is automatically collected and stored in server log files that your browser automatically transmits:

  • IP address of the requesting computer
  • Date and time of access
  • Name and URL of the retrieved file
  • Website from which access is made (referrer URL)
  • Browser used and, if applicable, the operating system

The legal basis is Art. 6(1)(f) GDPR (legitimate interest). Our legitimate interest lies in ensuring the trouble-free operation of our website and improving our services.

Server log files are automatically deleted after 14 days at the latest.

3. Contact and Inquiry Forms

If you contact us – by email or via one of our forms – your information (e.g. name, email address, message and any further details you voluntarily provide) will be processed for the purpose of handling your inquiry.

The forms on this website (in particular on /kontakt, /demo and /concierge) transmit the data you entered directly to our server (app.blocq.io) when submitted, triggering an email notification to us. The server is operated in Germany. The transfer is encrypted (TLS/HTTPS). To protect against automated abuse (spam) we use a hidden required field (honeypot) and a technical rate limit; this briefly processes your IP address.

The data transmitted to us via form or email is stored by us and used solely to handle your inquiry. We do not pass it on to third parties for other purposes.

When you use our forms, we regularly process the following additional information beyond name and email address, provided you supply it: company, club or brand, industry, phone number, preferred appointment time and your description of your inquiry or planned app project.

The legal basis is Art. 6(1)(b) GDPR (pre-contractual measures at your request or contract performance) and – where no contractual context exists – Art. 6(1)(f) GDPR (legitimate interest in responding to your inquiry). Your data will be deleted once it is no longer needed to handle your inquiry and no statutory retention obligations apply.

3a. Waitlist

If you join our waitlist, we process your email address (and, if provided, your name and the platform you are interested in) to inform you about the launch of BLOCQ. Sign-up uses a double opt-in procedure: you first receive a confirmation email and are only added to the waitlist after you confirm.

To document your consent, we store the time of sign-up and of confirmation. Every email contains an unsubscribe link through which you can withdraw your consent at any time with effect for the future.

The legal basis is Art. 6(1)(a) GDPR (consent). Your data is deleted as soon as you unsubscribe or the purpose of the waitlist no longer applies. Emails are sent via our own server; no external email service provider is used.

3b. App build notifications

As part of building and publishing your app, we send status notifications (e.g. that a build has started, completed or is ready for download) to the email address you provided. For this we process your email address and the processing status of your job.

The legal basis is Art. 6(1)(b) GDPR (contract performance). Emails are sent via our own server; no external email service provider is used.

4. Cookies

This website does not use cookies. No tracking technologies, analytics tools, or marketing cookies are employed.

5. No External Services

This website does not integrate any external services. Fonts are hosted locally, there is no connection to Google Fonts, analytics, social media plugins, or other third-party providers. Your IP address is not transmitted to third parties.

6. SSL Encryption

For security reasons, this website uses SSL or TLS encryption. You can recognize an encrypted connection by the browser address bar changing from "http://" to "https://" and the lock symbol in your browser bar.

7. Your Rights

You have the following rights regarding your personal data:

  • Right of access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to object (Art. 21 GDPR)

You also have the right to lodge a complaint with a data protection supervisory authority about the processing of your personal data.

8. Changes

We reserve the right to adapt this privacy policy to comply with changed legal requirements or to reflect changes to our website.

Last Updated: May 2026