Browser-Version not supportet

Please use a modern browser

Privacy Policy

Last Updated: January 21, 2025

Welcome to Appdate.io. We are committed to protecting your privacy and ensuring that your personal information is collected and used properly, transparently, and securely.

Appdate.io, operated by Served.ch LLC, is a software-as-a-service (SaaS) platform that enables businesses to embed a notification feed (displayed as a sidebar) into their websites and applications. This feed contains posts created by our customers, tailored to end users based on their preferences and interactions. Additionally, Appdate.io offers analytics, user activity tracking, and push notification functionality. We are committed to protecting the privacy of both our customers and their end users while ensuring compliance with applicable privacy laws, including the GDPR and similar regulations.

Data We Collect

1. From Our Customers (Users of app.appdate.io):

Account Information:
  • Email address
  • Password (encrypted)
  • Name
  • Company details (e.g., name)
Authentication and Security Data:
  • Login activity (e.g., last login date, IP address)
  • Device and browser metadata for security

2. From End Users (Processed on Behalf of Our Customers):

When customers embed Appdate.io on their platforms, we process data on their behalf, including:
  • Session Metadata: Date, duration, device type, operating system, language, country, and city.
  • Activity Data: Pages visited, posts viewed or clicked, content preferences set, and interaction with push notifications (push leads).

Purpose of Data Processing

1. For Customers (app.appdate.io Users):

  • To provide access to the Appdate.io platform.
  • To secure and manage user accounts.
  • To communicate regarding accounts, service updates, and billing.

2. For End Users (on behalf of customers):

  • To enable features such as unread badges and personalized content recommendations.
  • To provide analytics and reporting functionality to our customers.

Legal Basis for Processing

We process personal data based on:

  • Consent: For activities such as sending push notifications and enabling content preferences.
  • Legitimate Interest: To provide analytics and platform features like unread badges and personalized feeds.
  • Contractual Necessity: To manage customer accounts and deliver services.

Data Retention

1. Customer Data:

  • Retained as long as the customer account remains active. If a customer closes their account, all data is immediately deleted.

2. End-User Data:

  • Session data (e.g., pages visited, clicks, time spent) is retained for 6 months.
  • Data related to read/unread posts is retained indefinitely for as long as the customer account is active. This data is anonymized and cannot be linked to individual end-users.
  • Customers can delete specific end-user data via the Appdate.io platform. If a customer closes their account, all end-user data is immediately and permanently deleted.

International Data Transfers

All customer and end-user data processed by Appdate.io is stored in Amazon Web Services (AWS) data centers located in Frankfurt, Germany, ensuring compliance with GDPR requirements. In the event that data is transferred outside the European Economic Area (EEA) or Switzerland, we ensure that appropriate safeguards, such as Standard Contractual Clauses (SCCs), are in place to protect the data. Our sub-processors, including Stripe and Brevo, comply with GDPR and have implemented SCCs for international data transfers.

Push Notifications and Analytics

  • Push Notification Interactions: Data on clicked notifications (push leads) is collected and stored to enhance customer engagement and analyze effectiveness.
  • Preferences Data: End users' preferences for posts are stored even when analytics are disabled to enable core platform functionality.
  • Analytics Functionality: Analytics collection, such as session metadata (e.g., country, city, device type, etc.), is turned off by default and must be explicitly enabled by our customers (app.appdate.io users) within their Appdate.io account. Customers can choose to enable or disable analytics collection at any time via the platform. When disabled, no analytics data will be recorded for their end users. However, data related to read/unread posts is retained to enable core platform functionality, even when analytics are disabled.

Data Processing Agreement (DPA)

We provide a pre-signed Data Processing Agreement (DPA) for all Appdate.io customers. The DPA outlines the roles and responsibilities of Served.ch LLC as the data processor and our customers as the data controllers. You can download the pre-signed DPA directly from our website here: Download DPA. This DPA is pre-signed by Served.ch LLC and becomes effective upon your acceptance of our Terms of Service and Privacy Policy. The DPA governs the processing of personal data on behalf of our customers and ensures compliance with applicable data protection laws, including the GDPR. If you require a countersigned copy, please contact us at info@appdate.io.

Security Measures

We implement appropriate technical and organizational measures to secure data, including:
  • Secure data centers and hosting providers.
  • Data encryption (in transit and at rest).
  • Role-based access controls.

Brevo for Email Collection

We use Brevo, an email marketing and transactional email platform, to manage our email communications, including account-related emails and marketing campaigns. When you subscribe to our Service or opt-in to receive communications from us, your email address and name are stored in Brevo. Brevo implements security measures to protect your information and adheres to privacy laws and regulations. However, we encourage you to review Brevo's privacy policy to understand how they manage your personal information: https://www.brevo.com/en/legal/privacypolicy/.

Stripe for Payments

We use Stripe as our payment service provider to process payments securely. When you make a purchase or subscribe to a paid plan on Appdate.io, Stripe collects and processes your payment details, such as credit card information, billing address, and transaction history. We do not store or have direct access to your full payment details—this information is handled securely by Stripe. Stripe operates in compliance with the Payment Card Industry Data Security Standard (PCI-DSS) and ensures secure processing of payment transactions. For more information on how Stripe processes and protects your data, please refer to Stripe's Privacy Policy.

Data Protection Rights

Depending on your location, you may have certain rights under applicable data protection laws, including:

  • Right to access, update, or delete the information we have on you.
  • Right of rectification, objection, or restriction.
  • Right to data portability.
  • Right to withdraw consent.

For End Users:

As a Processor, we act on behalf of our customers, who are the Controllers of end-user data. End users may exercise their rights (e.g., access, rectification, deletion) by contacting the website or app operator (our customer). Served.ch LLC will assist our customers in fulfilling these requests in accordance with applicable data protection laws.

For Users of app.appdate.io:

You can exercise your rights by contacting us at info@appdate.io.

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page.

Contact Us

Served.ch LLC
Chemin du PĂ©lard 13, 1197 Prangins, Switzerland
info@appdate.io

If you have any questions about this Privacy Policy, please contact us via email at info@appdate.io .