Privacy Policy

This Privacy Policy explains how we collect, use, and share personal data when you use Pionext. We serve customers in the EU and comply with the GDPR.

Controller

Unit U+2467 GmbH
Waldemarstr. 38
10999 Berlin, Germany

Contact: 2467@apeunit.com

What We Collect

• Account data: email, password hash, optional profile details.
• Project data: submissions, media you upload, waitlist entries.
• Technical data: session identifiers (cookie), device/browser metadata.

Purposes and Legal Bases

• Provide and secure the service (Art. 6(1)(b) GDPR – contract; Art. 6(1)(f) – legitimate interests).
• Account authentication and sessions (essential cookies; Art. 6(1)(b)).
• Communication about your account and projects (Art. 6(1)(b)).
• Optional product updates/marketing with your consent (Art. 6(1)(a)).

Cookies

We use an essential session cookie (HTTP‑only) for authentication and a preference cookie to remember the sidebar state. See our Cookies Policy for details.

Processors and Hosting

• Hosting and deployment: Vercel (EU/Global).
• Database and storage: Supabase (EU/Global).
• Email provider: [insert provider].

Where data is transferred outside the EEA/UK, we rely on appropriate safeguards (e.g., SCCs).

Retention

We keep account data for as long as your account is active. You may request deletion; backups may persist for a limited period.

Your Rights

• Access, rectification, erasure, restriction, and portability.
• Objection to processing based on legitimate interests.
• Withdraw consent at any time (for consent‑based processing).
• Complain to your local authority; in Berlin: Berliner Beauftragte für Datenschutz und Informationsfreiheit.

Security

We use industry‑standard measures (e.g., HTTPS, hashed passwords, role limits). No method is 100% secure.

Updates

We may update this policy. We will indicate the effective date and, where appropriate, notify you.