Privacy Policy
Last updated: January 17, 2026
1) Who we are (Controller)
Controller (data protection “Verantwortlicher”):
Jaydaptif solutions by Jeremias Müller
Ponzerwiesweg 10/1
5121 Ostermiething, Austria
If you’re a business customer (Kaptn), you may also be a controller for your own client data you manage in Kaptn Karl. This page covers what we do as the platform operator.
2) What this policy covers
This Privacy Policy applies to karlkonnekt.com and any pages, forms, and content hosted under it. It also describes related processing that can occur when you use Karl Konnekt services (e.g., onboarding, newsletters, and support).
3) Your rights under GDPR
- Right of access (Art. 15 GDPR)
- Right to rectification (Art. 16 GDPR)
- Right to erasure (Art. 17 GDPR)
- Right to restriction (Art. 18 GDPR)
- Right to data portability (Art. 20 GDPR)
- Right to object (Art. 21 GDPR)
- Right to withdraw consent at any time (Art. 7(3) GDPR)
To exercise your rights, email us at terms@karlkonnekt.com. We may ask for verification so we don’t hand your data to the wrong person.
Supervisory authority (Austria)
You also have the right to lodge a complaint with the Austrian Data Protection Authority:
Österreichische Datenschutzbehörde, Barichgasse 40–42, 1030 Wien, Austria
Email: dsb@dsb.gv.at · Phone: +43 1 52 152-0
4) Data we process when you visit the website
4.1 Server and security logs (hosting)
When you visit the site, our hosting and security systems process technical data such as: IP address, date/time of access, requested URL, referrer, browser/device info, and status codes.
Purpose: deliver the site, ensure stability and security, prevent abuse, troubleshoot issues.
Legal basis: legitimate interests (Art. 6(1)(f) GDPR).
Retention: generally short-term; longer only if needed for security investigations.
4.2 Content delivery via CDN (jsDelivr)
We load some assets (e.g., Bootstrap) via jsDelivr to improve performance. This can involve processing your IP address and technical request data to deliver content.
Purpose: fast and reliable delivery of site assets.
Legal basis: legitimate interests (Art. 6(1)(f) GDPR).
Note on transfers: jsDelivr may use sub-processors such as Cloudflare, which can involve international processing depending on routing.
5) Newsletter / waitlist
If you subscribe to our newsletter or waitlist, we process the data you submit (usually your email address, and optionally name and interests).
Purpose: send product updates, onboarding info, and relevant Karl Konnekt news.
Legal basis: consent (Art. 6(1)(a) GDPR). You can withdraw at any time via the unsubscribe link or by emailing us.
Service provider: We use MailerLite to manage and send newsletters. Your subscription data is processed on MailerLite’s systems.
Retention: until you unsubscribe, plus a minimal suppression record (to respect opt-outs).
6) Contacting us
If you contact us (e.g., via email), we process the information you provide (name, email, message content, and related metadata).
Purpose: respond to requests, support, pre-contract steps, and documentation of communications.
Legal basis: contract / pre-contract steps (Art. 6(1)(b) GDPR) and/or legitimate interests (Art. 6(1)(f) GDPR).
Retention: as long as necessary to handle your request and any legal retention obligations.
7) Cookies, analytics, and marketing
We use cookies and similar technologies. Some are strictly necessary, while others (analytics/marketing) are optional and require consent in many regions.
7.1 Consent management
Where required by law, we only run analytics/marketing technologies after you consent. You can change or withdraw your consent at any time via our consent tool (if shown) or by adjusting browser settings.
7.2 Google Analytics (gtag.js)
If you consent, we use Google Analytics to understand how visitors use the site (e.g., which pages are popular), so we can improve content and usability.
Data processed: usage data (page views, clicks, referrer), approximate location, device/browser info, and identifiers/cookies (e.g., _ga).
Legal basis: consent (Art. 6(1)(a) GDPR).
IP anonymization: where supported, we request IP anonymization to reduce identifiability.
Transfers: Google may process data in third countries; safeguards such as SCCs may apply depending on configuration.
Opt-out: you can withdraw consent via the consent tool, block cookies in your browser, or use Google’s opt-out mechanisms.
7.3 Meta Pixel (Facebook Pixel)
If you consent, we use the Meta Pixel to measure and improve our marketing (e.g., understanding whether a campaign led to a signup). Meta may also use this data for its own purposes according to its terms.
Data processed: event data (page views, conversions), technical data, identifiers/cookies (e.g., _fbp, _fbc).
Legal basis: consent (Art. 6(1)(a) GDPR).
Joint controllership note: for certain collection and transmission of data via Meta Business Tools, there can be a joint-controller relationship with Meta (see Meta’s terms/addendum).
Transfers: Meta may process data in third countries; safeguards may apply depending on Meta’s setup.
Opt-out: withdraw consent via the consent tool; you can also adjust Meta ad preferences.
7.4 Google reCAPTCHA v3 (spam & abuse prevention)
We use Google reCAPTCHA v3 to protect forms (e.g., newsletter signup) from abuse. reCAPTCHA works in the background and can analyze behavior and technical signals to determine risk.
Data processed: IP address, browser/device information, interaction signals, referrer, and potentially cookies set by Google.
Purpose: security, fraud/abuse prevention.
Legal basis: legitimate interests (Art. 6(1)(f) GDPR) in protecting our services; where legally required, consent may be used instead.
Note: Google’s Privacy Policy and Terms also apply:
Privacy Policy and
Terms.
8) Platform services (Karl Konnekt / Kaptn Karl)
If you use Karl Konnekt (Joeys) or Kaptn Karl (Kangaroo Kaptns), we process additional data to provide the service: account identifiers (e.g., email), profile data, hop bookings, and operational metadata. Payments are handled via a payment provider, and core app infrastructure uses cloud services.
- Payments: we use Stripe for subscription/payment flows. Payment details are processed by Stripe; we generally receive only necessary transaction metadata. (Art. 6(1)(b) GDPR)
- Cloud infrastructure: we use Firebase/Google Cloud components for authentication, databases, hosting, and functions where applicable. (Art. 6(1)(b)/(f) GDPR depending on context)
You may see dedicated in-app privacy/terms screens for the apps; those can provide additional details specific to app features.
9) Recipients and processors
Depending on what you do on the site, we may share data with processors that help us operate the service, such as:
| Provider | Used for | Typical legal basis |
|---|---|---|
| Google (Firebase/Google Cloud) | Hosting, security logs, functions, (and possibly authentication/services) | Art. 6(1)(f) / Art. 6(1)(b) |
| Google Analytics | Website analytics (optional) | Art. 6(1)(a) |
| Meta (Pixel) | Marketing measurement (optional) | Art. 6(1)(a) |
| Google reCAPTCHA | Spam/abuse prevention | Art. 6(1)(f) (or consent where required) |
| MailerLite | Newsletter delivery | Art. 6(1)(a) |
| jsDelivr (CDN) | Delivery of CSS/JS assets | Art. 6(1)(f) |
| Stripe | Payments/subscriptions | Art. 6(1)(b) |
10) International transfers
Some providers may process data outside the EEA (e.g., in the United States). When this happens, we rely on appropriate safeguards (such as Standard Contractual Clauses) and provider security measures, where applicable.
11) Data retention
We keep personal data only as long as necessary for the purposes described:
- Server/security logs: short periods, longer only if needed for security or legal reasons.
- Newsletter: until you unsubscribe; then minimal suppression to respect opt-out.
- Support messages: as needed to handle the request and any legal documentation/retention requirements.
- Platform accounts: as long as an account exists, plus retention where required by law (e.g., billing records).
12) Changes to this policy
We may update this Privacy Policy to reflect changes in our services, legal requirements, or tools. The “Last updated” date at the top shows the current version.