1. Responsibilities and roles
Ainstainer DACH GmbH is the controller for processing on our own websites, in the LobHub app, and for registration, login, support, product communication and billing.
If a person submits a testimonial through a form operated by a LobHub customer, that customer is usually the controller for the content, purpose, approval and later publication of the testimonial. LobHub processes this data as a processor on behalf of the customer. The customer's own privacy information may also apply.
2. Controller and contact
Ainstainer DACH GmbH
Dachauer Str. 180
80992 Munich
Germany
Privacy requests: hallo@lobhub.de
3. Data we process
| Area | Data |
|---|---|
| Website and technical delivery |
IP address, date and time of access, URL, referrer, user agent, HTTP status,
technical hosting and API logs, and browser language preferences
lobhub.lang and lobhub-lang.
|
| LobHub account | Email address, display name, password hash, email verification and password reset token hashes, refresh token hash, user agent, IP hash, timestamps, workspace assignment, role and plan. |
| Workspace and customer account | Workspace name, business name, website URL, logo URL, members and roles, plan information and, where billing is used, the Stripe customer ID. |
| Forms | Title, description, slug, status, form fields, required-field status, branding, language, consent text, consent version and selected publication channels such as website, social media or print. |
| Testimonials | Name, optional email address, company, role or job title, rating, free text, optional photo, form snapshot, status, IP hash, consent timestamp, consent version, permitted channels and audit entries for moderation, editing, withdrawal or deletion. |
| Files | Uploaded logos and photos. Images are resized, stored as JPEG and metadata such as EXIF, ICC, IPTC and XMP is removed. |
| Widgets | Widget configuration and approved testimonials in the widget cache. The widget does not count impressions, set cookies or request the API with browser credentials. |
| Email and communication | Recipient address, subject, template data, delivery status and content from contact, support or product communication. |
| Billing | Plan and contract data and, for paid features, billing data. Payment details are not stored by LobHub itself but are processed by the payment provider. |
LobHub is not intended to collect special categories of personal data under Art. 9 GDPR. Please do not enter health data, political opinions, religious beliefs or similarly sensitive information into free-text fields.
4. Purposes and legal bases
- Providing the website, app, API, forms and widgets: Art. 6(1)(b) GDPR where the processing is necessary for contract performance or pre-contractual measures.
- Security, abuse prevention, rate limiting, troubleshooting and auditing: Art. 6(1)(f) GDPR. Our legitimate interest is operating the service securely and traceably.
- Submission and publication of testimonials: Art. 6(1)(a) GDPR where the data subject consents to specific publication channels. Consent can be withdrawn at any time with effect for the future.
- Documentation of consent, legal proof obligations, accounting and tax records: Art. 6(1)(c) GDPR.
- Transactional emails such as registration, verification, password reset, testimonial notifications or account deletion: Art. 6(1)(b) GDPR and, where required, Art. 6(1)(f) GDPR.
5. Hosting, storage locations and recipients
The production API runs on Google Cloud Run in europe-west3 (Frankfurt). The application database is Google Cloud SQL for PostgreSQL in europe-west3. Uploads are stored in Google Cloud Storage with location EU. Secrets and configuration values are stored in Google Secret Manager in the configured EU region.
The following recipients or processors may be involved depending on use:
- Google Cloud and Firebase for hosting, database, storage, logs and app delivery.
- Resend for transactional emails such as verification, notifications and password reset.
- Stripe for payment and billing processes where paid features are used.
- LobHub customers and their authorized workspace members where they manage testimonials.
- Visitors to customer websites where approved testimonials are displayed through widgets.
- Tax advisors, authorities or courts where there is a legal obligation.
Where providers outside the EU or EEA are involved, or access from third countries cannot be excluded, we rely on appropriate safeguards, in particular EU Standard Contractual Clauses or an adequacy decision where applicable.
6. Publication of testimonials
A testimonial is not displayed publicly by default. It is first submitted, stored in LobHub and reviewed by the relevant LobHub customer. It is displayed in a widget only if the testimonial has been approved and the documented consent includes the website channel.
Depending on the consent and the customer's use, name, company, role, rating, text, photo and submission date may be displayed on the customer's websites. Photos and logos are delivered through publicly accessible storage URLs so they can load on external websites.
7. Cookies, local storage and similar technologies
In the app and the public widget we do not use marketing or tracking cookies. The public widget does not set cookies and does not store information in the browser. On the landing page lobhub.de we use Google Analytics only with your explicit consent (see below). Without consent, no analytics cookies are set and no data is transmitted to Google.
-
lh.auth.v1: The app stores access and refresh tokens and basic session data in local storage so logged-in users can use the service. -
lobhub.langandlobhub-lang: The selected language is stored in local storage on the landing page and in the app. -
lobhub.consent.v1: On the landing page, your cookie choice (accepting or rejecting analytics) is stored in local storage so the banner does not reappear on every visit. - Some public pages load Google Fonts. In that case, the browser may transmit technical connection data such as the IP address to Google.
Where information is stored on or read from a user's device, this happens for technically necessary functions or based on consent under the applicable rules for terminal equipment.
Google Analytics 4 (consent-based)
On the landing page we use the web analytics service Google Analytics 4. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; a transfer to Google LLC in the USA cannot be excluded. Google processes the data as a processor on our instructions.
With your consent, Google Analytics processes in particular a truncated IP address, a
random client or device identifier (the _ga cookie), pages viewed, time
on page, referrer, approximate region and device and browser information. The purpose
is the statistical analysis of website usage in order to improve our content and
offering. No cross-device profiling for advertising purposes takes place.
Legal basis is your consent under Art. 6(1)(a) GDPR and § 25(1)
TDDDG. We use Google Consent Mode v2: all consent signals default to
"denied", and the analytics tag (gtag.js) is only loaded after
you opt in. Before consent, no cookies are set and no hits are sent to Google.
Retention: the _ga cookie has a lifetime of up to two
years; data collected at user and event level is deleted after the retention period
configured in Google Analytics (at most 14 months). Aggregated, non-personal reports
may be retained beyond that.
Withdrawal and opt-out: you can withdraw your consent at any time with effect for the future. Use the "Cookie settings" link in the footer and choose "Reject". After withdrawal, no further analytics data is collected.
8. Deletion and retention
We store personal data only for as long as it is required for the relevant purposes or legal obligations require retention.
- Account data is stored while the account is used. After account deletion, the account is first deactivated and scheduled for final deletion after 30 days; a purge job regularly removes due accounts.
- Testimonials and consent data remain stored until they are deleted by the customer, a form is deleted or the data subject withdraws consent. On withdrawal, the testimonial is removed from active display and the related file is deleted where present.
- Audit entries are retained to trace moderation, changes, withdrawals and deletions. They may contain metadata, reasons and, for edits, old or new text values.
- Database backups are retained according to the operational backup concept. In production, point-in-time recovery and a limited number of backups are enabled. Upload buckets use versioning; older object versions are deleted according to the configured lifecycle rule.
- Commercial and tax-relevant records are stored for the statutory retention periods.
9. Rights of data subjects
Under the GDPR, you have the right of access, rectification, erasure, restriction of processing, data portability, objection to processing based on legitimate interests and withdrawal of consent with effect for the future.
For data that we process on behalf of a LobHub customer, we forward requests to the relevant customer or support the customer in handling them. You can still contact us at any time at hallo@lobhub.de.
You also have the right to lodge a complaint with a data protection supervisory authority. For Ainstainer DACH GmbH, the competent authority is generally the Bavarian Data Protection Authority (BayLDA), Promenade 18, 91522 Ansbach, Germany: www.lda.bayern.de.
10. Security and data minimization
LobHub uses TLS, role-based workspace access, hashed passwords, hashed tokens, IP hashing instead of storing raw IP addresses in the application database, rate limiting, EXIF removal for images and technical separation by workspace. Cloud SQL does not store client IP addresses in Query Insights.
We do not use automated decision-making, including profiling, within the meaning of Art. 22 GDPR.
11. Changes to this Privacy Policy
We update this Privacy Policy when LobHub, our processing, service providers or legal requirements change. The current version is available at https://lobhub.de/privacy.