Política de privacidad

Last upfechad: March 2026

1. Data Controller

The data controller within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws as well as other data protection provisions is:

Fairsend GmbH
Beim Braunstall 7
97980 Bad Mergentheim
Alemania
Phone: +49 7931 9680271
Correo electrónico: info@fairsend.de
Managing Director: Josef Weinmann

2. General Information on Data Processing

We process personal data of our users only to the extent necessary to provide a functional platform and our content and services. The processing of personal data of our users takes place regularly only with the consent of the user. An exception applies in cases where prior consent cannot be obtained for practical reasons and the processing of data is permitted by law.

3. Legal Basis for Processing

Art. 6(1)(a) GDPR — Consent of the data subject.
Art. 6(1)(b) GDPR — Performance of a contract or pre-contractual measures.
Art. 6(1)(c) GDPR — Compliance with a legal obligation.
Art. 6(1)(f) GDPR — Legitimate interests, provided that the interests or fundamental rights of the data subject do not prevail.

4. Deletion and Almacenamiento Duration

Personal data will be eliminard or bloqueado as soon as the purpose of almacenamiento ceases to apply. Almacenamiento may continue beyond this if provided for by European or national legislators in EU regulations, laws, or other provisions to which the controller is subject (e.g., commercial and tax retention obligations pursuant to § 147 AO, § 257 HGB).

5. Server Log Archivos

The provider of the pages automatically collects and stores information in server log archivos that your browser automatically transmits to us:

— IP address (anonymized after 30 días)
— Fecha and time of the request
— Requested page or archivo nombre
— Referrer URL (previously visited page)
— Browser and operating system used
— Importe of data transferenciared

This data cannot be attributed to specific persons. A combination of this data with other data sources is not carried out. Legal basis: Art. 6(1)(f) GDPR (legitimate interest in the seguridad and stability of the system).

6. User Cuenta / Registration

During registration, we collect: first and last nombre, correo electrónico address, contraseña (stored as bcrypt hash). Opcionally: proarchivo picture, company. Data is stored for contract performance (Art. 6(1)(b) GDPR) and eliminard immediately upon cuenta deletion, subject to statutory retention obligations.

7. Transferenciaencia de archivos (Core Function)

Fairsend enables the secure transferencia of archivos. All archivos are cifrado client-side in the remitente's browser using AES-256-GCM before they reach our servers. The decryption key is transmitted exclusively via the URL fragment (#) and never reaches our servers.

We have no technical ability to view, analyze, or filter the content of transferenciared archivos. After expiration of the retention period determined by the user or the plan, the cifrado archivos are automatically and irretrievably eliminard.

In the context of a transferencia, we process: remitente correo electrónico, destinatario correo electrónico(s), ID de seguimiento, timestamp, archivo tamaño (cifrado), expiration fecha, IP address (for abuse detection). The archivo contents themselves are not accessible to us.

8. Correo electrónico Communication

We send exclusively transactional correo electrónicos (verification codes, delivery notifications, comprobante de entrega, cuenta notifications) via our own mail server hosted in Alemania. No external correo electrónico service providers are used. No newsletters are sent without explicit consent.

9. Pago Processing

Pagos are processed through Mollie B.V. (Keizersgracht 126, 1015 CW Amsterdam, Netherlands). Mollie is a PCI-DSS Level 1 certified pago service provider. Creditar and bank data is processed exclusively by Mollie and never reaches our servers. Legal basis: Art. 6(1)(b) GDPR (contract performance). Mollie política de privacidad: https://www.mollie.com/privacy

10. Hosting and Server Location

Our servers are operated exclusively in Alemania (weinmann-edv GmbH & Co. KG). No transferencia of personal data to third countries takes place. No external CDNs, cloud services, or content delivery networks are used. All resources (JavaScript, CSS, fonts) are served from our own servers.

11. Cookies and Tracking

We use exclusively technically necessary cookies:

— Session cookie (fs_session): Login session, eliminard upon logout
— Theme cookie (fs_theme): Stores preferred display mode (light/dark)
— Language cookie (fs_lang): Stores chosen language
— Accessibility cookies (fs_fonttamaño, fs_contrast, etc.): Store individual configuración

We use no tracking, advertising, or marketing cookies. Sin datos is transmitted to Google Analytics, Facebook, or any other third parties. For platform usage analysis, we use self-hosted Matomo, whose data never leaves our servers. IP addresses are anonymized in the process.

12. No Disclosure to Third Parties

Personal data is not transmitted to third parties, except:

— For pago processing to Mollie B.V. (see Section 9)
— In case of legal obligation (e.g., by order of law enforcement authorities)
— To protect legitimate interests in case of suspected abuse

No sale, trade, or other disclosure of personal data to third parties for advertising or marketing purposes takes place and will not take place in the future.

13. Your Rights as a Data Subject

You have the following rights regarding your personal data:

— Right of access (Art. 15 GDPR): You may request information about your data stored by us.
— Right to rectification (Art. 16 GDPR): You may request correction of inaccurate data.
— Right to erasure (Art. 17 GDPR): You may request deletion of your data, provided no statutory retention obligations apply.
— Right to restriction of processing (Art. 18 GDPR): You may request restriction of processing.
— Right to data portability (Art. 20 GDPR): You may receive your data in a machine-readable format.
— Right to object (Art. 21 GDPR): You may object to the processing of your data.
— Right to withdraw consent (Art. 7(3) GDPR): You may withdraw consent at any time.

To exercise your rights, please contact: info@fairsend.de

Additionally, you can export your data at any time or completely eliminar tu cuenta via the cuenta configuración.

14. Right to Lodge a Complaint with a Supervisory Authority

You have the right to lodge a complaint with a data protection supervisory authority regarding the processing of your personal data. The supervisory authority responsible for us is:

The State Commissioner for Data Protection and Gratisdom of Information of Baden-Württemberg
Lautenschlagerstraße 20
70173 Stuttgart
www.baden-wuerttemberg.fechanschutz.de

15. Data Seguridad

We employ comprehensive technical and organizational measures to protect your data:

— Cifrado de extremo a extremo of all transferenciaencia de archivoss (AES-256-GCM)
— TLS cifrado of all platform communications
— Contraseña hashing with bcrypt (cost factor 12)
— CSRF protection on all forms
— Rate limiting against brute-force attacks
— Automatic deletion of archivos after retention period expiry
— No external CDNs, trackers, or third-party scripts whatsoever
— Server location exclusively in Alemania
— Regular seguridad audits and upfechas

16. Changes to This Política de privacidad

We reserve the right to occasionally upfecha this política de privacidad to ensure it always complies with current legal requirements or to implement changes to our services. Your subsequent visit will then be subject to the new política de privacidad.