Quivena Website Privacy Policy

Last updated: February 25, 2026

Introduction

This Website Privacy Policy explains how Quivena collects, uses, and shares personal data when you visit our public website and landing pages. It applies to browser-based interactions only and is separate from the App Privacy Policy that covers the Quivena mobile application.

Data Controller: The website is operated by Christoph Labestin (the developer of Quivena), referred to as "we," "us," or "our." If you have any questions about this Policy or your data, please contact us at mail@quivena.app or by post at: Christoph Labestin, Oedwieser Weg 7, 84082 Laberweinting, Germany.

Important: This website is intended for users 18 years of age or older. We do not knowingly collect personal data from anyone under 18 via the website.

Scope and Definitions

This Policy covers data processed when you access or use the website, including pages served at quivena.app (or successor domains), our marketing pages, and any web-based forms hosted on these pages.

  • Personal Data: Any information that can identify you directly or indirectly, such as email address, IP address, or device identifiers.
  • Processing: Any operation performed on personal data, such as collection, storage, use, disclosure, or deletion.
  • Controller: The entity determining the purposes and means of processing personal data.

Information We Collect

We collect limited information to operate the website, understand traffic, and respond to requests. We do not collect information beyond what is described below.

1. Information You Provide

  • Contact Forms: If you contact us, we collect your name, email address, and message content so we can respond.
  • Waitlist or Newsletter Signups: If you join a waitlist or subscribe to updates, we collect your email address and any optional information you provide.
  • Optional Feedback: If you provide feedback or survey responses, we collect the information you choose to submit.

2. Information Collected Automatically

  • Server Logs: Our hosting provider records standard log data such as IP address, request timestamps, requested pages, and response codes. We use logs for security, troubleshooting, and performance monitoring.
  • Device and Browser Data: We may collect device type, operating system, browser version, and approximate location derived from IP address to optimize the site experience and investigate errors.
  • Cookie Consent Status: We store your cookie preference (accept or decline) so the banner behaves correctly on future visits.

3. Information from Third Parties

  • Analytics Providers: If you opt in, Google Analytics and Microsoft Clarity provide aggregated reports such as page views, session patterns, and referring sources.
  • Embedded Content: If we embed third-party content (e.g., videos or widgets), that provider may set cookies or collect data in accordance with their own policies. We will indicate such cases where applicable.

Cookies and Tracking Technologies

We use cookies and similar technologies on the website. You control non-essential cookies through our consent banner.

  • Essential Cookies: Required for core site functionality, including remembering your cookie preferences.
  • Analytics Cookies (Optional): Used to measure website usage. These tools run only after you opt in. We configure Google Analytics with IP anonymization and use consent-gated Clarity session analytics.
  • Cookie Management: You can withdraw consent at any time by clearing cookies or using browser settings to block cookies from our site.
  • Do Not Track: The website does not currently respond to browser Do Not Track signals. We rely on the consent banner for analytics control.

You can reopen preferences at any time via "Cookie settings" in the website footer.

How We Use Website Data

  • Responding to Requests: Use contact form data to reply to inquiries.
  • Improving the Website: Analyze aggregated traffic trends to improve content, navigation, and performance.
  • Security and Abuse Prevention: Use logs and IP data to detect fraud or malicious activity.
  • Operational Communications: Send requested updates or responses when you opt in.
  • Compliance: Meet legal obligations, enforce terms, and protect rights.

Legal Bases for Processing (GDPR)

For users in the EEA or UK, we process personal data under one or more of the following legal bases:

  • Consent: For analytics cookies and optional communications (e.g., newsletter or waitlist).
  • Legitimate Interests: For site security and service improvement where your rights do not override our interests.
  • Contract or Pre-Contract Steps: When you request information or services, we process data to respond to those requests.
  • Legal Obligation: If required by law to retain or disclose certain data.

How We Share Website Data

We do not sell your personal data. We share data only with service providers and in limited legal situations.

  1. Service Providers
    • Hosting and CDN: Our hosting provider processes request logs and delivers site content.
    • Analytics: Google Analytics and Microsoft Clarity process usage data only if you consent.
    • Email Providers: If we send emails (e.g., waitlist confirmations), your email address may be processed by an email service provider.
  2. Legal Compliance

    We may disclose data if required by law, court order, or to protect our rights and users.

  3. Business Transfers

    If Quivena is involved in a merger, acquisition, or asset sale, website data may be transferred to the new owner subject to this Policy.

International Data Transfers

Website data may be processed in countries outside your own, depending on our hosting and analytics providers. Where required, we rely on safeguards such as Standard Contractual Clauses or equivalent lawful transfer mechanisms.

Data Retention

  • Contact Requests: Retained as long as needed to respond and for a reasonable follow-up period.
  • Waitlist or Newsletter: Retained until you unsubscribe or request deletion.
  • Logs and Analytics: Retained for a limited period based on operational needs and provider defaults.
  • Attribution Storage: Campaign attribution data in local storage is kept only when analytics consent is active and is cleared when analytics consent is withdrawn.

International Addenda

Jurisdiction-specific privacy and consumer-rights disclosures are provided in our addenda pages:

Your Rights and Choices

Depending on your location, you may have the right to:

  • Access: Request a copy of the data we have about you.
  • Correction: Ask us to correct inaccurate information.
  • Deletion: Request deletion of your personal data.
  • Restriction: Request limits on processing in certain circumstances.
  • Objection: Object to processing based on legitimate interests.
  • Consent Withdrawal: Withdraw consent for analytics or communications at any time.
  • Data Portability: Request a portable copy of certain data you provided.
  • Complaint: Lodge a complaint with a data protection authority.

To exercise these rights, contact mail@quivena.app.

Security

We use reasonable technical and organizational measures to protect your data. These include HTTPS encryption, access controls, and secure hosting practices. However, no method of transmission or storage is completely secure.

Data Protection Authority

If you are in the EEA or UK, you have the right to lodge a complaint with your local data protection authority. We encourage you to contact us first so we can address your concerns promptly.

Changes to This Policy

We may update this Website Privacy Policy from time to time. We will update the effective date and post the new version on this page.

Contact Us

If you have any questions or requests about this policy, contact:

  • Email: mail@quivena.app
  • Postal Mail:
    Christoph Labestin
    Oedwieser Weg 7
    84082 Laberweinting
    Germany