Privacy Policy

1. B2B Service Only

Signando License Shop is a business-to-business (B2B) service exclusively for commercial enterprises, public institutions, and professional organizations. This service is not intended for private consumers. By using our services, you confirm that you are acting in your capacity as a business entity.

2. Data Controller

The data controller responsible for processing your data is:

Signando GmbH
Wiesenau 32
60323 Frankfurt, Germany
Email: info@signando.de

3. Data We Collect

We collect and process the following data:

• Account Data: Company name, business email address, password (hashed)
• License Data: Root CA fingerprints, license tier, purchase history
• Payment Data: Processed by Stripe; we only store transaction references
• Technical Data: IP addresses, browser information for security purposes

4. Legal Basis (Art. 6 GDPR)

• Contract Performance (Art. 6(1)(b)): Processing necessary to provide our services
• Legal Obligation (Art. 6(1)(c)): Tax and accounting requirements
• Legitimate Interest (Art. 6(1)(f)): Security, fraud prevention, service improvement

5. Data Retention

We retain your data for the duration of our business relationship and for the legally required retention periods thereafter (typically 10 years for tax-relevant documents under German law, § 147 AO).

6. Your Rights

Under GDPR, you have the right to:

• Access your personal data (Art. 15 GDPR)
• Rectify inaccurate data (Art. 16 GDPR)
• Request deletion (Art. 17 GDPR)
• Restrict processing (Art. 18 GDPR)
• Data portability (Art. 20 GDPR)
• Object to processing (Art. 21 GDPR)
• Lodge a complaint with a supervisory authority

7. Data Processors

We use the following third-party processors:

• Stripe, Inc.: Payment processing (USA, EU-US Data Privacy Framework certified)
• Amazon Web Services EMEA SARL: Hosting services (Frankfurt, Germany, eu-central-1)

8. Contact

For privacy-related inquiries, please contact us at info@signando.de