Privacy Policy
How we handle your data - Last updated: January 2025
1. Responsible Party
QSP - Qualitäts Software Pollerspöck
Bernhard Pollerspöck
Grabenstraße 15a, 5230 Mattighofen, Austria
Email: office@qsp.app
We process personal data in accordance with the EU General Data Protection Regulation (GDPR) and the Austrian Data Protection Act (DSG).
2. Data We Collect
We collect only the minimum data necessary to operate the service:
2.1 Connection Data
- IP addresses - for security and abuse prevention
- Connection timestamps - when nodes connect and disconnect
- Node identifiers - to route traffic correctly
2.2 Account Data
- Email address - for account management and billing
- Company/Name - for invoicing purposes
- API keys - for service authentication
Account data is retained until you delete your account or request deletion.
2.3 Server Logs
Our servers automatically log access requests for security purposes. These logs contain IP addresses, timestamps, and request metadata.
3. What We Do NOT Collect
- We do not log the content of proxied requests
- We do not use tracking cookies or analytics
- We do not share data with third-party advertisers
- We do not sell your data
4. Cookies
We use only technically necessary cookies for:
- Session management (keeping you logged in)
- CSRF protection (security)
We do not use tracking cookies, advertising cookies, or third-party analytics services.
5. Data Processing
Your data is processed for the following purposes:
- Service operation - routing proxy traffic through our tunnels
- Security - detecting and preventing abuse
- Billing - calculating usage and generating invoices
- Support - responding to your inquiries
Legal basis: Contract fulfillment (Art. 6(1)(b) GDPR) and legitimate interests (Art. 6(1)(f) GDPR).
6. Data Sharing
We do not share your personal data with third parties except:
- Hosting provider - IONOS SE (servers in Germany/Austria, GDPR compliant)
- Legal requirements - if required by law or court order
7. Data Security
We implement appropriate security measures:
- TLS encryption - all connections are encrypted
- Certificate pinning - nodes verify server identity
- EU hosting - servers located in Germany and Austria
- Access controls - strict internal access policies
8. Your Rights
Under GDPR, you have the right to:
- Access - request a copy of your data
- Rectification - correct inaccurate data
- Erasure - request deletion of your data
- Portability - receive your data in a machine-readable format
- Object - object to certain processing activities
- Complaint - file a complaint with the Austrian Data Protection Authority (dsb.gv.at)
To exercise your rights, contact us at office@qsp.app.
9. Data Retention
| Data Type | Retention Period |
|---|---|
| Server logs | As needed for operations |
| Connection data | As needed for operations |
| Account data | Until account deletion |
| Invoices | 7 years (legal requirement) |
10. Changes to This Policy
We may update this privacy policy from time to time. Significant changes will be communicated via email to registered users. The current version is always available on this page.
11. Contact
For privacy-related inquiries:
office@qsp.app