AriseNote

Data Processing Agreement

Last Updated: May 17, 2026

This Data Processing Agreement ("DPA") applies when AriseNote processes personal data from your Notion databases on your behalf.

AriseNote is operated by:

Maksim Gusev
Hildegard-Knef-Straße 3
85053 Ingolstadt, Germany
Email: support@arisenote.com

This DPA forms part of the AriseNote Terms of Service.

1. Roles

For account, billing, website, and service usage data, AriseNote is generally the data controller. This is covered by the Privacy Policy.

For personal data contained in your connected Notion databases:

  • you are the controller;
  • AriseNote is the processor;
  • AriseNote processes that data only to provide the Service.

2. Processing Instructions

You instruct AriseNote to process selected Notion data for the following purposes:

  • reading selected Notion databases;
  • temporarily caching data for performance;
  • displaying data through widgets you create;
  • storing widget configuration settings;
  • maintaining and securing the Service.

AriseNote will not:

  • sell your Notion data;
  • use your Notion data to train AI models;
  • process your Notion data for unrelated purposes.

3. Type of Data

The data processed may include any personal data you store in connected Notion databases, such as:

  • names;
  • email addresses;
  • phone numbers;
  • project notes;
  • task descriptions;
  • other information you choose to connect.

You are responsible for ensuring that you have the right to connect this data to AriseNote.

4. Duration

AriseNote processes connected Notion data for as long as your account or subscription is active, or until you disconnect the relevant Notion workspace, page, or database.

Notion database contents are not permanently stored by AriseNote. They may be temporarily cached for performance, generally for less than 24 hours.

5. Security

AriseNote uses reasonable technical and organizational measures to protect personal data, including:

  • encryption in transit;
  • access controls;
  • secure hosting;
  • password hashing;
  • monitoring and logging;
  • regular updates;
  • deletion of inactive access tokens where appropriate.

6. Sub-processors

AriseNote may use trusted service providers to operate the Service, including:

  • Hetzner — hosting;
  • Notion — API integration;
  • Stripe — payments;
  • Mailgun — emails;
  • AWS S3 — file storage;
  • IP-API — IP geolocation;
  • Plausible — analytics, if used.

Where required, AriseNote enters into appropriate data protection agreements with these providers.

Some providers may process data outside the EU. Where this happens, AriseNote uses appropriate safeguards such as Standard Contractual Clauses or other lawful transfer mechanisms.

7. Assistance With Data Rights

If you receive a request from a person whose data is in your connected Notion database, AriseNote will provide reasonable assistance where needed.

In many cases, you can handle such requests directly in Notion by editing or deleting the relevant data.

If you need help, contact:

support@arisenote.com

8. Data Breach Notification

If AriseNote becomes aware of a personal data breach affecting your connected Notion data, we will notify you without undue delay and, where feasible, within 72 hours.

The notice will include available information about:

  • what happened;
  • what data may be affected;
  • what we are doing to address the issue;
  • what steps you may need to take.

9. Deletion and Return

You can delete or disconnect your Notion data by:

  • deleting widgets;
  • disconnecting Notion access;
  • deleting your AriseNote account.

Upon account deletion:

  • active Notion tokens will be deleted or revoked;
  • widget configurations will be deleted;
  • most account data will be deleted within 30 days;
  • Notion database contents are not permanently stored and temporary cache expires automatically;
  • records required by law, such as invoices, may be retained as required.

10. International Transfers

AriseNote is based in Germany and generally hosts EU user data in Germany.

Some providers, such as Notion, Stripe, AWS, or Mailgun, may process data outside the EU.

For transfers outside the EU, EEA, UK, or Switzerland, AriseNote uses appropriate safeguards such as Standard Contractual Clauses, adequacy decisions, or other lawful mechanisms.

11. Audits and Information

You may request reasonable information about AriseNote's data protection and security measures by contacting:

support@arisenote.com

We may provide documentation or written answers where reasonably necessary to show compliance with this DPA.

12. Liability

Liability under this DPA is subject to the liability rules in the Terms of Service.

Nothing in this DPA limits liability where such limitation is not permitted by applicable data protection law.

13. Changes

We may update this DPA from time to time.

If we make material changes, we will notify you by email or through the Service.

Continued use of AriseNote after changes take effect means you accept the updated DPA.

14. Contact

For questions about this DPA or data protection:

Email: support@arisenote.com

Postal Address:
Maksim Gusev
Hildegard-Knef-Straße 3
85053 Ingolstadt, Germany

Related Policies