AriseNote

Privacy Policy

Last Updated: December 10, 2025

1. Introduction

Your privacy is important to us. This Privacy Policy ("Policy") applies to services provided by Maksim Gusev ("we", "us", or "our"), operating as AriseNote, and our website (the "Site"), product pages, mobile or web applications, or other digital products that link to or reference this Policy (collectively, the "Services") and explains what information we collect from users of our Services (a "user", "you", or "your"), including information that may be used to personally identify you ("Personal Information") and how we use it.

πŸ”’ Our Privacy Commitments:

❌ AriseNote does NOT:

  • Sell your personal data
  • Train AI models on your data
  • Share your Notion content with third parties
  • Permanently store your Notion database contents
  • Track you across websites

βœ… AriseNote DOES:

  • Read your Notion data only in real-time to display widgets
  • Temporarily cache data for performance (< 24 hours)
  • Store data in secure EU servers (for EU users)
  • Give you full control over your data
  • Comply with GDPR, UK GDPR, and CCPA

We encourage you to read the details below. This Policy applies to any visitor to or user of our Services. Any capitalized terms used herein but not defined shall have the meaning set forth in our Terms of Service.

We reserve the right to change this Policy at any time. We will notify you of any changes to this Policy by posting a new Policy to this page and/or by sending notice to the primary email address specified in your account. You are responsible for ensuring we have an up-to-date active and deliverable email address for you, and for periodically reviewing this Policy to check for any changes. Changes to this Policy are effective when they are posted on this page. You acknowledge that your continued use of our Services after we publish or send a notice about our changes to this Policy means that the collection, use and sharing of your Personal Information is subject to the updated Policy.

Data Controller:

Maksim Gusev (Einzelunternehmer)
Hildegard-Knef-Straße 3
85053 Ingolstadt, Bayern
Germany

Contact: help@arisenote.com

2. Scope and Applicability

This Policy applies to your information when you visit our website or otherwise use the Services. Please note that this Policy does not apply to the extent that we process Personal Information in the role of a processor (or a comparable role such as a "service provider" in certain jurisdictions) on behalf of our users, including where we collect data from Notion databases on behalf of our users, or where our users otherwise collect, use, share or process Personal Information via our Services.

Important Note on Customer Data: When you connect your Notion workspace to AriseNote and grant us access to specific databases, you remain the controller of that data. We process this data on your behalf to provide the widget functionality you requested.

How We Handle Your Notion Data:

βœ… What we DO:

  • Read database contents in real-time when rendering widgets
  • Temporarily cache data for performance (less than 24 hours)
  • Display the data through widgets as you configured

❌ What we DON'T do:

  • Store Notion database contents permanently in our database
  • Use your Notion data for AI training or machine learning
  • Analyze your Notion content for any purpose other than displaying widgets
  • Share your Notion database contents with third parties

Each user, not AriseNote, controls what information is collected from their Notion workspace through Notion's permission system.

This Privacy Policy also does not apply to any third-party applications or services that are used in connection with our Services, or any other products, services or accounts provided by other entities under their own terms of service and privacy policy (collectively, "Third-Party Services"). For example, you may connect third party applications and platforms (such as Notion, Google, Stripe) to AriseNote. These Third-Party Services are not part of our Services and are provided by independent third parties under their policies and terms. Lastly, the Site or Services may contain links to other websites. We have no control over these websites and they are subject to their own terms of use and privacy policies.

3. What Information Do We Collect?

3.1 Information You Provide to Us

  • Account Information. To create an account for the Services or to enable certain features, we may require that you provide us with information for your account such as name, email, profile picture, password (stored as salted hashes if you use email/password authentication), and authentication credentials.
  • Payment Information. If you sign up for a paid subscription, we (or our payment processors) may need your billing details such as credit card information, banking information, and billing address. Your payment information, such as your payment method (valid credit card number, type, expiration date or other financial information), is collected and stored by our third party payment processing company (the "Payment Processor") and use and storage of that information is governed by the Payment Processor's applicable privacy policy. Stripe is the Payment Processor used within the Services and its privacy policy is available at https://stripe.com/privacy. In order to facilitate your order transactions, we collect and store your credit card type, the last four digits of your credit card number, and expiration date, but no other financial information.
  • Customer Data. In using our Services, you may submit or upload data from your Notion workspace, including database contents, seek customer support, or provide other data to us. When you connect your Notion account, you explicitly select which pages and databases to grant us access to. We read this data in real-time to provide widget functionality. We temporarily cache this data for performance purposes (for less than 24 hours) but do not permanently store the contents of your Notion databases in our systems. Our use of and processing of Customer Data is governed by our Terms of Service and Data Processing Agreement.
  • Profile Information. You may optionally upload a profile avatar, which we store on Amazon Web Services (AWS) S3.
  • Business Contact Information. If you are a business representative, we collect your information in connection with the performance of the agreement or potential agreement with us. This information may include your first name, last name, contact information (e.g., email, phone, address), job title, and any other information related to the performance of the agreement with us.
  • Other Information You Provide. We receive other information from you when you choose to interact with us in other ways, such as if you participate in surveys, provide feedback, or otherwise communicate with us.

3.2 Information We Collect Automatically

When you visit, use, and interact with the Services, we may receive the following information about your visit, use, or interactions ("Technical Information"):

  • Log Data. Information that your browser automatically sends whenever you use our website ("log data"). Log data includes your internet protocol address, browser type and settings, the date and time of your request, and how you interacted with our website.
  • Usage Data. We may automatically collect information about your use of the Services, such as the types of content that you view or engage with, the features you use and the actions you take, as well as your time zone, country, the dates and times of access, user agent and version, type of computer or mobile device, and the like.
  • Device Information. Includes name of the device, operating system, and browser you are using. Information collected may depend on the type of device you use and its settings.
  • Analytics. We use a self-hosted Plausible Community Edition instance to collect anonymized usage statistics and help us analyze how users use our Services and enhance your experience when you use the Services. This is privacy-focused analytics that does not track individual users across websites and does not use cookies.

We use cookies and other tracking technologies to help us collect and process Technical Information. Please see the "How Do We Use Tracking Technologies" section below for more information.

3.3 Information We Receive from Third Parties

  • Third-Party Authentication. If you sign up or login to our Services using one of our sign-on providers (Google), we collect authentication information provided to us by the provider to allow you to log in, including your name, email address, user ID, and profile avatar from Google.
  • Notion Integration Information. When you connect your Notion account, we receive user information from Notion (email, name, avatar, user ID) and a list of databases you've granted access to. We also receive access tokens that allow us to read the contents of selected databases in real-time.
  • Service Providers. We may receive information from our service providers, who help us operate our business.
  • Information from Other Sources. We may obtain information from other sources, including, but not limited to, publicly available sources, third-party data providers, and through transactions such as mergers and acquisitions. We may combine this information with other information we collect from or about you.

4. How Do We Use Tracking Technologies?

Some of the features on the Services may require the use of "cookies" - small text files that are stored on your device's hard drive. We use cookies to enable our servers to recognize your web browser and tell us how and when you visit and use our Services, to remember your preferences, analyze trends, learn about our user base, provide relevant functionality, and operate and improve our Services. We may supplement the information we collect from you with information received from third parties, including information collected using third party cookies.

You may delete and block all cookies from our Services, but parts of the Services may not work or your overall user experience may be diminished, since it will no longer be personalized to you. It may also prevent you from saving customized settings, like log-in information.

We want to be open about our cookie use. The following sets out how we may use different categories of cookies and your options for managing cookie settings:

Required Cookies:

  • Purpose: Essential for site functionality. Enable you to navigate the Services and use their features, such as accessing secure areas and maintaining your login session.
  • Cannot be disabled: Because required cookies are essential to operate the Services, there is no option to opt out of these cookies.

Performance Cookies:

  • Purpose: Self-hosted Plausible analytics collects anonymized information about how you use our Services. These cookies do not collect information that individually identifies you. Privacy-focused analytics without cross-site tracking.
  • Can be blocked: Performance cookies can be blocked using browser settings or ad-blocking tools. To learn how to manage cookies in your browser, search for "manage cookies" in your browser's help menu.

Note: We do not use functionality cookies that remember your preferences beyond what is strictly necessary for the Service to function.

5. How Do We Use The Information We Collect?

We use the information we collect:

  • To deliver and improve the Services and your overall user experience
  • To provide and maintain the AriseNote service, including displaying interactive widgets based on your Notion database content
  • To create and manage your account, authenticate your access, and communicate with you about your account
  • To process subscription payments through our Payment Processor
  • To analyze usage patterns and improve our service functionality (using anonymized data only)
  • To send you service-related emails, including notifications, confirmations, invoices, technical notices, updates, security alerts, and support and administrative messages
  • To respond to your comments and questions and provide customer service
  • To protect, investigate, and deter against fraudulent, unauthorized, or illegal activity
  • To conduct internal reporting, auditing, and research, including surveys and user feedback analysis
  • To compare and verify information for accuracy and update our records
  • To link or combine user information with other Personal Information we collect
  • To develop, improve or expand our business, products and services
  • To send you information about new features, products, events, or other opportunities we think may be of interest to you (you can opt-out of marketing communications)
  • In connection with a merger, acquisition, reorganization or similar transaction
  • When required by law or to respond to legal process
  • To protect our users, other individuals, and/or the rights or property of AriseNote
  • To maintain the security of the Services
  • At your direction or instruction, or for any other purpose with your consent
  • To create aggregate and de-identified data. We will maintain such data in a de-identified form and will not attempt to re-identify any de-identified data, except that we may attempt to re-identify the data solely for the purpose of determining whether our deidentification processes are compliant with applicable laws

We do NOT use your information to:

  • Train AI or machine learning models
  • Analyze your Notion database content for any purpose other than displaying widgets
  • Provide targeted advertising
  • Track you across websites
  • Sell to third parties

Legal Basis for Processing (GDPR):

  • Performance of contract - providing the service you signed up for
  • Legitimate interests - improving our service, security, fraud prevention, and internal operations
  • Consent - for non-essential cookies and marketing communications
  • Legal obligation - compliance with applicable laws and regulations

6. Do We Share Your Personal Information?

In addition to the specific situations discussed elsewhere in this privacy policy, we disclose personal information in the following circumstances:

  • With our corporate affiliates and subsidiaries for business purposes
  • With you - we provide you access to the Customer Data you have connected through Notion integration
  • With third parties that perform services to support our core business functions and internal operations, which may include:
    • Database administrators and cloud computing services (Hetzner for hosting)
    • Hosting and technology infrastructure providers (Hetzner, AWS S3)
    • Payment processors (Stripe - see "Payment Information" section above)
    • Email delivery service providers (Mailgun)
    • Integration service providers (Notion API)
    • Analytics service providers (self-hosted Plausible)
    • Support and customer service providers
    • Security and fraud prevention service providers
  • To support our audit, compliance, and corporate governance functions
  • In connection with a change of ownership or control of all or part of our business (such as a merger, acquisition, reorganization, or bankruptcy)
  • If we have a good-faith belief that access, use, preservation, or disclosure of such information is reasonably necessary to detect, protect against or investigate fraud or security issues
  • If required or permitted by applicable law or regulation, including laws and regulations of the United States, Germany, and other countries, or in the good faith belief that such action is necessary to:
    • (a) comply with a legal obligation or in response to a request from law enforcement or other public authorities
    • (b) protect and defend the rights or property of AriseNote
    • (c) act in urgent circumstances to protect the personal safety of users and contractors/employees of AriseNote or others
    • (d) enforce our Terms of Service or otherwise protect against any legal liability
  • With your consent or at your direction

We do not sell, rent, or share your personal information with advertisers or data brokers.

For a complete list of our subprocessors (third-party service providers), please see Section 6.1 below and our Subprocessors page.

6.1 Detailed List of Service Providers

Stripe (Payment Processing)

  • Purpose: Processing subscription payments
  • Data Shared: Billing information, email address, last four digits of credit card
  • Location: United States
  • Privacy Policy: https://stripe.com/privacy
  • Why we need this: Required for secure payment processing; no alternative available

Notion (Integration Service)

  • Purpose: Accessing your selected Notion databases to display widgets
  • Data Shared: Access tokens for databases you explicitly grant permission to
  • Location: United States
  • Privacy Policy: https://www.notion.so/Privacy-Policy
  • Why we need this: Core functionality; you choose to connect your Notion workspace

Amazon Web Services (AWS) S3 (File Storage)

  • Purpose: Storing user-uploaded profile avatars
  • Data Shared: Profile images
  • Location: United States (us-east region)
  • Privacy Policy: https://aws.amazon.com/privacy/
  • Why we need this: Profile avatar storage

Mailgun (Email Delivery)

  • Purpose: Sending service-related and transactional emails from our domain
  • Data Shared: Email address, name, email content
  • Location: United States
  • Privacy Policy: https://www.mailgun.com/legal/privacy-policy/
  • Why we need this: Transactional email delivery

Hetzner (Server Hosting)

  • Purpose: Hosting application servers, database, and self-hosted analytics
  • Data Shared: All data stored in our systems
  • Location: Germany (EU) for EU users; United States for US users
  • Privacy Policy: https://www.hetzner.com/legal/privacy-policy
  • Why we need this: Primary infrastructure hosting

Plausible Community Edition (Self-hosted Analytics)

  • Purpose: Understanding usage patterns to improve our service
  • Data Shared: Anonymized page views and events (no personal data)
  • Location: Self-hosted on our Hetzner servers
  • Note: Privacy-focused analytics without cross-site tracking or personal data collection
  • Why we need this: Service improvement through anonymized usage analytics

7. Managing Your Privacy

7.1 Account Management

All users may request to review, update, correct or delete the Personal Information furnished by a user in their user account by contacting us at help@arisenote.com or by accessing your user account settings.

For your protection, we may only share and update the Personal Information associated with the specific email address that you use to send us your request, and we may need to verify your identity before doing so. We will try to comply with such requests in a reasonably timely manner.

7.2 Account Deletion

If you wish to cancel your account, you may do so through your account settings page. Upon account deletion:

Immediate Deletion:

  • Widget configurations and settings
  • Active sessions and access tokens
  • Any associated metadata

Retained for 30 Days (then permanently deleted):

  • Account information and credentials
  • Profile avatars stored in AWS S3
  • Transaction records required for accounting (as required by law)
  • Support correspondence

Not Stored:

  • Your Notion database contents (never permanently stored, only cached temporarily for < 24 hours)

After the 30-day retention period, all your personal data is permanently and irrevocably deleted.

Please note that we may retain information that is otherwise deleted in de-identified and aggregated form, in archived or backup copies as required pursuant to records retention obligations, or otherwise as required by law. We may retain an archived copy of your records as required by law or for legitimate business purposes.

7.3 Marketing Communications

We may use some of the information we collect for marketing purposes, including to send you promotional communications about new AriseNote features, products, events, or other opportunities. If you wish to stop receiving these communications or to opt out of use of your information for these purposes, please follow the opt-out instructions, such as clicking "Unsubscribe" (or similar opt-out language) in those communications. You may also change your marketing email preferences via your account settings.

Note that even if you opt out of marketing communications, we will still send you transactional and service-related emails, such as those about your account, security updates, or responses to your inquiries.

8. Your Rights

8.1 Rights Under GDPR (for EU/EEA Users)

You have the following rights regarding your personal data:

  • Right to Access: Request a copy of the personal data we hold about you in JSON, CSV, or original file formats.
  • Right to Rectification: Request correction of inaccurate or incomplete personal data.
  • Right to Erasure ("Right to be Forgotten"): Request deletion of your personal data when it is no longer necessary for the purposes for which it was collected.
  • Right to Restrict Processing: Request restriction of processing your personal data in certain circumstances.
  • Right to Data Portability: Request transfer of your data to another service provider in a structured, commonly used, machine-readable format (JSON or CSV).
  • Right to Object: Object to processing of your personal data based on legitimate interests or for direct marketing purposes.
  • Right to Withdraw Consent: Where processing is based on consent, you have the right to withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
  • Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority, particularly in the EU member state of your residence, place of work, or place of alleged infringement.

Data Export Formats:

Upon request, we will provide your personal data in:

  • JSON format for machine-readable structured data
  • CSV format for database exports and tabular data
  • Original file formats for uploaded content (e.g., profile avatars)

8.2 Rights Under CCPA (for California Residents)

If you are a California resident, you have the following rights:

  • Right to Know: Request disclosure of the categories and specific pieces of personal information we have collected about you, the categories of sources, the business purpose for collection, and the categories of third parties with whom we share personal information.
  • Right to Delete: Request deletion of personal information we have collected from you, subject to certain exceptions.
  • Right to Opt-Out of Sale: We do not sell personal information. If our practices change, we will update this policy and provide an opt-out mechanism.
  • Right to Non-Discrimination: You have the right not to receive discriminatory treatment for exercising your CCPA rights.

Categories of Personal Information Collected (CCPA):

In the preceding 12 months, we have collected the following categories of personal information:

  • Identifiers: Name, email, IP address, user ID
  • Commercial information: Subscription details, payment history, transaction records
  • Internet or network activity: Usage data, log data, pages visited
  • Geolocation data: Country, timezone (not precise location)
  • Professional information: Job title, company name (if provided for business accounts)

Business Purposes for Collection:

  • Providing and improving our Services
  • Processing transactions and billing
  • Customer support and communication
  • Security, fraud prevention, and legal compliance
  • Service improvement through anonymized analytics

Disclosure of Personal Information:

In the preceding 12 months, we have:

  • Disclosed personal information to service providers for business purposes as described in Section 6
  • NOT sold personal information to third parties
  • NOT shared personal information for cross-context behavioral advertising

8.3 Exercising Your Rights

To exercise any of these rights, please contact us at help@arisenote.com. We will respond to your request within:

  • 30 days for GDPR requests (may be extended by 2 months where necessary)
  • 45 days for CCPA requests (with possible 45-day extension if necessary)

We may need to verify your identity before processing your request. We encourage you to first reach out to us so we have an opportunity to address your concerns directly.

Where we are deemed a data processor under the laws of certain jurisdictions (for example, when processing your Notion database data), you should contact yourself as the data controller to pursue any such legal data subject rights. We will reasonably cooperate to support and comply with any such data subject rights requests.

9. Data Retention

We retain your Personal Information while your account is in existence or as needed to provide the Services to you. This includes data you or others provided to us and data generated or inferred from your use of the Services.

Specific Retention Practices:

Data TypeRetention PeriodReason
Account data (active)While account is activeService provision
Account data (deleted)30 days after deletionRecovery requests, legal compliance
Customer Data from NotionNot stored permanently; cached < 24 hoursPerformance optimization
Transaction records10 yearsTax and financial regulations
Support tickets3 yearsCustomer service history
Analytics data (anonymized)2 yearsService improvement
Technical logs90 daysSecurity and troubleshooting
Profile avatars30 days after account deletionStorage cleanup
De-identified dataIndefinitelyCannot identify you

Important Notes:

  • Notion Database Contents: Read in real-time, temporarily cached (< 24 hours), never permanently stored
  • Account Deletion: Most personal data deleted immediately; remaining data deleted after 30 days
  • Legal Requirements: Some data (like transaction records) must be retained longer for tax/legal compliance
  • Backup Copies: May exist in backups for up to 30 days after deletion

We will also retain certain information in compliance with legal obligations, to resolve disputes, enforce our agreements, and as otherwise permitted or required by law.

10. Security

We take reasonable steps to protect your Personal Information against unauthorized access, alteration, disclosure, misuse, or destruction. We implement appropriate technical and organizational measures to protect your personal information, including:

  • Encryption:
    • Data in transit encrypted using TLS 1.3
    • Database encryption at rest
    • Secure password hashing with bcrypt and salt
  • Secure Infrastructure:
    • Servers hosted in ISO 27001 certified Hetzner data centers
    • Physical security and access controls
    • Network firewalls and intrusion detection
  • Access Controls:
    • Role-based access control (RBAC)
    • Multi-factor authentication for administrative access
    • Principle of least privilege
    • Regular access reviews
  • Regular Security Assessments:
    • Ongoing security reviews and updates
    • Vulnerability scanning
    • Security patches applied promptly
  • Secure Development Practices:
    • Secure coding standards
    • Code reviews
    • Protection against OWASP Top 10 vulnerabilities
  • Monitoring and Logging:
    • Real-time security monitoring
    • Incident detection and response
    • Audit logs for sensitive operations
  • Data Backup and Recovery:
    • Regular automated backups
    • Disaster recovery procedures
    • Geographic redundancy

If you have an account with us, you are responsible for keeping your account password confidential. We urge you to take steps to keep your Personal Information safe by:

  • Using a strong, unique password
  • Enabling two-factor authentication if available
  • Not disclosing your password to anyone
  • Logging out after each use, especially on shared devices

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your personal information using commercially acceptable means, we cannot guarantee absolute security. By using the Services, you acknowledge that you understand and agree to assume these risks.

If you have any questions about the security of our Services, you can contact us at help@arisenote.com.

11. International Data Transfers

11.1 Our Infrastructure

AriseNote operates servers in two regions:

  • European Union: Hetzner data centers in Germany for EU users
  • United States: Hetzner data centers in the US for US users

We use Amazon Route 53 geo-routing to automatically direct you to the server region nearest to your geographic location.

11.2 Data Storage by Region

Your data is primarily stored in the region that serves your location:

  • EU users: Data stored in Germany (EU)
  • US users: Data stored in United States

11.3 Third-Party Service Providers

Some of our service providers process data in different regions:

  • AWS S3: United States (profile avatars)
  • Stripe: United States (payment processing)
  • Mailgun: United States (email delivery)
  • Notion: United States (API integration)

11.4 Transfers Outside the EEA

For transfers of personal data outside the European Economic Area (EEA), we ensure adequate protection through:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Adequacy Decisions: Reliance on adequacy decisions by the European Commission where applicable
  • Service Provider Compliance: Our service providers comply with applicable data protection frameworks (GDPR, etc.)
  • Technical Safeguards:
    • Encryption in transit (TLS 1.3)
    • Encryption at rest
    • Access controls and authentication
    • Regular security audits

By using the Services, you consent to the transfer of information to countries outside of your country of residence, including the United States, which may have data protection rules that are different from those of your country. In certain circumstances, courts, law enforcement agencies, regulatory agencies or security authorities in those other countries may be entitled to access your Personal Information.

For more details about our data transfer safeguards, see our Data Processing Agreement.

12. Children's Privacy

The Services are not directed to individuals who are under the age of sixteen (16) and we do not solicit nor knowingly collect Personal Information from children under the age of sixteen (16).

If you believe that we have unknowingly collected any Personal Information from someone under the age of sixteen (16), please contact us immediately at help@arisenote.com and the information will be deleted.

13. How We Respond to Do Not Track Signals

Your browser settings may allow you to automatically transmit a Do Not Track (DNT) signal to websites and other online services you visit. We do not alter our practices when we receive a Do Not Track signal from a visitor's browser because we do not track our visitors to provide targeted advertising. We use privacy-focused, self-hosted analytics that do not track users across websites and do not require cookies for analytics purposes.

To find out more about Do Not Track, please visit http://www.allaboutdnt.com.

14. Region-Specific Disclosures

14.1 A Note to California Residents

California "Shine the Light" Law: California Civil Code Section 1798.83 permits California residents to request information regarding disclosure of personal information to third parties for direct marketing purposes. We do not share personal information with third parties for their direct marketing purposes.

California Consumer Privacy Act (CCPA): See Section 8.2 above for detailed information about your rights under CCPA.

14.2 A Note to Nevada Residents

If you are a resident of Nevada, you have the right to opt-out of the sale of certain Personal Information to third parties who intend to license or sell that Personal Information. You can exercise this right by contacting us at help@arisenote.com with the subject line "Nevada Do Not Sell Request" and providing us with your name and the email address associated with your account. Please note that we do not currently sell your Personal Information as sales are defined in Nevada Revised Statutes Chapter 603A.

14.3 A Note to Users Outside the United States

AriseNote is based in Germany (European Union). The Services are controlled and operated by us from Germany. Your Personal Information may be stored and processed in any country where we have facilities or in which we engage service providers. By using the Services, you consent to the transfer of information to countries outside of your country of residence, which may have data protection rules that are different from those of your country.

If you are located in the EU, your data is primarily stored in Germany (EU) unless you are using services that require third-party processors in other regions (as disclosed in Section 6).

14.4 A Note to European Residents (GDPR)

We typically process your information pursuant to the following legal bases:

  • With your consent
  • As necessary to perform our agreement to provide Services to you
  • As necessary for our legitimate interests in operating and improving our business, provided those interests are not overridden by your rights and interests
  • As necessary to comply with a legal obligation to which we are subject

See Section 8.1 above for detailed information about your rights under GDPR.

EU Representative: As we are based in the EU (Germany), we serve as our own representative.

Supervisory Authority: For GDPR-related complaints, you may contact:

Germany (our location): Bayerisches Landesamt fΓΌr Datenschutzaufsicht (BayLDA)
Promenade 18
91522 Ansbach
Germany
Website: https://www.lda.bayern.de

You may also contact your local supervisory authority in your EU member state.

14.5 A Note to UK Residents (UK GDPR)

Following Brexit, UK GDPR applies separately from EU GDPR. We comply with both regulations. Your rights under UK GDPR are equivalent to those listed in Section 8.1.

UK Supervisory Authority:

Information Commissioner's Office (ICO)
Wycliffe House
Water Lane
Wilmslow
Cheshire SK9 5AF
United Kingdom
Website: https://ico.org.uk

14.6 A Note to German Residents (BDSG - Bundesdatenschutzgesetz)

In accordance with the German Federal Data Protection Act (BDSG):

  • You have all rights listed in Section 8.1 (GDPR rights)
  • Right to object to processing (Widerspruchsrecht)
  • Right to complain to the Bavarian Data Protection Authority (BayLDA)
  • German language version of this policy available upon request

ZustΓ€ndige AufsichtsbehΓΆrde:

Bayerisches Landesamt fΓΌr Datenschutzaufsicht (BayLDA)
Promenade 18
91522 Ansbach
Deutschland
Website: https://www.lda.bayern.de

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons. When we make material changes, we will notify you by:

  • Updating the "Last Updated" date at the top of this policy
  • Sending an email notification to the email address associated with your account
  • Displaying a prominent notice on our service

Your continued use of AriseNote after such modifications constitutes your acceptance of the updated Privacy Policy. We encourage you to review this Policy periodically to stay informed about how we protect your information.

16. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: help@arisenote.com

Postal Address:
Maksim Gusev
Hildegard-Knef-Straße 3
85053 Ingolstadt, Bayern
Germany

EU Representative: As we are based in the EU (Germany), we serve as our own representative.

For GDPR-related complaints in Germany:

Bayerisches Landesamt fΓΌr Datenschutzaufsicht (BayLDA)
Promenade 18
91522 Ansbach
Germany
Website: https://www.lda.bayern.de

You may also contact your local supervisory authority in your EU member state or the UK Information Commissioner's Office if you are in the UK.

We are committed to protecting your privacy and maintaining the security of your personal information. Thank you for trusting AriseNote.

Related Policies