AriseNote

Privacy Policy

Last Updated: May 17, 2026

This Privacy Policy explains how AriseNote collects and uses your personal data.

AriseNote is operated by:

Maksim Gusev
Hildegard-Knef-Straße 3
85053 Ingolstadt, Germany
Email: support@arisenote.com

For GDPR purposes, Maksim Gusev is the data controller for account, billing, website, and service usage data.

1. What AriseNote Does

AriseNote lets you create widgets using data from your Notion databases.

When you connect Notion, you choose which pages and databases AriseNote may access.

AriseNote reads selected Notion data to display your widgets. We may temporarily cache this data for performance, but we do not permanently store your Notion database contents.

2. Data We Collect

We may collect the following data:

Account Data

  • name;
  • email address;
  • password hash, if you sign up with email/password;
  • profile picture, if provided;
  • account settings.

Notion Integration Data

When you connect Notion, we may receive:

  • your Notion user ID;
  • your Notion name, email, and avatar;
  • access tokens;
  • list of pages or databases you granted access to;
  • contents of selected databases for widget display.

Payment Data

Payments are processed by Stripe.

We may store limited billing information, such as:

  • subscription status;
  • payment history;
  • invoices;
  • last four digits of your card, if provided by Stripe.

We do not store your full card details.

Technical Data

We may collect:

  • IP address;
  • browser and device information;
  • log data;
  • pages or features used;
  • date and time of access.

Support Data

If you contact us, we may store your messages and related information.

3. How We Use Your Data

We use your data to:

  • provide and maintain AriseNote;
  • create and manage your account;
  • connect to Notion and display widgets;
  • process payments;
  • provide customer support;
  • send service emails;
  • improve the Service;
  • prevent fraud and abuse;
  • comply with legal obligations.

We do not:

  • sell your personal data;
  • use your Notion data to train AI models;
  • share your Notion database contents with advertisers;
  • track you across websites for advertising.

4. Legal Bases Under GDPR

We process personal data based on:

  • contract necessity — to provide AriseNote to you;
  • legitimate interests — to improve and secure the Service;
  • legal obligation — for tax, accounting, and legal compliance;
  • consent — where required, for example for optional marketing emails.

5. Cookies and Analytics

We use required cookies or similar technologies to operate the Service, such as login sessions and security features.

We may use privacy-friendly analytics, such as self-hosted Plausible, to understand general usage patterns. We do not use analytics to track you across websites or create advertising profiles.

You can control cookies through your browser settings, but some parts of the Service may not work without required cookies.

6. Sharing Data

We share data only when necessary to provide the Service, comply with law, or protect our rights.

We use the following service providers:

  • Hetzner — hosting servers and databases;
  • Stripe — payment processing;
  • Notion — Notion integration;
  • Mailgun — transactional emails;
  • AWS S3 — file storage, such as profile avatars;
  • IP-API — IP geolocation services;
  • Plausible — privacy-friendly analytics, if used.

These providers may process data on our behalf and are required to protect it.

We may also disclose data if required by law or to protect AriseNote, our users, or others.

We do not sell your personal data.

7. International Transfers

AriseNote is based in Germany.

For EU users, core service data is generally hosted in Germany on Hetzner servers.

Some service providers, such as Stripe, Notion, Mailgun, or AWS, may process data outside the EU, including in the United States.

Where personal data is transferred outside the EU, EEA, UK, or Switzerland, we use appropriate safeguards such as Standard Contractual Clauses, adequacy decisions, or other lawful transfer mechanisms.

8. Data Retention

We keep personal data only as long as needed for the purposes described in this Policy.

General retention periods:

  • account data: while your account is active;
  • deleted account data: generally deleted within 30 days;
  • Notion database contents: not permanently stored; temporary cache generally less than 24 hours;
  • technical logs: generally up to 90 days;
  • support messages: generally up to 3 years;
  • invoices and transaction records: up to 10 years where required by German tax and accounting law;
  • anonymized analytics: may be kept longer because it does not identify you.

Backups may retain deleted data for a limited period before being overwritten.

9. Account Deletion

You may request account deletion through your account settings or by emailing:

support@arisenote.com

After deletion:

  • your account access will end;
  • active Notion tokens will be revoked or deleted;
  • widget configurations will be deleted;
  • most personal data will be deleted within 30 days;
  • legally required records, such as invoices, may be kept as required by law.

10. Your Rights

If you are in the EU, EEA, or UK, you may have the right to:

  • access your personal data;
  • correct inaccurate data;
  • delete your data;
  • restrict processing;
  • object to processing;
  • receive a copy of your data;
  • withdraw consent where processing is based on consent;
  • lodge a complaint with a data protection authority.

To exercise your rights, contact us at:

support@arisenote.com

We may need to verify your identity before processing your request.

11. Security

We use reasonable technical and organizational measures to protect your data, including:

  • encryption in transit;
  • password hashing;
  • access controls;
  • secure hosting;
  • monitoring and logging;
  • regular updates.

No online service is completely secure. You are responsible for keeping your account credentials safe.

12. Children

AriseNote is not intended for children under 16.

If you believe a child under 16 has provided personal data to us, contact us and we will delete it.

13. Changes to This Policy

We may update this Privacy Policy from time to time.

If changes are material, we will notify you by email or through the Service.

Continued use of AriseNote after changes take effect means the updated Policy applies.

14. Contact

For privacy questions or requests:

Email: support@arisenote.com

Postal Address:
Maksim Gusev
Hildegard-Knef-Straße 3
85053 Ingolstadt, Germany

For GDPR complaints, you may contact your local supervisory authority. In Bavaria, the competent authority is generally:

Bayerisches Landesamt für Datenschutzaufsicht (BayLDA)
Promenade 18
91522 Ansbach
Germany

Related Policies