MarketingHubMarketingHub
Back to Home

Privacy Policy

Last Updated: February 12, 2026

MarketingHub Privacy Policy

This Privacy Policy describes how Daniel Keller, operating as MarketingHub, collects, uses, and protects your personal information when you use our AI-powered content generation service.

1. Data Controller

Daniel Keller
Lenaustr. 9
68782 Brühl, Germany
Email: info@nextgenwebs.de
VAT ID: DE439279683

2. Service Description and Accessibility

MarketingHub is an AI-powered content generation platform currently in beta/MVP phase. MarketingHub is accessible globally via the internet. We may offer the service in multiple jurisdictions subject to applicable laws. Our service processes user inputs to generate marketing content using third-party AI providers.

3. Information We Collect

Account Information: Email address, name, company name (if provided), password (encrypted).

Billing Information: Payment details are processed by our payment provider Stripe. We store billing address and transaction history but not full credit card numbers.

Usage Data: Content inputs and outputs, usage metrics, feature interactions, error logs.

Technical Data: IP address, browser type, device information, session data stored via localStorage.

Communications: Support requests, feedback, email correspondence.

4. How We Use Your Information

  • Provide and operate the MarketingHub service
  • Process AI content generation requests
  • Manage user accounts and authentication
  • Process billing and subscriptions
  • Provide customer support
  • Improve service quality and develop new features
  • Comply with legal obligations
  • Send service-related notifications (not marketing unless opted in)

5. Third-Party Service Providers

We work with the following subprocessors:

  • Supabase: Database hosting and authentication. We store primary account and content data in Supabase (region configured by us; currently intended to be EU/Germany where available).
  • Stripe: Payment processing
  • OpenRouter: AI model routing and access
  • Anthropic (Claude): AI content generation
  • Google (Gemini): AI content generation
  • Brevo: Transactional email delivery

AI Training Representations: Our AI providers represent in their respective policies that inputs submitted via API are not used to train their models. We cannot provide absolute guarantees regarding third-party practices. For details, please review:

  • Anthropic's Commercial Terms
  • Google's Vertex AI Data Usage Policy

We will provide 30 days notice of material changes to our list of subprocessors via email or in-app notification.

6. Cookies and Tracking

We use localStorage (browser-based storage) for authentication and session management. This technical storage is essential for the service to function.

We do not currently use third-party advertising or tracking cookies. If we introduce optional analytics or marketing cookies in the future, we will provide advance notice and, where required by applicable law, request your consent before implementing such cookies.

7. Data Retention

We retain your data for as long as your account is active or as needed to provide services. After account deletion, we will delete or anonymize your data within 90 days, except where longer retention is required by law (e.g., German tax law requires 10 years retention for billing records).

  • Active project data: Duration of account plus 90 days
  • Billing records: 10 years (German tax law requirement)
  • Support communications: 3 years
  • Anonymized analytics: Indefinitely

8. Data Security

We implement reasonable technical and organizational measures to protect your data, including:

  • Encryption in transit (TLS/SSL)
  • Encrypted password storage
  • Access controls and authentication
  • Regular security assessments
  • Secure third-party service providers

No security system is impenetrable. While we strive to protect your data, we cannot guarantee absolute security.

9. Data Breach Notification

In the event of a data breach affecting your personal information, we will notify you and relevant authorities as required by applicable law, typically within 72 hours of discovery.

10. Your Choices

You may update your account information at any time through your account settings. You may delete your account, which will initiate data deletion as described in Section 7.

11. International Data Transfers

As we operate from Germany and use global service providers, your data may be processed in various locations, including the United States. Where required, we rely on appropriate safeguards such as Standard Contractual Clauses for such transfers.

12. Children's Privacy

MarketingHub is not intended for users under 18 years of age. We do not knowingly collect information from individuals under 18.

13. Changes to This Policy

We will notify you of material changes to this Privacy Policy via email or prominent in-app notice at least 30 days before the changes take effect. Continued use after changes constitutes acceptance.

ADDENDUM A: EUROPEAN ECONOMIC AREA (EEA) USERS

This addendum applies if you are located in the European Economic Area, Switzerland, or the United Kingdom.

Legal Bases for Processing

We process your personal data under the following legal bases (GDPR Art. 6):

  • Contract performance: Account management, service delivery, billing
  • Legitimate interests: Service improvement, fraud prevention, security
  • Legal obligation: Tax record retention, regulatory compliance
  • Consent: Marketing communications (where applicable)

Your Rights Under GDPR

You have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate data
  • Erasure: Request deletion (subject to legal retention requirements)
  • Restriction: Limit processing under certain circumstances
  • Data portability: Receive your data in a structured, machine-readable format
  • Object: Object to processing based on legitimate interests
  • Withdraw consent: Where processing is based on consent

Exercising Your Rights: Email info@nextgenwebs.de with your request. We will respond within 30 days.

Retention Exceptions

While we honor deletion requests, German tax law (AO Section 147, HGB Section 257) requires us to retain billing and accounting records for 10 years.

Supervisory Authority

You have the right to lodge a complaint with:

Der Landesbeauftragte für den Datenschutz und die Informationsfreiheit Baden-Württemberg
Königstraße 10a
70173 Stuttgart, Germany

Data Transfers

When we transfer your data outside the EEA, we ensure appropriate safeguards such as Standard Contractual Clauses (SCCs) approved by the European Commission.

ADDENDUM B: UNITED STATES USERS

This addendum applies to users residing in California and other U.S. states with comprehensive privacy laws.

California Consumer Privacy Act (CCPA/CPRA) Disclosures

Categories of Personal Information Collected:

  • Identifiers (name, email, IP address)
  • Commercial information (purchase history, billing data)
  • Internet activity (usage data, logs)
  • Inferences (content preferences)

Categories of Sources:

  • Directly from you (account creation, service use)
  • Automatically (usage tracking, technical logs)
  • From third parties (payment processors)

Business/Commercial Purposes:

  • Providing the MarketingHub service
  • Processing transactions
  • Customer support
  • Service improvement
  • Legal compliance

Categories of Third Parties We Share With:

  • Service providers (Supabase, Stripe, OpenRouter, Anthropic, Google, Brevo)
  • Legal/regulatory authorities (when required)

Sale of Personal Information: We do not sell or share your personal information as defined by CCPA/CPRA.

Your California Privacy Rights

You have the right to:

  • Know: Request disclosure of data collected, used, and shared (up to 12 months)
  • Delete: Request deletion of your personal information (subject to exceptions)
  • Correct: Request correction of inaccurate data
  • Opt-out: Opt-out of sale/sharing (though we do not sell/share)
  • Non-discrimination: Exercise privacy rights without discriminatory treatment

Submitting Requests:

Email: info@nextgenwebs.de
Subject: "California Privacy Request"

We will verify your identity and respond within 45 days.

Authorized Agents: You may designate an authorized agent to make requests on your behalf by providing written authorization.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

Email: info@nextgenwebs.de
Mail:
Daniel Keller
Lenaustr. 9
68782 Brühl
Germany

For EEA users, we will respond to your inquiry within 30 days as required by GDPR.

This Privacy Policy is designed to comply with GDPR, CCPA/CPRA, and other applicable data protection laws.