Live UI

Privacy Policy

Effective Date: 25/11/2024

Monaco Labs GmbH ("we," "us," or "our") is committed to protecting your privacy and ensuring compliance with the General Data Protection Regulation (GDPR). This Privacy Policy explains how we collect, use, and safeguard your personal data when you use our services.

1. Identity and Contact Information

Monaco Labs GmbH Address: Watzmannstraße 6c, 81541, München. Email: support@monacolabs.dev

2. Data We Collect

  • Email Data: Used for account creation and communication.
  • Payment Data: Processed via our payment provider, Stripe.
  • Usage Data: Collected to improve website performance and user experience.
  • Behavior Analytics Data: Collected through Hotjar to understand user interactions and improve our website experience.

3. Purpose of Data Collection

  • Account Creation: To enable access to and functionality of your account.
  • Website Improvements: To analyze user activity and improve our website's performance.
  • User Experience Enhancement: To analyze user behavior patterns and optimize our website design and functionality.

4. Legal Basis for Processing

We process your data based on your consent. You may withdraw your consent at any time by emailing us at support@monacolabs.dev. Once consent is withdrawn, we will cease processing your personal data as described below.

5. Data Sharing and Third-Party Processors

  • Stripe: For processing payments securely.
  • Mixpanel: For analyzing website usage and improving our services.
  • Hotjar: For behavior analytics and user experience research. Hotjar processes data on our behalf as a Data Processor and is GDPR compliant.

We ensure that these third parties adhere to GDPR requirements for data protection. All data processors have signed Data Processing Agreements (DPAs) with us.

6. Hotjar Data Processing and GDPR Compliance

We use Hotjar to analyze user behavior and improve our website experience. Hotjar is fully GDPR compliant and has implemented the following measures:

  • Data Protection Officer: Appointed as required by GDPR
  • Data Processing Agreement: Our DPA with Hotjar is incorporated into their Terms of Service
  • Privacy Controls: Hotjar automatically suppresses user keystrokes by default
  • Consent Management: Visitor lookup and feedback consent controls are implemented
  • Data Subject Rights: Hotjar provides interfaces to address user data access requests

Important: Hotjar's Data Processing Agreement is automatically included in their Terms of Service when you use our platform. You do not need to sign a separate DPA. For questions about Hotjar's data processing, contact them at legal@hotjar.com.

7. Data Retention

We retain your personal data for as long as necessary to fulfill the purposes outlined in this policy. Specifically:

  • Upon receiving a withdrawal request, we will delete your personal data within 30 days.
  • Hotjar data is retained according to their data retention policies and your consent preferences.

8. Your Rights

Under the GDPR, you have the following rights:

  • Access: Request a copy of your personal data.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your personal data.
  • Restriction: Restrict the processing of your data.
  • Objection: Object to data processing.
  • Portability: Request transfer of your data to another provider.
  • Lodge a Complaint: File a complaint with a supervisory authority if you believe we have violated your rights.

To exercise your rights, contact us at support@monacolabs.dev.

9. Cookies and Tracking Technologies

We use different types of cookies for various purposes:

  • Necessary Cookies: Essential for website functionality, authentication, and payments
  • Analytics Cookies: Help us understand website usage patterns and performance
  • Hotjar Cookies: Used for behavior analytics and user experience research (only with your explicit consent)

You can manage your cookie preferences through our cookie banner or browser settings. Hotjar tracking is only activated with your explicit consent and can be withdrawn at any time.

10. Security Measures

We implement robust technical and organizational measures to protect your personal data, including encryption and secure data storage. Hotjar also implements industry-standard security measures and is certified for GDPR compliance.

11. International Data Transfers

Your data may be processed by our third-party providers, including Hotjar, which may involve transfers outside the European Economic Area (EEA). All such transfers are conducted in compliance with GDPR requirements and appropriate safeguards, including Standard Contractual Clauses where applicable.

12. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. Updates will be posted on this page with a revised effective date.

For questions or concerns about this Privacy Policy, please contact us at support@monacolabs.dev.

Thank you for trusting Monaco Labs GmbH with your data.