We take the protection of your personal data very seriously and strictly adhere to the German legal provisions of the German Federal Data Protection Act (BDSG), the German Telemedia Act (TMG) and the European data protection data protection provisions from the General Data Protection Regulation (DSGVO). The services of luckycloud are hosted exclusively on our own servers in Germany. The storage of the data uploaded by you takes place in full compliance with the data protection laws. Your data can be stored encrypted on our servers and are thus protected from unauthorized access. Not even our administrators can see encrypted folders and libraries. The storage media on which your data is stored is also highly encrypted. are also highly encrypted and thus offer, even in the unlikely event of a physical removal from the servers, a high level of security. physical removal from the servers. IP-based user data is neither stored neither stored nor outsourced by us.
Both during transmission and after receipt of your personal data transmitted to us, we follow high security standards to protect this data in order to maintain the confidentiality, availability and integrity of the data. However, we would like to point out that data transmission over the Internet (e.g. when communicating by e-mail outside of luckycloud) may have security vulnerabilities, as no transmission method over the Internet and no electronic storage method is one hundred percent secure. A guaranteed complete protection of data against access by third parties is not possible.
Who can I contact?
Phone: +49 30 814 570 920
You can also reach our data protection coordinator via these contact details. If you have specific questions about your data, its deletion or your rights, there is a direct contact option for data protection via the e-mail address email@example.com. If you would like to submit a written inquiry, simply add the addition "data protection".
What are my rights?
You can contact us at any time if you have questions about your rights in the Data protection or would like to exercise one of your following rights:
- Right of withdrawal according to Art. 7 para. 3 DSGVO (E.g. you can contact us if you want to cancel a previously given consent in an email notification).
- Right of access according to Art. 15 DSGVO (e.g. you can contact us if you want to know which data we have stored about you)
- Correction according to Art. 16 DSGVO (e.g., you can correct or change your information in your customer dashboard independently and at any time. You can contact us if you need help, for example, to change or replace your email address).
- Deletion according to Art. 17 DSGVO (e.g. you can contact us if you want certain data to be deleted that we have stored about you)
- Restriction of processing according to Art. 18 DSGVO (e.g. you can contact us if you want, that we do not delete your e-mail address, but only use it to send certain e-mails).
- Data portability according to Art. 20 DSGVO (e.g. you can contact us to receive your data stored with us in a compressed format, e.g. because you want to make the data available to another cloud storage)
- Right to lodge a complaint with the competent supervisory authority pursuant to Art. 77 (1) DSGVO (e.g. you can also contact the data protection supervisory authority directly in the event of complaints)
Deletion of data and storage period
Unless otherwise stated, we delete your data as soon as you inform us of this or when it is no longer required for contractual purposes. For example, we delete your e-mail address when you delete your user account. Your data will also be blocked or deleted if a storage period prescribed by law expires, unless there is a need to continue storing the data for the conclusion or performance of a contract. Certain data may have to be stored longer for legal reasons. You can of course request information about the stored data at any time.
As a rule, it is possible to use our website without providing personal data. Apart from the connection to our website, meta data and other technical data (e.g. browser type, IP address, etc.) are not stored, as we have disabled permanent storage of access logs.
To use luckycloud or luckycloud Storage in the logged-in area, the user must create an account with luckycloud. To do this, the user must enter an existing email address or create a new email address via luckycloud Email and select a secure password. The user will be sent a confirmation link to the specified email address for possible password recovery in case the user forgets the login password.
In order to use luckycloud Mail, the user must have registered with luckycloud beforehand. The user receives their own e-mail address during setup. With this e-mail address, it is possible to create an anonymous user account and to communicate within and outside of luckycloud by e-mail. The e-mail address for recovery is automatically the address with which the user created the luckycloud account. Alternatively, the user can store another e-mail address for recovery in order to reset the password independently. Further personal data is only collected if the user provides this information voluntarily, for example in the context of an inquiry or registration.
In order to use luckycloud Team, the user must have previously registered with luckycloud and activated luckycloud Team activated. In the user dashboard, additional users can be created by specifying an existing e-mail address, first and last name (optional) and storage space size. The new user will receive a confirmation link to the specified e-mail address and then independently selects the password.
Insofar as you have provided us with personal data, we will only use it to respond to your inquiries, to process contracts concluded with you and for technical administration. Your personal data will only be passed on to third parties or otherwise transferred if this is necessary for billing purposes or if you have given your prior consent. You have the right to revoke your consent with effect for the future at any time. Upon written request, we will gladly inform you about the data stored about you (request to firstname.lastname@example.org).
To protect your data, we operate as a so-called zero-knowledge cloud and offer anonymous usage options. The transmission of the data you enter takes place - just like the visit to the rest of the website - via an encrypted connection. Furthermore, we apply the principle of data minimization/data economy and only collect the data that is actually required. For anonymous use, please do not use your clear name or that of another person as your user name. After successful registration, your data will be stored until you decide to delete individual data or delete the entire user account. The purpose of the requested data is to create a user account for the use of advanced features on the website. Registration is voluntary and can be revoked or the user data deleted at any time. Anonymous and thus particularly data protection-friendly use is also possible - as described above. The legal basis is the legitimate interest from Art. 6 para. 1lit. f DSGVO to be able to display the website at all. If you create a user account, the legal basis is the consent of the user in the context of registration in accordance with the European data protection requirements from Art. 6 para. 1 lit. a DSGVO.
You have the possibility to contact us via our contact form. You can provide us with the following data:
- E-mail address
- Question or message
To protect your data, the contact is made - just like the visit to the rest of the website - via an encrypted connection. encrypted connection. In addition, we apply the principle of data minimization/data economy and only record the data actually required in the contact form. After the successful contact with you, your data will be deleted immediately. The sole purpose of the data requested is to contact you. contacting you, which is why the data is only used for this purpose. The legal basis is the so-called legitimate interest, which is necessary for the pursuit of the purpose and within the framework of the aforementioned protective measures and in accordance with the European data protection requirements from Art. 6 para. 1 lit. f DSGVO.
luckycloud services offer the possibility to upload and store text files, documents, pictures, videos and other digital content via encrypted TLS 1.2 connection to our servers. Strict internal data protection processes and security guidelines regulate and ensure that these digital contents are not made made available to anyone else. At no time will we disclose this content to any third party, unless unless a valid German court order requires us to do so.
If you have forgotten your luckycloud account password and have not entered a recovery e-mail address or have not selected link confirmation when creating your account, it is only possible for us to generate a new access to your luckycloud user account in special individual cases and only by means of a time-consuming manual check to see whether you are really authorized to access the account. Security and anonymity also have their price. Therefore, it is up to you to remember your password or to leave a recovery email address. If you forget a password to an encrypted library, there is no possibility of password recovery in any case, as these passwords are neither stored on our servers nor is it technically possible to remove them.
luckycloud offers the possibility to make payments either anonymously by cash payment or for example by bank transfer, Paypal, Paypal Preapproved, credit card or SEPA direct debit. Payments with Paypal Preapproved, credit card, instant bank transfer and SEPA direct debit are processed by the payment service provider "Better Payment Germany GmbH". For special services we offer payment on account, which is handled will be handled by Haufe-Lexware GmbH & Co. KG. If you choose cash payment, the money shipment will be sent to the company address and deposited by us to the company account. In order to enable an allocation of the payment to the account, the invoice number or optionally the e-mail address or the user name will be given as the reason for payment. e-mail address or the user name. If you choose Paypal Preapproved, SEPA Direct Debit or Recuring Payment by credit card, you authorize luckycloud GmbH at any time to charge the fees for the billing cycle you have selected. billing cycle for the selected product from you at any time. The cancellation of all recurring payment methods can be made in the dashboard or with deletion of the luckycloud user account.
If you have not deposited any personal data with luckycloud, it is not possible for anyone to obtain such information. such information. Only by law or by a court order could a conditional lifting of your anonymity be a conditional revocation of your anonymity could be enforced. In such a case we have to stop the payment process for the luckycloud user account concerned to the legitimized authority.
If we become aware of any misuse of the luckycloud services, we will actively contribute to clarifying the matter. contribute. (e.g. provision of copyrighted content and thus violation of copyright or Storage of content that violates legal regulations).
Matomo (formerly Piwik)
We use the open source web analytics service Matomo (formerly Piwik). Matomo is provided by Innocraft Ltd, 150 Willis St, 6011 Wellimngton, New Zealand. We have installed Matomo on our own German server in order to to analyze our website with regard to your usage behavior and to monitor abusive usage. to monitor. Your IP address is anonymized before storage and analysis. A transmission of the data to third parties does not take place.
If you do not agree with the storage and use of your data, you can stop the storage and use of your data.here deactivate. In this case, an opt-out cookie will be stored in your browser that prevents Matomo stores usage data. If you delete your cookies in this browser, you must click this link again.
To protect your data, we use Matomo on our own servers and employ an anonymization procedure. which means that a subsequent evaluation of the data is not based on your person, but only on a statistical basis. statistical basis. A transmission of data to external servers or external providers does not take place. In addition, you have the option to completely prevent the analysis by clicking on the link above. The purpose of the use is the anonymized analysis of the usage behavior on our websites. The knowledge gained from this help us to improve our offer. The legal basis is the so-called legitimate interest, which is necessary to pursue the purpose and within the framework of the aforementioned safeguards as well as in line with the European data protection requirements from Art. 6 para. 1 lit. f DSGVO has been examined.
More about this in the GTC