Privacy Policy
1. Data Controller
The party responsible for processing personal data within the meaning of the GDPR is:
Tobias Buchholz
Innsbrucker Straße 33
10825 Berlin
Email: [email protected]
2. Data We Collect
Access Data / Server Logs
Each time you access our platform, our server automatically records the following data transmitted by your browser:
- IP address of the requesting device
- Date and time of access
- Requested URL and HTTP method
- Browser type and operating system (user agent)
- HTTP status code and data volume transferred
This data is used solely to ensure platform operation and for error analysis, and is deleted after no more than 30 days.
Account and Registration Data
When you register, we collect the following data:
- Email address
- Display name
- Password (stored as a secure hash, never in plain text)
- Optional: profile picture
User-Generated Content
Content that you create while using the platform is stored, including:
- Table tennis venues with address and images
- Matches (scheduled and ongoing games)
- Notifications and match invitations
3. Purpose of Processing
We process your data for the following purposes:
- Providing and operating the Pingtopong platform (Art. 6(1)(b) GDPR)
- Authentication and account management
- Real-time availability display of table tennis tables
- Coordinating matches between users
- Ensuring technical operation and troubleshooting (Art. 6(1)(f) GDPR)
4. Cookies and Session Data
We use only technically necessary session cookies to manage your login. These cookies do not contain personal data and are deleted when you close your browser or log out. No tracking cookies or advertising cookies are used.
5. Hosting
The platform is operated on servers within the European Union. All processed data remains within the EU legal framework.
6. Sharing with Third Parties
Your personal data will not be passed on, sold, or rented to third parties. Data will only be transmitted if we are legally required to do so (e.g. at the request of authorities).
7. Your Rights
As a data subject, you have the following rights under the GDPR:
- Access (Art. 15 GDPR) — You can request information about the personal data stored about you.
- Rectification (Art. 16 GDPR) — You can request correction of inaccurate data.
- Erasure (Art. 17 GDPR) — You can request deletion of your data, provided no legal retention obligation applies.
- Restriction of processing (Art. 18 GDPR)
- Data portability (Art. 20 GDPR)
- Objection (Art. 21 GDPR) — You can object to the processing of your data.
- Complaint — You have the right to lodge a complaint with the competent data protection authority.
8. Contact for Data Protection Inquiries
For inquiries regarding data protection or to exercise your rights, please contact:
Email: [email protected]
Last updated: May 2025