Datenschutz

This privacy policy explains which personal data is collected while using the platform, why it is processed, how long it is stored, and what rights you have. It covers account workflows, reading requests, payment-related records, and operational security logs.

Data Controller

Data controller: Orakelia Platform Administration • Contact: support@orakelia.com. Processing activities are centrally managed to deliver services and comply with legal obligations.

Categories of Data Processed

During account and reading workflows we may process full name, username, email, phone, question text, selected cards, uploaded images, reading output, payment status, event timestamps, system logs, IP data, and technical session/device metadata. Additional support data you voluntarily provide may also be processed.

Purposes of Processing

Data is processed to register and verify accounts, receive and handle reading requests, generate AI-assisted interpretations, run admin approval workflows, verify payments, deliver customer notifications, apply fraud/security checks, analyze incidents, and improve platform quality.

Legal Basis

Processing is based on contract performance, legitimate interests (security and service continuity), accounting/legal compliance obligations, and consent where required. Where lawfully requested, records may be disclosed to competent public authorities.

Retention Period

Data is retained only as long as necessary for service delivery and legal obligations. Account-related data is kept according to user lifecycle and legal requirements; payment/accounting records may be retained for statutory periods. After retention ends, records are deleted, anonymized, or access-restricted.

Third-Party Service Providers

We may use contracted providers for payments, email delivery, hosting, operational security, and AI interpretation services. Only data required for each specific purpose is shared, and data-minimization principles are applied where possible. Providers are contractually bound to confidentiality and data protection obligations.

Cookies and Session Data

The platform uses essential technical cookies for secure login state, CSRF/session protection, and language preferences. These cookies are necessary for core functionality. No third-party marketing/profiling tracking cookies are used.

Data Security

We implement access controls, password security measures, HTTPS transport encryption, session safeguards, logging controls, and infrastructure-level technical/organizational protections. Despite these controls, no internet-based transmission method can guarantee absolute security.

International Data Transfers

Depending on provider locations, data may be processed outside your country or region. In such cases, contractual safeguards, access restrictions, and technical controls are applied as appropriate to protect transferred data.

Your Rights

Under applicable law, you may request access, correction, deletion, restriction of processing, objection, and data portability where relevant. You may also withdraw consent for future processing and file a complaint with a competent supervisory authority if needed.

Privacy Requests

For privacy requests: support@orakelia.com (subject: Datenschutz). Please include your account email, request type, and relevant date range to speed up processing.