Privacy Policy / Datenschutzerklaerung

Controller and scope

This policy describes how ClusterRoute processes personal data when you visit the website, create an account, and use route planning features.

Data categories

• Account data (email, uid)
• Operational content (addresses and clustering sessions you submit)
• Billing metadata (plan, status, Stripe customer/subscription references)
• Optional analytics events if consent is granted

Purposes and legal bases (GDPR Art. 6)

• Contract performance: providing clustering and team workspace functionality
• Legitimate interests: security, abuse prevention, and service reliability
• Consent: optional analytics and non-essential tracking

Processors

• Google Firebase for hosting, auth, database, and cloud functions
• Stripe for payments, subscriptions, and billing portal
• Google Maps Platform for geocoding and map rendering

Retention and deletion

We retain data only as long as needed for service operation, legal obligations, and fraud/security controls. You may request deletion of account-related data, subject to legal retention requirements.

Your rights

Depending on applicable law, you may request access, rectification, deletion, restriction, portability, and objection to processing, and may withdraw consent at any time.

Contact

For privacy questions, contact privacy@clusterroute.com.