1. Acceptance of Terms

By accessing or using GDPR For Apps ("Service", "Tool", "we", "us") at gdprforapps.com, you agree to be bound by these Terms of Service ("Terms"). If you do not agree, do not use the Service.

2. Nature of Service — Not Legal Advice

GDPR For Apps is a template generator tool, not a law firm and not a legal advice service.

• The documents generated by GDPR For Apps are templates only and do not constitute legal advice.
• Use of GDPR For Apps does not create an attorney-client relationship.
• Documents are provided as starting points. You are solely responsible for ensuring your published documents comply with all applicable laws.
• We strongly recommend having any generated document reviewed by a qualified legal professional before publishing.

3. License and Permitted Use

Subject to these Terms, we grant you a limited, non-exclusive, non-transferable license to:

• Use the Service to generate privacy policy templates for your own websites or applications.
• Download, edit, and publish generated documents on your own platforms.

You may not:

• Resell or redistribute the Service or generated documents as a competing product.
• Share a paid license key with others or use a single license key across more domains than permitted by your tier.
• Use the Service to generate documents for illegal purposes.

4. Document Templates — "As-Is" Basis

Documents generated by GDPR For Apps are provided on an "as-is" basis:

• Templates reflect best practices at the time of generation. Laws and regulations change; you are responsible for keeping your documents current.
• We do not warrant that generated documents are complete, accurate, or suitable for your specific legal situation.
• GDPR For Apps templates do not cover: Data Processing Agreements (DPA), Records of Processing Activities (RoPA/Art. 30 GDPR), Transfer Impact Assessments (TIA), Data Protection Impact Assessments (DPIA), or Legitimate Interest Assessments (LIA). These require individual legal counsel.

5. Limitation of Liability

To the maximum extent permitted by applicable law:

• In no event shall GDPR For Apps or its operators be liable for any indirect, incidental, special, consequential, or punitive damages arising from use of the Service or generated documents, including regulatory fines, penalties, or legal actions.
• Our total aggregate liability shall not exceed the amount you paid for the Service in the 12 months preceding the claim.
• We are not liable for any inaccuracy in generated documents resulting from information you provided.

6. Payments and Refunds

License purchases are processed via Polar (polar.sh), which acts as Merchant of Record. All prices are in USD and inclusive of applicable taxes.

By purchasing, you confirm that you understand you are purchasing a document template generator, not legal advice or legal services.

See the Refund Policy section below for full details on eligibility and how to request a refund.

7. Intellectual Property

The GDPR For Apps software, design, and template structure are our intellectual property. You own the content you provide and the generated documents you download. You grant us no rights to your input data beyond operating the Service.

8. Template Updates

We update templates when significant legal or regulatory changes occur. Template version and generation date are recorded in every exported document. You are responsible for regenerating and republishing your documents when material template updates occur.

9. Governing Law

These Terms are governed by the laws of Poland. Any disputes shall be resolved in the courts of Poland, unless mandatory consumer protection laws in your jurisdiction require otherwise.

10. Contact

Questions about these Terms: legal@gdprforapps.com

Payment Processor

All purchases are processed by Polar (polar.sh), operating as Merchant of Record. Polar handles payment processing, tax collection, and refund disbursement. By completing a purchase you also agree to Polar's Terms of Service.

Refund Window

Refund requests must be submitted within 14 days of the purchase date.

Eligible Reasons

• The generator fails to produce a document (technical failure).
• Your license key was not delivered within 24 hours and support could not resolve the issue.
• The purchased plan's advertised features do not function as described.

Non-Eligible Reasons

• "I changed my mind" after downloading or using the generated document.
• Purchased the wrong plan — use the upgrade path instead (contact legal@gdprforapps.com for upgrade pricing).
• Generated documents were reviewed by a lawyer and deemed insufficient — the tool is a template generator, not legal counsel.
• Requests submitted after the 14-day window.

How to Request a Refund

1. Email legal@gdprforapps.com with subject line: Refund Request — [Order ID]
2. Include your Polar order ID (found in your purchase confirmation email).
3. Briefly describe the reason for the request.

Processing time: 5–10 business days via Polar after approval.

1. Data Controller

GDPR For Apps is operated by Obsydian.dev, Poland.

Privacy contact: legal@gdprforapps.com

2. Data We Collect

• Wizard inputs — company name, website URL, contact email, selected options. Stored locally in your browser (localStorage). We do not receive this data on our servers during wizard use.
• License key validation — when you activate a license, your key is sent to our API for validation. We do not permanently store keys server-side beyond validation.
• Analytics — we may use privacy-respecting anonymous analytics (e.g., page views without personal identifiers) to understand usage patterns.
• Purchase data — processed by Polar (polar.sh), acting as Merchant of Record. We receive a transaction confirmation and your email for license delivery. Polar's privacy policy applies to payment processing.
• Cookie scanner — if you use the cookie scanner, the URL you provide is sent to our API for scanning. We do not store this URL.

3. How We Use Your Data

• To provide the template generation service
• To validate license keys and deliver purchased licenses
• To improve the service based on anonymous usage patterns
• To send legal template update notifications (only if you opted in during export)

4. Legal Basis (GDPR)

• Contract performance (Art. 6(1)(b)) — license validation and service delivery
• Legitimate interest (Art. 6(1)(f)) — anonymous analytics, security
• Consent (Art. 6(1)(a)) — email notifications for template updates

5. Data Storage and Retention

• Wizard state — stored only in your browser. Cleared when you clear localStorage.
• Purchase records — retained for as long as required by accounting and tax obligations (typically 5 years).
• Email for notifications — retained until you unsubscribe.

6. Third-Party Services

• Polar (polar.sh) — payment processing, Merchant of Record. Subject to Polar's Privacy Policy.
• Vercel — hosting and serverless functions. Data processed in EU/US regions.
• Resend — transactional email (license delivery, template update notifications). Subject to Resend's privacy policy.

7. International Transfers

Our infrastructure may process data in the United States. We rely on Standard Contractual Clauses (SCCs) and adequacy decisions where applicable.

8. Your Rights

Under GDPR, you have the right to: access, rectification, erasure, restriction, portability, and objection. To exercise your rights, contact: legal@gdprforapps.com

You also have the right to lodge a complaint with your national supervisory authority (e.g., PUODO in Poland, ICO in the UK, CNIL in France).

9. Cookies

We use only necessary cookies (session management). We do not use advertising or tracking cookies. Anonymous analytics, if used, do not place persistent tracking cookies.

10. Contact

Privacy questions: legal@gdprforapps.com

Supervisory Authority

Data protection complaints may be submitted to the Polish supervisory authority:
PUODO (Urząd Ochrony Danych Osobowych) — uodo.gov.pl

Dispute Resolution

The European Commission provides an Online Dispute Resolution (ODR) platform: ec.europa.eu/consumers/odr. We are not obligated to participate in ADR proceedings but will consider amicable resolution via direct contact.