Privacy Policy
Your privacy matters to us. This policy explains what data we collect, how we use it, and the rights you have over your information.
Effective Date: April 3, 2026
Quick Overview
AppLander is a SaaS platform that helps mobile app developers create landing pages, legal documents, and support pages. We collect minimal personal information necessary to provide our service, process payments through Stripe, and use only essential session cookies. We do not use advertising cookies, tracking pixels, or third-party analytics. We comply with GDPR, CCPA, UK GDPR, and PIPEDA.
Welcome to AppLander ("we," "us," "our"), a web-based software-as-a-service platform operated by buzzjective GmbH, located in Berlin, Germany. AppLander is available at applander.io and helps mobile application developers create landing pages, privacy policies, terms of service, support pages, changelogs, and status pages for their apps.
This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit our website or use our services. It also describes your rights regarding your personal data and how you can exercise those rights. By accessing or using AppLander, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.
We comply with the General Data Protection Regulation (GDPR), the UK GDPR, the California Consumer Privacy Act (CCPA), the Personal Information Protection and Electronic Documents Act (PIPEDA), and other applicable data protection laws.
1. Information We Collect
1.1 Account Information
When you register for an AppLander account, we collect the following personal information directly from you:
- Name: Your first and last name, used to personalize your account and communications.
- Email address: Used for account authentication, service notifications, and transactional communications.
- Password: Encrypted and stored securely using industry-standard hashing algorithms. We never store passwords in plain text.
1.2 App Content and Generated Materials
As part of using our services, you provide information about the mobile applications for which you are creating landing pages and legal documents:
App names and descriptions — The names, taglines, and descriptions of your mobile applications.
Screenshots and images — Visual assets you upload to be displayed on your generated landing pages.
Generated content — Privacy policies, terms of service, support pages, changelogs, status pages, and landing pages created through our template-based generation system.
Configuration data — Your customization preferences, design choices, and settings for generated pages.
1.3 Usage Data
We automatically collect certain technical information when you access and use our services:
- Log data: IP address, browser type and version, operating system, referring URL, pages visited, date/time of access, and duration of visits.
- Device information: Device type, screen resolution, and language preferences.
- Feature usage: Which features you interact with, frequency of use, and general usage patterns.
1.4 Payment Data
All payment processing is handled exclusively by Stripe. We never receive, process, or store your full credit card number, CVV, or other sensitive payment credentials. The only payment-related information we retain is:
- Last four digits of your card (for display purposes)
- Card brand (e.g., Visa, Mastercard)
- Billing address (if provided to Stripe)
- Subscription status, plan type, and transaction history
Stripe's handling of your payment information is governed by their own privacy policy at stripe.com/privacy.
1.5 Support Data
If you contact us for support, we collect the content of your communications, including any attachments or additional information you voluntarily provide, so that we can respond to your inquiry and resolve your issue.
2. How We Use Your Information
We use the information we collect for the following purposes:
Providing and Maintaining the Service — Your account information and app content are used to deliver core functionality including generating landing pages, creating legal documents, hosting published pages, and managing account settings.
Processing Payments — We use your subscription and billing information, in coordination with Stripe, to process payments, manage upgrades/downgrades, issue invoices, and handle refunds.
Communications — We use your email for transactional communications including account verification, password resets, subscription confirmations, payment receipts, and service announcements. You can opt out of non-essential communications at any time.
Service Improvement — We analyze aggregated and anonymized usage data to understand how users interact with AppLander, identify areas for improvement, and ensure platform reliability. This does not involve individual user profiling.
Enforcing Our Terms — We may use your information to enforce our Terms of Service, investigate violations, prevent abuse or fraud, and protect the rights and safety of AppLander and our users.
Legal Compliance — We may process your information to comply with applicable laws, regulations, legal processes, or enforceable governmental requests.
3. Legal Basis for Processing (GDPR)
Under the GDPR, we must have a lawful basis for processing your personal data. We rely on the following:
Performance of a Contract
Article 6(1)(b) — Processing your account information, app content, and generated materials is necessary for the performance of our contract with you.
Legitimate Interests
Article 6(1)(f) — Improving our services through aggregated analytics, ensuring platform security, preventing fraud, and providing customer support.
Consent
Article 6(1)(a) — Where required by law, we obtain explicit consent for specific purposes such as optional marketing communications. You may withdraw consent at any time.
Legal Obligation
Article 6(1)(c) — Retaining financial records as required by German tax law (Abgabenordnung) and responding to lawful requests from regulatory authorities.
4. Who We Share Your Information With
We do not sell, rent, or trade your personal information to third parties. We do not share your data with advertisers.
Payment Processor — Stripe
We share limited information with Stripe, Inc. to process your subscription payments. Stripe acts as an independent data controller for payment data. Stripe is certified under the EU-US Data Privacy Framework. See Stripe's Privacy Policy.
Email Service Provider
We use a third-party email service provider to deliver transactional and service-related emails. They receive your email address and name solely for email delivery and are contractually prohibited from using it for their own purposes.
Hosting and Infrastructure
Our hosting providers process your data solely on our behalf, bound by data processing agreements with appropriate technical and organizational measures, in compliance with Article 28 of the GDPR.
Law Enforcement and Legal Requirements
We may disclose your information if required by law or in good faith to comply with a legal obligation, protect our rights, prevent wrongdoing, or protect user safety. We will make reasonable efforts to notify you unless prohibited by law.
Business Transfers
In the event of a merger, acquisition, or sale of assets, your personal information may be transferred. We will notify you via email and/or a prominent notice before such transfer takes effect.
5. Cookies and Tracking Technologies
AppLander takes a minimal approach to cookies. We value your privacy and do not use cookies for advertising, marketing, behavioral tracking, or analytics profiling.
Session Cookies (Strictly Necessary)
Type: Session Cookies | Administered by: Us
Used solely for user authentication and maintaining your logged-in session. These cookies are essential and cannot be disabled without preventing you from using AppLander. Automatically deleted when you close your browser or your session expires.
No Advertising or Tracking Cookies
We do not use any advertising cookies, third-party tracking pixels, social media tracking scripts, analytics cookies, or similar technologies. We do not use Google Analytics or any similar third-party analytics service.
Cookie Consent
Because we only use strictly necessary session cookies, exempt under Article 5(3) of the ePrivacy Directive (2002/58/EC), we are not required to obtain your consent. Should we ever introduce non-essential cookies, we will update this policy and implement a proper consent mechanism.
6. Data Retention
Active Account Data
We retain your data for as long as your account remains active to provide uninterrupted access to your landing pages, documents, and content.
Account Deletion
We delete or anonymize your data within 30 days of your deletion request. During this grace period, your account is deactivated and published pages go offline. After 30 days, deletion is permanent and irreversible.
Financial Records
Under German tax law (Abgabenordnung, sections 147 and 257 HGB), we retain certain financial records for up to 10 years. These are stored securely and used only for legal compliance.
Aggregated Data
We may retain fully anonymized, aggregated data indefinitely for statistical analysis and service improvement. This data cannot identify any individual.
7. Security
We take the security of your personal data seriously and implement appropriate technical and organizational measures to protect it against unauthorized access, alteration, disclosure, or destruction.
Encryption in Transit
All data is encrypted using TLS/SSL. We enforce HTTPS across our entire platform with no option for unencrypted connections.
Encrypted Passwords
Your password is hashed using a strong one-way algorithm. Even in the unlikely event of a data breach, your original password cannot be recovered.
Access Controls
Access to personal data is limited to authorized personnel using the principle of least privilege. Administrative access is protected by multi-factor authentication.
Infrastructure Security
Enterprise-grade physical and network security, including firewalls, intrusion detection systems, regular backups, and prompt security patches.
Breach Notification
In the event of a personal data breach, we will notify the Berliner Beauftragte für Datenschutz und Informationsfreiheit within 72 hours (Article 33 GDPR). If the breach poses high risk to your rights, we will also notify you directly (Article 34 GDPR).
8. International Data Transfers
AppLander is operated from Germany within the European Union. Your data is primarily stored and processed within the EEA. However, some service providers (including Stripe) may process data outside the EEA.
When your data is transferred outside the EEA, we ensure appropriate safeguards:
Standard Contractual Clauses (SCCs) — EU Commission-approved clauses ensuring equivalent data protection.
Adequacy Decisions — We transfer data to countries recognized by the EU Commission as providing adequate protection.
EU-US Data Privacy Framework — We prioritize service providers certified under this framework for US transfers.
9. Your Rights
9.1 Rights Under the GDPR (EEA Residents)
Exercise any of these rights by contacting us at [email protected]. We will respond within one (1) month.
Right of Access
Article 15 — Request a copy of the personal data we hold about you and information about how we process it.
Right to Rectification
Article 16 — Request correction of inaccurate or incomplete data. You can also update information directly through your account settings.
Right to Erasure
Article 17 — Request deletion of your personal data. You can initiate account deletion directly from your account settings.
Right to Restriction
Article 18 — Request restriction of processing in certain circumstances, such as when contesting data accuracy.
Right to Data Portability
Article 20 — Receive your personal data in a structured, machine-readable format and transmit it to another controller.
Right to Object
Article 21 — Object to processing based on our legitimate interests. We will cease processing unless we demonstrate compelling legitimate grounds.
Right to Withdraw Consent
Article 7(3) — Withdraw consent at any time. Withdrawal does not affect the lawfulness of processing before the withdrawal.
Right to Lodge a Complaint
Contact the Berliner Beauftragte für Datenschutz und Informationsfreiheit, Friedrichstr. 219, 10969 Berlin, Germany, or the supervisory authority in your EU/EEA member state.
9.2 Rights Under the CCPA (California Residents)
Right to Know
Request disclosure of what personal information we collect, why, and who we share it with.
Right to Delete
Request deletion of your personal information, subject to certain legal exceptions.
Right to Correct
Request correction of inaccurate personal information.
Right to Non-Discrimination
You will not receive different service levels or pricing for exercising your privacy rights.
We do not sell or share your personal information. We have never sold personal information and have no plans to do so.
To exercise your CCPA rights, contact us at [email protected]. We will verify your identity and respond within 45 days.
9.3 Rights Under UK GDPR (United Kingdom Residents)
You have rights substantially similar to EU GDPR rights, including access, rectification, erasure, restriction, data portability, objection, and consent withdrawal. For international transfers, we use IDTAs or UK addenda to EU SCCs. You may lodge a complaint with the Information Commissioner's Office (ICO).
9.4 Rights Under PIPEDA (Canadian Residents)
You have the right to access your personal information, challenge its accuracy, and withdraw consent for collection, use, or disclosure (subject to legal restrictions). You may file a complaint with the Office of the Privacy Commissioner of Canada.
10. Children's Privacy
AppLander is not intended for individuals under 18. We do not knowingly collect personal information from children under 18. Our services are designed for professional mobile application developers and businesses.
If we become aware that we have collected personal information from a person under 18, we will take immediate steps to delete it. If you are a parent or guardian, please contact us at [email protected].
11. Generated Legal Documents Disclaimer
Important Notice
AppLander generates legal document templates based on your input. These are templates, not legal advice. AppLander is not a law firm and does not provide legal services.
No attorney-client relationship — Using our document generation features does not create any attorney-client or professional advisory relationship.
User responsibility — You are solely responsible for reviewing, customizing, and ensuring compliance of generated documents. Consult a qualified legal professional.
No guarantee of compliance — We do not warrant that generated documents comply with any specific jurisdiction's laws or are legally enforceable.
No liability — AppLander shall not be liable for any claims, damages, or legal consequences arising from your use of generated documents.
No AI/ML processing — Our document generation is entirely template-based. We do not use artificial intelligence or machine learning to generate your documents.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When we make material changes, we will:
- Email notification: Send a notice to your account email with a summary of changes.
- Versioning: Each version is identified by its effective date at the top.
- Prominent notice: We may post an in-app notice for significant changes.
Your continued use of AppLander after the effective date of a revised Privacy Policy constitutes acceptance of the revised terms.
13. Contact Us
If you have any questions about this Privacy Policy or our data practices:
By email:
[email protected]Data Controller:
buzzjective GmbH
By mail:
Nürnberger Str. 27, 10789 Berlin, Germany
We aim to respond within 30 days. For GDPR requests, we will respond within 1 month as required by law. If unsatisfied with our response, you may lodge a complaint with the appropriate supervisory authority.