Privacy Policy

Last updated: May 2026

Data controller

Felix Geelhaar
[Address — to be filled before launch]
hallo@brotwerk.app

What we process

• Email address — for magic-link sign-in.
• Starter data — name, flour blend, photo uploads, optional notes (hydration, room temperature, smell).
• AI evaluations — the structured response from the vision model (maturity, bubbles, dome, tip).
• Session cookie — HttpOnly, SameSite=Lax, HMAC-SHA256 signed. No tracking cookies.
• Server logs — IP + user agent for 30 days, abuse mitigation only.

Data processors

• Anthropic (Claude Sonnet, USA): image evaluation. Standard contractual clauses (GDPR Art. 46) in place. Your photos are NOT used to train AI models.
• Resend (EU region): magic-link email delivery.
• MinIO (self-hosted, EU): photo storage. Private buckets, signed URLs, EXIF stripped.
• PostgreSQL (self-hosted, EU): starter + evaluation data.
• Plausible Analytics (EU): cookieless web analytics. No personal data.

Retention

• Magic-link tokens: 15 minutes.
• Photo originals: 90 days after upload (unless favourited).
• Evaluations + starter data: until account deletion.
• Server logs: 30 days.

Your rights

You may at any time:

• Access your data — via GET /api/users/me/export or the Export button in account settings.
• Delete your account — via DELETE /api/users/me or the Delete button. Cascades immediately through DB and MinIO.
• Correct your data — via email.
• Complain to the competent supervisory authority.

AI transparency

Each photo upload sends the image (Base64) plus minimal context (day number, hydration, room temperature) to Claude Sonnet. The response is structured JSON (maturity, bubbles, dome, tips). No free-text generation, no personal data in the prompt.