Back to map

Impressum

Last updated: March 2026

Fill in your real contact details below before launching. An incomplete Impressum can result in fines (Abmahnung).

Information according to § 5 DDG

[Your Full Legal Name]
[Your Street Address]
[Postal Code] [City]
Germany

Contact

Email: [your@email.com]
Phone: [Your Phone Number]

Responsible for content according to § 18 (2) MStV

[Your Full Legal Name]
[Address as above]

EU Dispute Resolution

The European Commission provides a platform for online dispute resolution (ODR): https://ec.europa.eu/consumers/odr/. We are not willing or obliged to participate in dispute resolution proceedings before a consumer arbitration board.

Privacy Policy (Datenschutzerklärung)

Last updated: March 2026

This is a structural template. Before launch, generate a complete, legally reviewed privacy policy using a service like datenschutz-generator.de or iubenda, and replace the content below.

1. Data Controller

[Your Full Legal Name]
[Your Street Address]
[Postal Code] [City], Germany
Email: [your@email.com]

2. Data We Collect

2.1 Anonymous Authentication

When you first use Sunraydar, an anonymous account is created via Supabase. This generates a random user ID with no personal information (no email, no name). Legal basis: Art. 6(1)(f) GDPR (legitimate interest in providing the service).

2.2 Location Data

If you grant location permission, your GPS coordinates are used to show sun/shade data for your area. Location is snapped to a grid cell and precise coordinates are discarded. We do not track or store your movement history. Legal basis: Art. 6(1)(a) GDPR (your explicit consent via the browser permission prompt).

2.3 Sun/Shade Confirmations

When you use the "Confirm Sun/Shade" feature, we store: the grid cell location, the confirmation value (sun or shade), a timestamp, and your anonymous user ID. Legal basis: Art. 6(1)(a) GDPR (consent — you actively choose to submit).

2.4 Waitlist Email

If you submit your email to the city waitlist, we store it to notify you when Sunraydar reaches your area. Legal basis: Art. 6(1)(a) GDPR (consent). You can request deletion at any time.

2.5 Technical Data

Our hosting provider (Cloudflare) automatically collects: IP address, browser type, operating system, referrer URL, and timestamp. This data is processed for security and performance. Legal basis: Art. 6(1)(f) GDPR (legitimate interest in website security).

3. Local Storage & Service Worker

Sunraydar is a Progressive Web App (PWA) that stores data locally on your device:

localStorage: Onboarding state, display preferences, authentication tokens. Essential for app functionality.
Service Worker cache: Application code and map data for offline use. Essential for PWA functionality.
IndexedDB (via Supabase): Authentication session data. Essential for the service.

All local storage is strictly necessary for providing the service. No tracking or analytics cookies are used. No consent banner is required under § 25 TTDSG as these are technically essential.

4. Third-Party Services

We use the following services that may process your data:

Supabase (EU/Frankfurt) — Database hosting, anonymous authentication, data storage. Privacy Policy
Cloudflare (Global CDN, EU processing) — Website hosting, CDN, DDoS protection. Privacy Policy
OpenFreeMap — Map tile serving. No personal data is sent beyond IP address in tile requests.
BrightSky / DWD — Weather data API. No personal data is sent.
Open-Meteo — Weather data API. No personal data is sent.

Data Processing Agreements (Auftragsverarbeitungsvertrag) are in place with Supabase and Cloudflare.

5. Data Retention

Anonymous user accounts: retained until account deletion or service shutdown
Sun/shade confirmations: retained indefinitely for accuracy improvement
Waitlist emails: retained until notification is sent or you request deletion
Server logs (Cloudflare): up to 72 hours

6. Your Rights

Under GDPR, you have the right to:

Access your personal data (Art. 15 GDPR)
Rectification of inaccurate data (Art. 16 GDPR)
Erasure ("right to be forgotten") (Art. 17 GDPR)
Restriction of processing (Art. 18 GDPR)
Data portability (Art. 20 GDPR)
Object to processing (Art. 21 GDPR)
Withdraw consent at any time (Art. 7(3) GDPR)

To exercise any of these rights, contact: [your@email.com]

7. Right to Complain

You have the right to lodge a complaint with a data protection supervisory authority. The competent authority for complaints is:

[Your State Data Protection Authority]
[e.g., Berliner Beauftragte für Datenschutz und Informationsfreiheit]
https://www.datenschutz-berlin.de

8. Data Security

We use HTTPS encryption for all data transmission. Database access is restricted via Row Level Security (RLS) policies. All hosting infrastructure is in the EU (Frankfurt region). Anonymous authentication ensures minimal personal data collection by design.

Data Attribution

Required by data source licenses

Building data (Berlin): Senatsverwaltung für Stadtentwicklung, Bauen und Wohnen Berlin (dl-de/by-2-0)
Tree data (Berlin): Senatsverwaltung für Mobilität, Verkehr, Klimaschutz und Umwelt Berlin (dl-de/by-2-0)
Building heights: Microsoft Building Footprints (ODbL)
Elevation: NASA SRTM / Copernicus GLO-30 DEM (public domain)
Weather: Deutscher Wetterdienst (DWD) via BrightSky / Open-Meteo
Weather radar: RainViewer
Satellite validation: Contains modified Copernicus Sentinel-2 data (EU Open Access)