Privacy Policy

Responsible Party

bloomed AI UG (haftungsbeschränkt)
Königstr. 70
53115 Bonn
Germany

For privacy-related questions, please contact:
Email: hello@omaship.com

Data Collection Overview

1. Waitlist Registration

Data collected:

• Email address
• Optional: Priority access reason
• Registration timestamp

Purpose:

Managing waitlist and notifying users when access becomes available

Legal basis:

Your consent (GDPR Art. 6 para. 1 lit. a)

Retention period:

Until access is granted or upon request for deletion

2. User Account

Data collected:

• Email address
• Encrypted password
• Account creation timestamp

Purpose:

Authentication and access to the platform

Legal basis:

Contract fulfillment (GDPR Art. 6 para. 1 lit. b)

Retention period:

Until account deletion or 3 years after last activity

3. Project Data

Data collected:

• GitHub organization name
• Repository names and configurations
• Domain names
• Provisioning logs

Purpose:

Creating and managing GitHub repositories for your projects

Legal basis:

Contract fulfillment (GDPR Art. 6 para. 1 lit. b)

Retention period:

Until project deletion or account deletion

4. Technical Data

Data collected:

• Anonymized IP address
• Browser type and version
• Operating system
• Visit timestamp

Purpose:

Technical provision of the website and security

Legal basis:

Legitimate interest (GDPR Art. 6 para. 1 lit. f)

Retention period:

7 days

GitHub Integration

Our service creates and manages GitHub repositories on your behalf via GitHub App authentication. We store:

• GitHub organization name and repository names
• Repository configuration data
• Access tokens (encrypted)

This processing is necessary for the performance of our service (GDPR Art. 6 para. 1 lit. b). GitHub's own privacy policy applies to data processed by GitHub: GitHub Privacy Statement

Cookies

Our website uses essential cookies for user authentication and session management. These cookies are technically necessary for the website to function and are stored on the basis of GDPR Art. 6 para. 1 lit. f.

Session cookies are automatically deleted when you close your browser.

Data Security

We implement comprehensive security measures to protect your data:

• SSL/TLS encryption for all data transmission
• Encrypted password storage using bcrypt
• Secure servers in Germany
• Regular security updates
• Access controls and authentication

Your Rights

Under GDPR, you have the following rights regarding your personal data:

• Right to information: You can request information about the data we store about you
• Right to correction: You can request correction of inaccurate data
• Right to deletion: You can request deletion of your data
• Right to restriction: You can request restriction of data processing
• Right to data portability: You can receive your data in a machine-readable format
• Right to object: You can object to data processing based on legitimate interest
• Right to withdraw consent: You can withdraw consent at any time for the future

To exercise these rights, please contact us at hello@omaship.com

Right to Lodge a Complaint

If you believe that the processing of your personal data violates data protection law, you have the right to lodge a complaint with a supervisory authority.

The responsible supervisory authority for us is:
State Commissioner for Data Protection and Freedom of Information North Rhine-Westphalia
Email: poststelle@ldi.nrw.de
Phone: 0211/38424-0

Changes to This Privacy Policy

We may update this privacy policy from time to time to reflect changes in our practices or for legal reasons. We will notify you of any material changes by posting the updated policy on this page.