BubblyBytes Logo
BubblyBytes

Privacy Policy of BubblyBytes GbR

Last Updated: 23. April 2025

1. Introduction

Welcome to the Privacy Policy of BubblyBytes GbR (hereinafter "we", "us" or "our"). The protection of your personal data is important to us. This policy describes how we collect, use, store and protect personal data when you visit our website https://www.bubblybytes.com or use our services.

This website is not specifically targeted at children and we do not knowingly collect data from minors.

2. Data Controller

The responsible party within the meaning of data protection laws is:

BubblyBytes GbR\nGlück-Auf-Straße 28\n46284 Dorsten, Germany\nEmail: contact@bubblybytes.com

3. What Data We Collect

We collect the following categories of personal data:

  • Identity data (e.g. name, company name)
  • Contact data (e.g. email address, phone number, postal address)
  • Technical data (e.g. IP address, browser type, operating system, access times)
  • Usage data (e.g. pages visited, time spent, click behavior)
  • Marketing and communication data (e.g. your preferences for receiving newsletters)

We also process aggregated data (e.g. statistical data) that does not allow conclusions to be drawn about a specific person.

4. How We Collect Data

Data is collected in the following ways:

  • Direct interaction: e.g. by filling out forms or direct contact.
  • Automated technologies: e.g. through cookies and server logs.
  • Third parties or publicly available sources: e.g. through technical services like Cloudflare or mail service providers.

5. Purpose of Data Processing

We use your personal data for the following purposes:

  • To fulfill a contract or to carry out pre-contractual measures
  • To maintain our business relationship
  • To improve our website and services
  • To comply with legal obligations
  • To send marketing information (only with your consent)

6. Hosting, DNS & Email Communication

  • Server infrastructure: Our servers run on dedicated hardware at Zap-Hosting.
  • DNS, Reverse Proxy & Monitoring: We use Cloudflare for performance optimization, DDoS protection and monitoring.
  • Email sending: is done via the third-party provider SMTP2GO.

These providers process data on our behalf and are bound by data processing agreements according to Art. 28 GDPR.

7. Cookies & Tracking Technologies

We use cookies and similar technologies to ensure the functionality of the website and to analyze its use. When you first visit the website, we inform you about this and, if necessary, obtain your consent.

8. Data Security

We use technical and organizational security measures to protect your data against manipulation, loss, destruction or unauthorized access. Only authorized persons have access to personal data, and only to the extent necessary for their tasks.

9. Data Sharing with Third Parties

Personal data is only shared:

  • with data processors with appropriate agreements
  • when required by law
  • when you have expressly consented

10. Data Storage

We store personal data only as long as necessary for the respective purposes or as required by legal retention obligations.

11. Your Rights

You have the right to:

  • Request information about your stored data (Art. 15 GDPR)
  • Request correction of incorrect data (Art. 16 GDPR)
  • Request deletion of your data (Art. 17 GDPR)
  • Request restriction of processing (Art. 18 GDPR)
  • Object to processing (Art. 21 GDPR)
  • Request data portability (Art. 20 GDPR)
  • Withdraw your consent at any time (Art. 7 para. 3 GDPR)

To exercise your rights, please contact us at contact@bubblybytes.com.

12. Changes to this Privacy Policy

This privacy policy may be updated occasionally. You can find the current version at https://www.bubblybytes.com/privacy-policy. Please check the policy regularly to stay informed about changes.

13. Contact

For questions about data protection, you can reach us at:

BubblyBytes GbR

Glück-Auf-Straße 28\n46284 Dorsten, Germany

Email: contact@bubblybytes.com

14. Use of Facebook Login, Facebook APIs & Connected Facebook Pages

When you use our Postiz self-hosted instance to connect your Facebook account or your Facebook Pages, we process certain data provided by Meta Platforms through the Facebook Login and Facebook Graph API.

14.1 Data We Access Through Facebook

Depending on your selection and permissions granted during Facebook Login, the following data may be processed:

  • Public profile information (name, profile picture)
  • Email address
  • List of Facebook Pages you manage
  • Page access tokens
  • Page posts (published, scheduled, or drafts)
  • Page insights and engagement metrics
  • Permissions related to Page management and publishing

We only request the permissions strictly required for operating our social media management features.

14.2 Purpose of Processing Facebook Data

We use this data exclusively for:

  • Displaying your Facebook Pages inside the Postiz dashboard
  • Allowing you to create, publish, and schedule posts
  • Managing existing Page posts
  • Displaying Page insights and engagement metrics
  • Verifying and maintaining Page access permissions

This data is not used for advertising purposes or analytics beyond the functionality of the Postiz system.

14.3 Self-Hosted Environment

Our Postiz installation is self-hosted on servers managed by BubblyBytes GbR at Zap-Hosting. All Facebook-related data, including access tokens and post content, is stored exclusively on our servers and is not shared with Postiz.com or any other third party.

14.4 No Data Sharing

We do not:

  • Sell Facebook data
  • Pass Facebook data to third parties
  • Use Facebook data for profiling, advertising, or tracking

Data is only shared with Meta/Facebook as required by the API usage itself.

14.5 Data Storage & Security

Facebook access tokens and Page data are stored securely on our servers and are protected by technical and organizational measures as outlined in section 8 of this policy.

14.6 Removing Permissions & Data Deletion

You may remove the App's permissions at any time:

  • Via Facebook settings under Settings → Security → Apps and Websites
  • By contacting us at contact@bubblybytes.com
  • By requesting deletion of all associated Facebook data

Upon request, we will delete:

  • All connected Facebook accounts
  • Page data stored by the system
  • Scheduled or published posts stored on our server
  • Any access tokens or session information

14.7 Legal Basis

The processing of Facebook data is based on:

  • Art. 6(1)(b) GDPR – performance of a contract (use of our Postiz system)
  • Art. 6(1)(a) GDPR – your consent via Facebook Login