Pawtner
Deutsch

Last updated: January 31, 2026

Privacy Policy

1. Introduction

Pawtner ("we," "our," or "us") is operated by Timo Leisengang. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our pet care business management service.

We are committed to protecting your privacy and complying with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

2. Data We Collect

Account Information

When you create an account, we collect:

  • Name and email address
  • Password (stored securely using industry-standard hashing)
  • Business name
  • Authentication data from Google or Apple if you use social login

Client Data

When you add clients to manage your pet care business, you may provide:

  • Client names, addresses, phone numbers, and email addresses
  • Emergency contact information
  • Veterinarian information
  • Access instructions (gate codes, alarm codes, key locations)

Pet Data

Information about your clients' pets may include:

  • Pet names, species, breed, and physical characteristics
  • Photos of pets
  • Medical information including medications and allergies
  • Behavioral notes and care instructions
  • Feeding schedules and dietary requirements

Visit Data

When you use visit tracking features, we collect:

  • GPS coordinates at check-in and check-out (with your permission)
  • Timestamps of visits
  • Photos taken during visits
  • Notes about the visit

Staff/Team Data

When you invite team members, we collect:

  • Name and email address
  • Role and permissions assigned by the account owner

Booking Data

When clients submit booking requests via your public booking page, we collect:

  • Client name, email address, and phone number
  • Preferred dates and selected service
  • Notes submitted with the booking request

Client Portal Data

When clients access the client portal, we collect:

  • Magic link tokens and session data
  • Language preference
  • Profile updates submitted through the portal

Passkey/WebAuthn Data

If you use passkey authentication, we store:

  • Credential IDs and public keys

No biometric data is stored or transmitted. Biometric verification happens entirely on your device.

Feedback Data

When you submit feedback or bug reports, we collect:

  • Feedback category and message text
  • Screenshots (if attached)
  • Browser and operating system user agent string

Technical Data

We automatically collect:

  • IP address
  • Browser type and version
  • Device information
  • Usage patterns and access times

3. How We Use Your Data

We use your data to:

  • Provide and maintain the Pawtner service
  • Create and manage your account
  • Enable you to manage your pet care business
  • Send visit reports to your clients on your behalf
  • Generate invoices and manage billing
  • Process booking requests and send approval/decline notifications
  • Provide authenticated client portal access via magic links
  • Enable team collaboration with role-based staff permissions
  • Process user feedback and bug reports
  • Process subscription payments (via Stripe)
  • Send service-related communications (e.g., email confirmations)
  • Monitor application errors for service reliability (via Sentry)
  • Ensure security and prevent fraud
  • Improve and optimize our service

We do not sell or share your personal data with third parties for marketing purposes.

We process your data based on the following legal grounds:

  • Contract Performance: Processing necessary to provide the service you signed up for (Article 6(1)(b) GDPR)
  • Legitimate Interest: Processing for security, fraud prevention, and service improvement (Article 6(1)(f) GDPR)
  • Consent: Where you have given explicit consent, such as for marketing communications (Article 6(1)(a) GDPR)
  • Legal Obligation: Processing required to comply with applicable laws (Article 6(1)(c) GDPR)

5. Data Storage & Security

Your data is stored on servers located in Frankfurt, Germany (EU), operated by our infrastructure provider Supabase. We implement appropriate technical and organizational measures to protect your data, including:

  • Encryption in transit (TLS/SSL)
  • Encryption at rest
  • Secure password hashing
  • Regular security updates
  • Access controls and authentication

6. Third-Party Services

We use the following third-party services to operate Pawtner:

ServicePurposeLocation
SupabaseDatabase, authentication, file storageFrankfurt, EU
ResendEmail deliveryUS (EU SCCs)
VercelApplication hostingGlobal edge network
GoogleOAuth authentication (optional)US (EU SCCs)
AppleOAuth authentication (optional)US (EU SCCs)
SentryError monitoring and performance trackingFrankfurt, EU
StripePayment processing for subscriptionsUS (EU SCCs)

SCCs = Standard Contractual Clauses, the legal mechanism for transferring data outside the EU.

7. Data Retention

We retain your data for as long as your account is active. When you delete your account, we will delete your personal data within 30 days, except where we are required to retain certain data for legal or legitimate business purposes.

Specific retention periods:

  • Email logs: 90 days
  • Feedback screenshots: 30 days
  • Payment records: as required by German tax law (10 years for invoices)
  • Account deletion: all personal data removed within 30 days

You can request deletion of your account and data at any time by contacting us at the email address provided below.

8. Your Rights

Under the GDPR, you have the following rights:

  • Right to Access (Article 15): Request a copy of your personal data
  • Right to Rectification (Article 16): Request correction of inaccurate data
  • Right to Erasure (Article 17): Request deletion of your data ("right to be forgotten")
  • Right to Restrict Processing (Article 18): Request limitation of data processing
  • Right to Data Portability (Article 20): Request your data in a machine-readable format
  • Right to Object (Article 21): Object to processing based on legitimate interest
  • Right to Withdraw Consent (Article 7): Withdraw consent at any time where processing is based on consent

To exercise any of these rights, please contact us at dev@leisengang.online.

You also have the right to lodge a complaint with a supervisory authority. In Germany, this is the Bayerisches Landesamt für Datenschutzaufsicht (BayLDA) for Bavaria, or the relevant authority in your jurisdiction.

9. International Transfers

Your primary data is stored within the European Union (Frankfurt, Germany). Some of our service providers are located in the United States. Where data is transferred outside the EU, we ensure appropriate safeguards are in place, including:

  • EU Standard Contractual Clauses (SCCs)
  • Adequacy decisions where applicable

10. Children's Privacy

Pawtner is intended for users who are at least 16 years old. We do not knowingly collect personal data from children under 16. If you believe we have collected data from a child under 16, please contact us immediately.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.

12. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Timo Leisengang
Kunreuthstr. 61
81249 München
Germany

Email: dev@leisengang.online

Timo Leisengang also serves as the Data Protection Officer (DPO) for Pawtner.