Why einsicht.ai
Simple analytics & insights
Simple analytics. Clear insights. Built for product teams that move fast.
No complex setup
No complex setup. Just send and track.
Resources
Blog
Read our latest articles and insights.
Docs
Read our documentation and learn how to use einsicht.ai.
Pricing
Sign in Sign up

Privacy Policy

At einsicht.ai, we take your privacy seriously. This Privacy Policy explains how we collect, use, and protect your data when you use our services, including the einsicht.ai platform, website, and related services. We also outline how we comply with the General Data Protection Regulation (GDPR) and Google's API Services User Data Policy.

1. Who We Are

einsicht.ai is a software project operated by Jan Schröder. We are committed to protecting your personal data and ensuring its confidentiality. If you have any questions about privacy, you can contact us at:

Email: jan.schroeder@einsicht.ai

2. What Data We Collect

We collect the following types of data:

Personal Data:

  • Email Address: We collect your email address when you sign up for the waitlist, create an account, or use Google Sign-In.
  • Account Data: If you use the platform, we may collect data such as your username, preferences, and usage details associated with your account.

Google Sign-In Data (Limited Use Compliance):

  • Email Address: When you choose to sign in with Google, we receive your email address from Google's authentication service to identify and authenticate you on our platform.
  • Google User ID (sub): We receive a unique identifier (sub) from Google that helps us securely link your Google account to your einsicht.ai account and maintain your authentication state.

Important: We strictly adhere to Google's Limited Use requirements. The data we receive from Google Sign-In is used solely for authentication and account management purposes. We do not use this data for any other purposes, including advertising, analytics, or any other commercial activities.

Usage Data:

  • Anonymous Usage Data: We use Plausible Analytics to collect anonymous usage data. This data helps us improve the platform's user experience and is collected only with your consent.
  • Cookies and Preferences: We collect cookie consent preferences, which are stored locally in your browser for your convenience. We do not use cookies that track personal data unless you explicitly consent.

3. Why We Collect Your Data

We collect your data for the following purposes:

  • Email Address: To notify you about beta access, product updates, new features, or significant changes to the service. This processing is based on your consent (Art. 6 para. 1 lit. a GDPR).
  • Google Sign-In Data: To provide secure authentication and account management when you choose to sign in with Google. This processing is based on your consent (Art. 6 para. 1 lit. a GDPR) and is necessary for the performance of the service contract (Art. 6 para. 1 lit. b GDPR). We strictly limit the use of this data to authentication purposes only, in compliance with Google's Limited Use requirements.
  • Usage Data: To analyze user behavior on the platform, improve the product, and offer a personalized experience. The data collected is anonymized and does not contain personal identifiers.

4. Analytics & Cookies

We use Plausible Analytics, a privacy-friendly and GDPR-compliant analytics tool that:

  • Does not use cookies
  • Does not store personal data
  • Does not track you across websites

Plausible Analytics is loaded only after you give your explicit consent via our cookie banner. You can manage your cookie preferences at any time by clicking "Cookie Preferences" in the footer of the website.

5. How We Protect Your Data

We employ a range of technical and organizational measures to protect your data against unauthorized access, loss, misuse, or disclosure. This includes encryption, secure storage, and strict access controls within the platform.

6. Your Rights Under GDPR

As a user of our service, you have the following rights under the General Data Protection Regulation (GDPR):

  • Access to Data: You have the right to request access to your personal data stored by us, including the Google email address and user ID we store for authentication purposes.
  • Correction: You can request correction of any inaccurate or incomplete data we hold.
  • Deletion: You can request the deletion of your data under certain conditions. This includes the right to have your Google Sign-In data removed from our systems.
  • Withdraw Consent: You can withdraw your consent to our processing of your data at any time, including consent for Google Sign-In.
  • Right to Object: You can object to the processing of your personal data.
  • Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
  • Complaints: You have the right to lodge a complaint with a supervisory authority if you believe your rights have been violated.

To exercise any of these rights, please contact us at:
Email: jan.schroeder@einsicht.ai

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, including for the purpose of providing the service and complying with legal obligations. Specifically:

  • Google Sign-In Data: Your Google email address and user ID are retained for the duration of your account's existence and for a reasonable period thereafter to ensure account security and prevent unauthorized access. This data is automatically deleted when you delete your account or after 30 days of account inactivity.
  • Account Data: Retained for the duration of your account's existence and deleted within 30 days of account deletion.
  • Waitlist Data: Retained until you either gain access to the platform or request removal from the waitlist.

When your data is no longer required, we securely delete or anonymize it. You can request immediate deletion of your data at any time by contacting us.

8. Third-Party Service Providers

We may use third-party service providers to help us operate and improve the service, such as hosting, analytics, and email communication. These providers may have access to your data to perform their services but are obligated not to disclose or use it for any other purposes.

8.1. Google Sign-In (Limited Use Compliance)

We use Google Sign-In, a service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, to provide secure authentication for our users. When you choose to sign in with Google, we receive limited user data from Google's authentication service.

Data Received from Google: We only receive your email address and a unique Google user identifier (sub) from Google's authentication service. We do not receive any other personal information from your Google account, such as your name, profile picture, or other Google profile data.

Limited Use Compliance: We strictly adhere to Google's Limited Use requirements. The data we receive from Google Sign-In is used exclusively for:

  • Identifying and authenticating you when you sign in with Google
  • Linking your Google account to your einsicht.ai account
  • Maintaining your authentication state across sessions
  • Providing secure access to your account and data

No Other Uses: We do not use Google Sign-In data for advertising, analytics, or any other commercial purposes. We do not combine this data with other data sources for profiling or tracking purposes.

Data Storage and Security: Your Google email address and user ID are stored securely in our database using industry-standard encryption and are only used for authentication purposes. Access to this data is strictly limited to authorized personnel who require it for system administration and security purposes.

Data Sharing: We do not share your Google Sign-In data with third parties except in the following limited circumstances:

  • When required by law or legal process
  • To protect the security and integrity of our services
  • To prevent fraud or abuse
  • With our hosting provider (Vercel) solely for the purpose of hosting our application infrastructure

Google's Privacy Policy: Google's collection and use of your data when using Google Sign-In is governed by Google's Privacy Policy. We recommend reviewing this policy to understand how Google handles your data.

8.2. Use of OpenAI

We use services provided by OpenAI, L.L.C., located at 3180 18th Street, San Francisco, CA 94110, USA, to power certain AI-driven features of einsicht.ai. These services allow users to interact with product data in natural language and receive AI-generated insights.

Depending on the usage, data such as user questions, context, or platform events may be sent to OpenAI's servers for processing. This processing is performed based on our legitimate interest in offering advanced AI features (Art. 6 para. 1 lit. f GDPR). We do not share any directly identifying personal data unless explicitly required and authorized by the user.

OpenAI is certified under the EU-U.S. Data Privacy Framework (DPF), which provides appropriate safeguards for international data transfers under GDPR.

For more information, please refer to OpenAI's Privacy Policy.

8.3. Payment Processing via Lemon Squeezy

We use Lemon Squeezy, LLC, 3827 Phelan #301, Beaumont, TX 77707, USA, for processing payments of our products and services. Lemon Squeezy acts as the "Merchant of Record", meaning payments are collected and processed directly by Lemon Squeezy.

In this context, Lemon Squeezy processes personal data such as name, email address, billing address and payment information. The processing of this data is necessary for the performance of the contract (Art. 6 (1) lit. b GDPR).

For more information, please refer to the Lemon Squeezy Privacy Policy.

9. International Data Transfers

Your data may be transferred to and stored in servers located outside of your country, including in countries where the data protection laws may differ from those of your country. By using our service, you consent to such transfers.

Google Sign-In Data: When you use Google Sign-In, your authentication data may be processed by Google's servers in the United States. Google LLC is certified under the EU-U.S. Data Privacy Framework (DPF), which provides appropriate safeguards for international data transfers under GDPR.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page, and the updated policy will be effective as soon as it is published. We encourage you to review this policy regularly to stay informed about how we protect your data.

Notification of Changes: If we make material changes to how we handle your personal data, particularly regarding Google Sign-In data usage, we will notify you via email or through a prominent notice on our website.

11. Contact Us

If you have any questions or concerns about this Privacy Policy or how we handle your personal data, please contact us at:
Email: jan.schroeder@einsicht.ai

Data Protection Inquiries: For specific inquiries about your Google Sign-In data or to exercise your data rights, please include "Data Protection Request" in your email subject line for faster processing.