Privacy Policy

At CONTROL-F, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI UI Testing platform.

Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the platform.

Data Controller

The data controller responsible for the processing of your personal data is:

control-f GmbH

Neusser Str. 200

50733 Köln

Germany

Email: info@controlf.io

Information We Collect

We may collect information about you in various ways, including:

  • Personal Data: Name, email address, billing information, and other contact details you provide when registering.
  • Account Information: Login credentials and preferences.
  • Test Data: Information about the websites you test, test configurations, and results.
  • Usage Data: Information about how you use our platform, including features accessed and time spent.
  • Technical Data: IP address, browser type, device information, and cookies.

Legal Basis for Processing

We process your personal data on the following legal bases in accordance with Article 6 of the General Data Protection Regulation (GDPR):

  • Contract fulfillment: Processing necessary for the performance of a contract to which you are a party or to take steps at your request before entering into a contract.
  • Legitimate interests: Processing necessary for the purposes of the legitimate interests pursued by us or by a third party, except where such interests are overridden by your interests or fundamental rights and freedoms.
  • Legal obligation: Processing necessary for compliance with a legal obligation to which we are subject.
  • Consent: Processing based on your consent, which you can withdraw at any time.

How We Use Your Information

We may use the information we collect for various purposes, including:

  • Providing and maintaining our platform
  • Processing payments and managing subscriptions
  • Improving our services and user experience
  • Communicating with you about updates, support, and marketing
  • Analyzing usage patterns to enhance platform functionality
  • Detecting and preventing fraudulent or unauthorized activity

Data Retention

We will retain your personal data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your personal data to the extent necessary to comply with our legal obligations, resolve disputes, and enforce our legal agreements and policies.

Usage data will generally be retained for a shorter period, except when this data is used to strengthen the security or to improve the functionality of our platform, or we are legally obligated to retain this data for longer periods.

Data Storage and Security

We use industry-standard security measures to protect your data. Your information is stored on secure servers and we implement appropriate technical and organizational measures to safeguard your data.

We use Supabase for authentication and database services, and all data is encrypted both in transit and at rest.

International Data Transfers

Your information, including personal data, may be transferred to — and maintained on — computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction.

If you are located outside Germany and choose to provide information to us, please note that we transfer the data, including personal data, to Germany and process it there.

Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and no transfer of your personal data will take place to an organization or a country unless there are adequate controls in place including the security of your data and other personal information.

Third-Party Services

We may use third-party services that collect information about you, including:

  • Stripe for payment processing
  • Supabase for authentication and database services
  • Analytics providers to help us understand platform usage

These third parties have their own privacy policies addressing how they use such information.

Your Rights Under GDPR

Under the General Data Protection Regulation (GDPR), you have certain rights regarding your personal data:

  • Right to access - You have the right to request copies of your personal data.
  • Right to rectification - You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
  • Right to erasure - You have the right to request that we erase your personal data, under certain conditions.
  • Right to restrict processing - You have the right to request that we restrict the processing of your personal data, under certain conditions.
  • Right to object to processing - You have the right to object to our processing of your personal data, under certain conditions.
  • Right to data portability - You have the right to request that we transfer the data we have collected to another organization, or directly to you, under certain conditions.

To exercise these rights, please contact us at info@controlf.io. We will respond to your request within 30 days.

If you are a resident of the European Economic Area (EEA) and you believe we are unlawfully processing your personal data, you also have the right to complain to your local data protection supervisory authority. You can find their contact details here:https://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm

Cookies

We use cookies and similar tracking technologies to track activity on our platform and hold certain information. Cookies are files with a small amount of data which may include an anonymous unique identifier.

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our platform.

We use the following types of cookies:

  • Essential cookies: Necessary for the operation of our platform.
  • Analytical/performance cookies: Allow us to recognize and count the number of visitors and see how visitors move around our platform.
  • Functionality cookies: Used to recognize you when you return to our platform.
  • Targeting cookies: Record your visit to our platform, the pages you have visited and the links you have followed.

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

Contact Us

If you have any questions about this Privacy Policy, please contact us at:

info@controlf.io

control-f GmbH

Neusser Str. 200

50733 Köln

Germany

Last updated: May 4, 2025