Gemäß der Datenschutz-Grundverordnung DSGVO

Data Controller

According to Art. 13 Abs. 1. lit a GDPR

SafeHaven

Austingasse 4, 2700 Wiener Neustadt, Österreich

E-Mail: SafeHavenContact@gmail.com

Tel: +43 664 4264654

Data Protection Officer

According to Art.37 GDPR

Name: Max Mustermann

Email: privacy@safehaven.eu

Address: Austingasse 4, 2700 Wiener Neustadt, Austria

What Data We Collect

According to Art. 13 DSGVO

When registering and using SafeHaven we collect the following personal data:

Account Data:

  • Name
  • Email address
  • Password (stored encrypted, never in plaintext)
  • Phone number
  • Date of birth (for age verification)

Media Data:

  • Uploaded photos, videos and other media content
  • C2PA metadata of uploaded content (device information, timestamps, cryptographic signatures)

Payment Data:

  • Bank details (only if you participate in the SafeHaven Monetization/Data Leasing Program)

We store this data for as long as it is necessary for the maintenance of your account, according to Art. 5 Abs. 1 lit. e GDPR.

How We Process Data

According to Art. 5 GDPR

  • Transparency and Lawfulness: According to Art. 5 Abs. 1. lit a GDPR: Data is only processed lawfully: See “Lawfulness of Processing”
  • Purpose Limitation: According to Art. 5 Abs. 1. lit b GDPR: Data is only being collected for a legitmate purpose: See “Purpose of data processing”
  • Data Minimisation: According to Art. 5 Abs. 1. lit c GDPR: The data we collect is minimised to only what we require for our purpose.
  • Accuracy: According to Art. 5 Abs. 1. lit d: We keep data correct and up to date
  • Storage: According to Art. 5 Abs. 1 lit. e: We only store the data for as long as necessary and in a way, such that the identification of the affected person is only possible for strictly as long as needed by the purposes it is being used for: See “How Long We Store Your Data”
  • Integrity and Confidentiality: According to Art. 5 Abs. 1 lit. f: Data is stored securely. See “Security”

Lawfulness of Processing

According to Art. 6 GDPR

  • Lawfulness of Processing: According to Art.6 Abs. 1. lit b GDPR: Data is processed on the legal basis of contract performance. By creating a SafeHaven account you enter into contract with us, which requires the processing of your personal data including but not limited to Name, Email address, Phone number, Media Data and Payment Data to provide the service.

  • Lawfulness of Processing: According to Art.6 Abs. 1 .lit c GDPR: To ensure the safety of children and adolescents we are legally required to verify the age of our users according to Art. 8 GDPR. For this purpose we collect the date of birth of every user upon registration.

Purpose of Data Processing

According to Art. 5 Abs. 1 lit. b GDPR Account Data:

  • Creation and maintenence of your Account connected.
  • Each account is linked to a single Phone number, email address
  • Age Verification in accordance to Art. 8 GDPR.

Media Data:

  • Verification of whether uploaded content is human generated
  • Ensuring platform integrity
  • C2PA metadata is processed but not publicly displayed without your consent
  • Displaying videos, photos, and other media content uploaded by the user with their explicit consent.

Payment Data:

  • Processing of payouts to creators participating in the Data Leasing/Monitisation Program

How Long We Store Your Data

  • Account Data: Until Account termination or until deletion by user
  • Media Data: Until Account termination or until deletion by user
  • Payment Data: Until Opt-out of Data Leaseing/Monitisation Program

Third Parties

According to Art. 13. Abs. 1 lit. f GDPR.

SafeHaven does not sell personal data to third parties.

Disclosure only occurs in the following cases:

  • Cloudflare We use Cloudflare for hosting and security.

Privacy Policy: cloudflare.com/privacypolicy

  • Payment Service Provider

Bank details are passed to our payment service provider solely for the purpose of processing payouts to creators.

  • AI Companies

If you participate in the Data Leasing Program, your content will be licensed to AI companies. This occurs exclusively on the basis of your explicit consent according to Art. 6 Abs. 1 lit. a GDPR.

Your Rights

According to Art. 15 - 21 GDPR

Regarding Personal Data Users have the right to:

  • Request information on the data we store about you. (According to Art. 15 GDPR)
  • Request correction on any false information regarding you. (According to Art. 16 GDPR)
  • Request the deletion of any information or data related to you (Recht auf Vergessenwerden According to Art. 17 GDPR)
  • Request restrictions on the processing of your information (Art. 18 GDPR)
  • Be informed on any deletion of their personal information or changes to processing. (Art. 19 GDPR)
  • Data transferrability: Users can recieve their data in a maschine readable format. (Art. 20 GDPR)
  • Deny the processing of their personal data (Art. 21 GDPR)

Security

According to Art. 32 GDPR

  • SafeHaven encrypts and Pseudonymises all personal data (Art.32 Abs.1 lit a GDPR)
  • Cloudflare protects our infrastructure against DDoS attacks and unauthorised access

The provision of personal data is partly required by law (date of birth pursuant to Art. 8 GDPR) and partly necessary for the performance of our contract with you (email, password). Without this data we cannot provide the SafeHaven service. Provision of bank details is voluntary and only required if you participate in the Data Leasing / Monetization Program.

Automated Decision Making

According to Art. 22 GDPR

SafeHaven uses automated processing to verify whether uploaded content contains valid C2PA metadata.

Right to Lodge a Complaint

According to Art. 77 GDPR

You have the right to lodge a complaint with the Austrian Data Protection Authority.

Cookies and Analytics

SafeHaven does not use Cookies or any Analytics tools.