Privacy Policy
Last updated: January 1, 2026 · In accordance with GDPR, BDSG and TMG
We take the protection of your personal data seriously. This Privacy Policy explains what data we collect, how we use it, and what rights you have under applicable law.
1. Data Controller
StackNode · Niedermeyer Jannik
c/o POSTFLEX PFX-242-293, Emsdettener Straße 10, 48268 Greven, Germany
Email: jannik@stacknode.sh
Admin / Privacy: admin@stacknode.sh
2. Data We Collect and Process
2.1 When You Visit the Website
When you access our website, our web server automatically collects and temporarily stores the following data in server log files:
- IP address of the requesting device
- Date and time of access
- Name and URL of the requested file
- Referring website (referrer)
- Browser type and operating system
Legal basis: Art. 6(1)(f) GDPR (legitimate interest in the secure and stable operation of the website). Log files are deleted after a maximum of 14 days.
2.2 When You Register
When you create an account, we collect:
- Email address
- Password (stored as a hash — never in plain text)
- Timestamp of registration
- IP address at the time of registration
Legal basis: Art. 6(1)(b) GDPR (performance of a contract).
2.3 When You Use the Service
During active use of StackNode, we process:
- Container configurations and metadata
- Resource usage (CPU, RAM, storage, network) for billing purposes
- IP addresses assigned to your account
- Account balance and transaction history
- Timestamps of start and stop events
Legal basis: Art. 6(1)(b) GDPR (performance of a contract) and Art. 6(1)(c) GDPR (legal retention obligations for billing data — 10 years under § 147 AO).
2.4 Payments / Cryptocurrency
StackNode accepts cryptocurrency payments only (BTC, LTC, BCH, SOL). We store wallet addresses and transaction hashes used for top-ups as proof of payment. These may constitute personal data under GDPR and are used solely for billing and legal compliance purposes.
Legal basis: Art. 6(1)(b) and Art. 6(1)(c) GDPR.
3. Third-Party Services
3.1 Google Fonts
This website loads fonts from Google Fonts (Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). Your IP address is transmitted to Google servers, constituting a transfer to the USA. Google LLC is certified under the EU-US Data Privacy Framework.
Legal basis: Art. 6(1)(f) GDPR. Google's privacy policy: policies.google.com/privacy
3.2 Cloudflare CDN
We load assets via the Cloudflare CDN (Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA). Cloudflare may process technical data such as IP addresses. Cloudflare is certified under the EU-US Data Privacy Framework.
Privacy policy: cloudflare.com/privacypolicy
4. Cookies
StackNode only uses technically necessary cookies (e.g. a session cookie for login). These cookies are required for the service to function and cannot be disabled. No tracking or marketing cookies are used.
Legal basis: Art. 6(1)(f) GDPR and § 25(2) TTDSG.
5. Your Rights Under GDPR
You have the following rights regarding your personal data:
- Access (Art. 15 GDPR): You may request information about the data we store about you.
- Rectification (Art. 16 GDPR): You may request correction of inaccurate data.
- Erasure (Art. 17 GDPR): You may request deletion of your data, unless legal retention obligations apply.
- Restriction (Art. 18 GDPR): You may request that we restrict processing of your data.
- Portability (Art. 20 GDPR): You may receive your data in a machine-readable format.
- Objection (Art. 21 GDPR): You may object to processing based on legitimate interests.
- Complaint: You have the right to lodge a complaint with the competent supervisory authority — the Berlin Commissioner for Data Protection and Freedom of Information: datenschutz-berlin.de
To exercise your rights, contact us at: admin@stacknode.sh
6. Data Security
We implement appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, loss, destruction, or unauthorized access. Our security practices are continuously updated in line with technological developments. All data in transit is encrypted via HTTPS/TLS.
7. Retention Periods
- Server log files: 14 days
- Account data: For the duration of the contract, then deleted within 30 days of termination
- Billing data: 10 years pursuant to § 147 AO (German Tax Code)
- Container data: Deleted within 30 days of account termination or expiry
8. Changes to This Policy
We reserve the right to update this Privacy Policy as needed. The current version is always available on this page. Registered users will be notified by email of any material changes.