Sign In Get Started

Privacy

Effective Date: October 16, 2025

Our philosophy

Your privacy is the reason we exist. At "I am NOT the product!" we believe privacy is a fundamental human right. Our policies and technical systems are designed from the ground up to collect the absolute minimum information necessary to provide you with our service. We are not in the business of data collection. This policy outlines what little information we collect and why.

Where your data lives

Your data is stored and processed in Germany, in data centers operated by Hetzner Online GmbH (Gunzenhausen / Falkenstein / Nürnberg). We are the data controller under the EU's GDPR; the BDSG (Bundesdatenschutzgesetz) applies to our processing. We do not transfer your personal data outside the EU/EEA except where you explicitly direct us to (e.g. third-party integrations you enable).

Information we do NOT collect

We believe it is just as important to tell you what we don't do.

Website visitors: Our public website (iamnottheproduct.com) does not use cookies. We do not use analytics, tracking scripts, or fingerprinting technologies. We do not collect your IP address or any personal information when you visit our site.

User content: We will never access, view, or share the content of your files, calendars, contacts, or any other data you store in your Nextcloud instance. Your data is your own.

Information we collect

To provide our service, we must collect the following essential information:

Email address

When you sign up for an account, we collect your email address.

Purpose:

Payment information

All payments are processed by our third-party payment processor, Stripe. When you purchase a plan, you provide your payment information (such as a credit card number) and email address directly to Stripe.

We do not collect, receive, or store your full credit card number or sensitive payment details on our servers. We only receive a confirmation token from Stripe that your payment has been made, along with the email address associated with the transaction.

For more information, please review Stripe's Privacy Policy.

Service monitoring for abuse and fair use

To ensure the stability, security, and integrity of our platform for all users, we monitor our services for misuse and to enforce our fair use policies. This monitoring is strictly limited to service-level metadata and does not involve inspection of your content.

Crucially, you have the ability to enable End-to-End Encryption (E2EE) within your Nextcloud instance. When you use E2EE, the content of your data is encrypted on your device before it is sent to our servers, making it technically impossible for us to access.

Data security

We take the security of the minimal data we hold (your email address) seriously. We use industry-standard administrative and technical security measures to protect it from unauthorized access, disclosure, or destruction.

Data retention

We will retain your email address for as long as your account remains active with us. If you choose to cancel your service, we will securely delete your email address from our systems after a short grace period, in accordance with our data deletion procedures outlined in our Terms of Service.

Your rights

You have the right to access, update, or delete your personal information. As we only store your email address, you can manage this by contacting our support team. Deleting your email address will result in the closure and deletion of your account.

Changes to this privacy policy

We may update this policy from time to time. If we make any material changes, we will notify you via the email address associated with your account before the change becomes effective.

Contact us

If you have any questions about this Privacy Policy, please contact us at support@iamnottheproduct.com.