Privacy Policy

Controller within the meaning of the General Data Protection Regulation (GDPR):

JNSIMedia UG (haftungsbeschränkt)
Im Prüfling 56
60389 Frankfurt am Main
Germany

Email: privacy@quicksave.ai

Hereinafter referred to as "we" or "Quicksave".

This privacy policy applies to the Quicksave website at quicksave.ai, the Quicksave mobile applications for iOS and Android, and the related web and backend services (collectively, the "Service").

We process personal data only to the extent necessary to provide, secure, bill, and improve the Service. The following sections explain what data we process, for which purposes, and on which legal basis.

We process personal data on the basis of the following provisions of the GDPR:

• Art. 6(1)(b) GDPR — Performance of a contract and pre-contractual measures: to create and manage your account, authenticate you, provide premium features, and store and sync your content.
• Art. 6(1)(f) GDPR — Legitimate interest: to ensure security, stability, abuse prevention, error diagnosis, defence of legal claims, and the organisational development of the Service.
• Art. 6(1)(a) GDPR — Consent: for optional website analytics using cookies and comparable technologies. You may withdraw your consent at any time with effect for the future.
• Art. 6(1)(c) GDPR — Legal obligation: where we must retain or disclose data to comply with applicable legal obligations.

When you create or access a Quicksave account, we process in particular:

• email address
• authentication and account identifiers
• information you provide during registration or profile management
• technical information required for secure login and session handling

We use Firebase Authentication for login and account management. If you register with email and password, your password is not stored by us in plain text. If you sign in via a third-party provider, we receive the account information required for authentication from that provider.

We use this data to provide your account, authenticate you, protect access, enable password and login flows, and send important service-related communications.

When you use Quicksave, we process the content and metadata you create or store in the Service, in particular:

• saved articles, URLs, and reading content
• collections, tags, highlights, and notes
• sync and session information
• plan and subscription status information

This processing is necessary to provide the Service, sync content across devices, unlock premium features, and handle support requests.

We do not use your saved content, highlights, or notes for advertising, profiling, or sale to third parties.

When you visit the Quicksave website, the hosting infrastructure automatically processes:

• IP address
• Browser type and version
• Referrer URL
• Date and time of access

This data is needed to deliver the website, defend against attacks, analyse disruptions, and maintain technical security. The website is hosted and delivered through Firebase Hosting.

Our website uses Firebase Analytics (Google Analytics 4) to understand how visitors interact with the site and which campaigns or traffic sources later contribute to signups. This service is only activated if you give explicit consent via the cookie banner.

If you consent, the following may be processed:

• UTM parameters such as utm_source, utm_medium, utm_campaign, and optionally utm_term and utm_content
• The landing path, landing URL, and referrer URL for the first captured landing session
• The attribution timestamp and a randomly generated attribution_touch_id
• Page views, navigation behaviour, and browser/device information

We store this landing attribution data in a first-party cookie and mirror it in the browser's local storage so it can be attached to a later signup flow.

Google may set cookies including _ga and _gid to distinguish visitors. These cookies, together with our landing attribution storage, are automatically deleted if you withdraw consent.

The purpose of this processing is website analytics, attribution, and campaign measurement using privacy-conscious parameters. We do not use fingerprinting and we avoid collecting unnecessary additional personal data in event parameters.

You can change your analytics preferences or withdraw consent at any time via the cookie settings on our website. Without your consent, no analytics data is collected and no analytics cookies are set.

Strictly necessary cookies may be used where they are required to operate the website.

The Quicksave mobile app does not currently use analytics or tracking.

We use Sentry (operated by Functional Software, Inc., San Francisco, USA) for error and crash monitoring in the Quicksave app. This helps us identify and fix technical problems that affect stability and security.

When an error or crash occurs, Sentry may receive:

• Error type, stack trace, and diagnostic context
• Device type, operating system version, and app version
• A randomly generated event identifier

Sentry is configured to minimize the collection of personal data. We apply data scrubbing to reduce the risk of sensitive information being included in error reports. Sentry does not receive your saved content, email address, or account credentials.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in maintaining a stable and secure service).

If you use paid features, we process order, billing, and status information to the extent necessary to activate, manage, cancel, and assign your subscription.

• Web purchases: payments are processed through Stripe. We receive in particular payment status information, the purchased product, the billing period, and technical reference data. Payment card details are processed by Stripe independently.
• iOS and Android purchases: for purchases through the Apple App Store or Google Play Store, we process the platform and status information needed to activate and manage your subscription. Additional payment data is processed by the respective platform under its own privacy terms.

To provide the Service, we use in particular the following recipients, processors, and platform providers:

• Firebase Hosting (Google Ireland Limited / Google LLC) — website hosting and delivery
• Firebase Authentication (Google Ireland Limited / Google LLC) — registration, login, and account security
• Firebase Analytics / Google Analytics 4 (Google Ireland Limited / Google LLC) — website analytics, only with consent
• Sentry (Functional Software, Inc., USA) — error and crash monitoring
• Stripe (Stripe Payments Europe, Ltd. / Stripe, Inc.) — payment processing for web subscriptions
• Apple App Store and Google Play Store — distribution, in-app/store processing, and subscription management on mobile platforms

Where service providers process personal data on our behalf, we enter into data processing agreements under Art. 28 GDPR or rely on another appropriate data protection basis for the relationship.

We do not sell personal data. We do not share personal data with third parties for their own advertising or marketing purposes.

Some of our service providers are based in or use infrastructure in the United States, in particular Google, Sentry, and Stripe. Where personal data is transferred to countries outside the European Economic Area, we rely on appropriate safeguards, including:

• European Commission adequacy decisions where applicable
• Standard Contractual Clauses (SCCs) pursuant to Art. 46(2)(c) GDPR
• Supplementary technical and organizational measures where appropriate

For Google services, data processing is governed by Google's data processing terms including Standard Contractual Clauses. For Sentry and Stripe, the applicable privacy and data processing addenda provide appropriate safeguards for international transfers.

We retain your data as follows:

• Account, content, and usage data is generally stored for as long as your account exists and the data is needed to provide the Service.
• After account deletion, we remove personal data and saved content from our active systems within 30 days unless a legal obligation or legitimate reason requires longer retention.
• Server log data is processed by our hosting provider according to its standard retention periods.
• Error reports in Sentry are retained for 90 days by default.
• Analytics data is subject to Google Analytics' retention settings.
• Billing and transaction data is stored to the extent necessary for contract performance, record-keeping, abuse prevention, or legal retention obligations.

Statutory retention obligations (e.g. under tax or commercial law) may require us to retain certain data beyond account deletion.

Under the GDPR, you have the following rights regarding your personal data:

• Right of access (Art. 15 GDPR) — request information about what data we store about you
• Right to rectification (Art. 16 GDPR) — request correction of inaccurate data
• Right to erasure (Art. 17 GDPR) — request deletion of your data
• Right to restriction of processing (Art. 18 GDPR) — request that we restrict how we use your data
• Right to data portability (Art. 20 GDPR) — receive your data in a structured, machine-readable format
• Right to object (Art. 21 GDPR) — object to processing based on legitimate interest
• Right to withdraw consent (Art. 7(3) GDPR) — withdraw consent at any time without affecting prior processing

To exercise any of these rights, contact us at: privacy@quicksave.ai

You may delete your account at any time through the app. Upon deletion, your data will be removed as described in Section 10.

You have the right to lodge a complaint with a supervisory authority under Art. 77 GDPR. The authority competent for our company is in particular:

Der Hessische Beauftragte für Datenschutz und Informationsfreiheit
Wilhelmstraße 7
65185 Wiesbaden
https://datenschutz.hessen.de

We employ technical and organizational measures to protect your data, including:

• Encrypted data transmission (TLS/HTTPS)
• Secure authentication procedures
• Access controls and principle of least privilege
• Regular security reviews and updates

We may update this privacy policy when our Service, data practices, or the applicable legal framework changes. The current version is always available at https://quicksave.ai/privacy.

If we make material changes affecting your rights or the way data is processed, we will notify you appropriately, for example through the Service or by email.

Last updated: May 2026