1
This Privacy Policy describes how we collect, use, store, and protect personal data when you use the Deutsch Lernen mobile application, website, and connected online services.

Depending on how you use the Services, we may process account and profile data, email address, display name, password in hashed form, optional avatar, subscription or plan status, notification preferences, locale, learning activity, quiz attempts, scores, writing submissions, reading progress, support messages, authentication and device signals, server logs, push notification tokens, and payment references returned by the payment provider.

We process personal data to provide and maintain accounts, deliver quizzes and learning features, track progress and history, operate notifications you choose, handle billing and receipts, respond to support requests, secure the Services, prevent abuse, troubleshoot issues, maintain audit logs for authorized staff, and meet legal obligations such as accounting and tax retention.

The app communicates with our PHP JSON API over HTTPS. Requests may include a locale so the server can return translated content. Authorized administrators may access operational logs only for reliability, security, compliance, and support. Ordinary learner accounts are not used to build unrelated advertising profiles.

On-device storage may include a session token, optional quick sign-in credentials if you enable that feature, a random device install identifier, and theme or locale preferences. Biometric or device PIN prompts are handled by the operating system; we do not receive your raw biometric template.

If you allow push notifications, Firebase Cloud Messaging tokens may be sent to our backend so notifications can be routed to your device. Some screens may embed YouTube content, and YouTube or Google may process data under their own terms when that content loads or plays.

Paid plans are prepared through our server-side payment APIs. Payment is completed on a secure bank, card acquirer, or payment processor page. We do not collect or store full card numbers, CVV/CVC, banking passwords, or payment authentication credentials. We keep non-sensitive payment references, status, amount, timestamps, and plan metadata to activate access, issue receipts where enabled, and meet accounting obligations.

We do not sell or rent your personal data. We share information only with service providers and infrastructure needed to run the Services, including hosting, email, payment processors, Google Firebase/FCM, YouTube, GeoIP tools where configured, and document-rendering libraries. Some providers may process data outside your country; safeguards are used where required by law.

We keep account and learning data while your account is active and as needed to deliver the Services. If you delete your account or request erasure where supported, we delete or irreversibly anonymize personal data except where longer retention is required for accounting, tax, legal claims, security, fraud prevention, or other mandatory obligations. Account deletion does not create a refund right for paid plans.

Where applicable law grants rights, you may request access, correction, deletion, restriction, objection, or portability of your personal data. You can adjust some settings in the app. For account deletion or broader privacy requests, use available app tools, Support, or the publisher contact shown in About.

We may update this Privacy Policy when features, providers, legal requirements, or business rules change. Continued use after the update is posted constitutes acceptance unless applicable law requires a different process.