Privacy Policy

strackt is operated by Madonie Holding, registered in the Netherlands. When this policy mentions "strackt," "we," "us," or "our," it refers to Madonie Holding as the data controller responsible for your personal data.

For any privacy-related questions, contact us at [email protected].

We collect different types of data depending on how you interact with us:

Information you provide

• Waitlist & newsletter — your email address when you sign up for the waitlist or subscribe to The Log.
• Account data — name, email address, and billing information when you create an account on the strackt platform.
• Support & feedback — any information you share when contacting us through Featurebase or email.

Information collected automatically

• Analytics — we use Umami, a privacy-focused analytics tool. Umami does not use cookies, does not collect personal data, and does not track you across websites. All data is aggregated and anonymous.
• Server logs — standard web server logs including IP addresses, browser type, and pages visited. These are retained for a limited period for security and debugging purposes.

Information from third parties

• Payment data — billing and payment information is processed by Paddle, our merchant of record. We do not store your credit card details.

We do not sell your data. We share data only with the following processors, all necessary to operate the service:

Mailcoach is self-hosted on our own infrastructure. Your newsletter data does not leave our systems.

• Account data — retained while your account is active, deleted within 30 days of account deletion.
• Waitlist & newsletter — retained until you unsubscribe.
• Server logs — retained for up to 90 days.
• Payment records — retained as required by tax and accounting law (typically 7 years).
• Support conversations — retained for up to 12 months after resolution.

We keep cookie usage to a minimum. Our analytics tool (Umami) is cookieless and does not track you across websites.

We do not use advertising or tracking cookies.

Under the GDPR, you have the following rights:

• Access — request a copy of the personal data we hold about you.
• Rectification — ask us to correct inaccurate or incomplete data.
• Erasure — ask us to delete your personal data ("right to be forgotten").
• Restriction — ask us to limit how we process your data.
• Portability — request your data in a structured, machine-readable format.
• Objection — object to processing based on legitimate interest.
• Withdraw consent — unsubscribe from the newsletter at any time via the link in every email.

To exercise any of these rights, email [email protected]. We respond within 30 days.

You also have the right to lodge a complaint with a supervisory authority. In the Netherlands, this is the Autoriteit Persoonsgegevens.

We take appropriate technical and organizational measures to protect your data. All connections are encrypted via TLS. Access to personal data is restricted to those who need it to operate the service.

Some of our processors operate outside the EU/EEA. Where data is transferred internationally, we ensure appropriate safeguards are in place (such as Standard Contractual Clauses or adequacy decisions) to protect your data in accordance with the GDPR.

We may update this privacy policy from time to time. When we make significant changes, we will notify you via email or a notice on our website. The "last updated" date at the top of this page reflects the most recent revision.