Privacy Policy

Last updated: January 5, 2026

1. Overview

This Privacy Policy explains how Doratics collects, uses, stores, and protects personal data when you visit our website or use our application.

2. Controller

Doratics

Legal and contact details can be found in the Impressum.

The controller determines the purposes and means of processing personal data.

3. Hosting & Infrastructure

Doratics is hosted and operated using the infrastructure of Cloudflare. Cloudflare provides hosting, security, database, and content delivery services.

All application data is processed and stored securely on Cloudflare systems. Appropriate technical and organizational measures are implemented to protect personal data from unauthorized access, loss, or misuse.

4. Authentication & User Accounts

Doratics uses Clerk as its authentication and user identity provider. Users may create an account using email-based authentication or third-party login services such as Google Sign-In.

5. Google Sign-In & Google User Data

When you sign in to Doratics using Google OAuth via Clerk, Doratics accesses limited Google user data strictly for authentication and account management purposes.

Data Accessed

  • Email address
  • Full name
  • Profile picture (if available)
  • Google Account unique identifier (OAuth subject ID)

Doratics does not access any other Google services such as Google Drive, Gmail, Google Contacts, or Google Calendar.

Data Usage

Google user data is used exclusively to:

  • Create and manage user accounts
  • Authenticate users securely
  • Prevent unauthorized access and fraud
  • Provide access to Doratics features

6. Data Storage & Processing

Authentication data is processed and managed by Clerk. Application data is stored and processed on Cloudflare infrastructure.

Doratics does not permanently store Google OAuth access tokens. All data is handled in accordance with industry security standards.

7. Data Sharing

Doratics does not sell, rent, or share personal data with third parties for marketing purposes.

Google user data is shared only with:

  • Clerk – for authentication and identity management
  • Cloudflare – for hosting, storage, and security

8. Data Retention & Deletion

Personal data is retained only for as long as an active user account exists.

Users may request account deletion at any time. Upon deletion, authentication data stored via Clerk and application data stored on Cloudflare will be permanently removed.

9. User Rights

Under applicable data protection laws, users have the right to:

  • Access their personal data
  • Request correction of inaccurate data
  • Request deletion of personal data
  • Request restriction of processing
  • Request data portability

10. Compliance Statement

Doratics’ use of Google user data complies with the Google API Services User Data Policy, including the Limited Use requirements.