Privacy Policy
Last updated: March 10, 2026
This Privacy Policy explains how Peter Schings ("we", "us", "our") collects, uses, and protects your personal data when you use the Noisegate service ("Service") available at noisegate.digital.
We are committed to protecting your privacy and complying with the General Data Protection Regulation (GDPR) and other applicable data protection laws.
1. Data Controller
The data controller responsible for processing your personal data is Peter Schings. For any privacy-related inquiries, please contact us at support@noisegate.digital.
2. Data We Collect
We collect and process the following personal data:
- Email address — provided by you during subscription, used for license delivery and account management.
- Machine fingerprint hash — a one-way cryptographic hash derived from hardware identifiers on your computer. This hash is used solely to enforce the single-seat license. It cannot be reversed to identify your hardware, operating system, or any other information about your machine. We store only the hash, never the underlying hardware identifiers.
- Payment data — payment transactions are processed entirely by Stripe. We receive your Stripe customer ID and subscription status but do not store credit card numbers, bank details, or other payment credentials.
3. Legal Basis for Processing (GDPR Article 6)
We process your personal data on the following legal bases:
- Performance of a contract (Art. 6(1)(b) GDPR) — processing your email and machine fingerprint is necessary to deliver and manage your subscription and license.
- Legitimate interest (Art. 6(1)(f) GDPR) — processing the machine fingerprint hash to prevent license abuse and enforce single-seat licensing terms.
4. Purpose of Data Processing
Your data is used exclusively for:
- License key generation, validation, and delivery
- Subscription management and billing
- Single-seat license enforcement via machine fingerprint verification
- Customer support communications
5. Third-Party Processors
We share your data with the following third-party service providers, each acting as a data processor on our behalf:
- Stripe (stripe.com/privacy) — payment processing. Stripe receives your email address and payment information to process transactions.
- Supabase (supabase.com/privacy) — database and backend infrastructure. Your email and machine fingerprint hash are stored in Supabase. EU hosting is available.
We do not sell, rent, or share your personal data with any other third parties.
6. Data Storage and Security
- All data is encrypted in transit using HTTPS/TLS.
- Data is stored in Supabase-managed infrastructure with EU hosting availability.
- Access to personal data is restricted to authorized personnel only.
- Machine fingerprints are stored as irreversible one-way hashes — the original hardware identifiers are never transmitted or stored.
7. Cookies, Tracking, and Analytics
We do not use cookies, tracking pixels, or analytics tools. Our website and service do not track your browsing behavior in any way.
8. Data Retention
- Your personal data is retained for as long as your license and subscription remain active.
- Upon account deletion request, all personal data (email address, machine fingerprint hash, and associated records) will be permanently deleted within 30 days.
- We may retain anonymized, non-personal data for statistical purposes.
9. Your Rights (GDPR Articles 15-20)
Under the GDPR, you have the following rights regarding your personal data:
- Right of access (Art. 15) — request a copy of the personal data we hold about you.
- Right to rectification (Art. 16) — request correction of inaccurate or incomplete data.
- Right to erasure (Art. 17) — request deletion of your personal data ("right to be forgotten").
- Right to restriction of processing (Art. 18) — request that we limit processing of your data under certain conditions.
- Right to data portability (Art. 20) — receive your personal data in a structured, commonly used, machine-readable format.
- Right to object (Art. 21) — object to processing based on legitimate interest.
To exercise any of these rights, contact us at support@noisegate.digital. We will respond to your request within 30 days.
10. Right to Lodge a Complaint
If you believe that our processing of your personal data violates the GDPR, you have the right to lodge a complaint with a supervisory authority in the EU member state of your habitual residence, place of work, or place of the alleged infringement.
11. International Data Transfers
Where data is processed outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission, to protect your personal data.
12. Children's Privacy
Our Service is not directed at individuals under the age of 16. We do not knowingly collect personal data from children.
13. Changes to This Policy
We may update this Privacy Policy from time to time. If we make material changes, we will notify subscribers via the email address associated with their account. The "Last updated" date at the top of this page reflects the most recent revision.
14. Contact
For any questions about this Privacy Policy or your personal data, contact us at:
support@noisegate.digital