Cookie Preferences

We use cookies to provide you with the best possible experience. Essential cookies are required for the app to function. Optional cookies are only set with your consent. You can change your preferences at any time. For more information, see our Cookie Policy and Privacy Policy.

Analytics Cookies

Marketing Cookies

Essential Cookies

You can change your cookie preferences at any time via the link in the footer.

Privacy Policy for Sobmit

Last updated: 20 January 2026

This Privacy Policy describes how Sobmit (“we,” “us,” or “our”) collects, uses, and discloses your information when you use our web application Sobmit (the “App”) and the services provided through it. We are committed to protecting your privacy and handling your data in a transparent manner, in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

Who We Are

  • App Name: Sobmit
  • URL: sobmit.com
  • Operator: Sobmit.com – a Kopfundgeist Company
  • Address: Franz-Liszt Str. 38, 38106 Braunschweig, Germany
  • Contact: privacy@sobmit.com

What Information We Collect

We collect and process the following types of information:

Account Information

When you create an account, we collect your email address. We also record the times of your account creation and logins.

Usage Data

We may collect basic usage data related to your interaction with the App, such as pages visited and features used, to improve our services.

How We Collect Your Information

We collect information in the following ways:

  • Directly from you: When you create an account using your email address or through OAuth providers (Google, LinkedIn).
  • Through your use of the App: When you interact with businesses, view offers, or use app features.
  • From OAuth Providers: When you choose to log in via Google or LinkedIn, we receive only your email address from these providers for the purpose of creating and managing your Sobmit account. We do not collect or store any other personal data from these services beyond what is necessary for account management.

How We Use Your Information

We use the collected information for the following purposes:

  • To Provide and Maintain the App: To allow you to create and log into your account, and to provide the core functionality of discovering local businesses and their offers.
  • Account Management and Security: To manage your account, verify your identity, and ensure the security of your account, including tracking login times for security monitoring.
  • Service Improvement: To understand how our App is used and to improve its performance, features, and user experience.
  • Communication: To send you important service-related notifications, such as account verification emails.

Data Minimization

A core principle of Sobmit is data minimization. We only collect and process personal data that is strictly necessary to provide our services. We do not sell, rent, or trade your personal information to third parties.

Sharing Your Information with Third Parties

We work with third-party service providers to operate and maintain our App. These providers act as data processors on our behalf.

Railway (Hosting)

Our App is hosted on Railway (railway.com) in the EU West region (Amsterdam, Netherlands). This means your data is processed and stored within the European Union. Railway provides the infrastructure to run our application with enterprise-grade security.

OAuth Providers (Google, LinkedIn)

When you choose to log in via Google or LinkedIn, we receive only your email address from these providers for the purpose of creating and managing your Sobmit account. We do not collect or store any other personal data from these services beyond what is necessary for account management.

We do not sell your personal data to third parties.

Legal Basis for Processing Your Information

We process your personal information based on the following legal grounds:

  • Performance of a Contract (Art. 6(1)(b) GDPR): Processing your email address for account creation and login is necessary for the performance of the contract between you and us to provide access to our services.
  • Legitimate Interests (Art. 6(1)(f) GDPR): We process your account creation/login times for security purposes and service optimization, provided that your interests and fundamental rights do not override these interests.
  • Consent (Art. 6(1)(a) GDPR): For certain data processing activities (e.g., non-essential cookies), we rely on your explicit consent. You have the right to withdraw your consent at any time.

Your Data Protection Rights

Under the GDPR, you have the following rights regarding your personal data:

  • Right to Access (Art. 15 GDPR): You have the right to request copies of your personal data.
  • Right to Rectification (Art. 16 GDPR): You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
  • Right to Erasure (Art. 17 GDPR – “Right to be forgotten”): You have the right to request that we erase your personal data, under certain conditions.
  • Right to Restrict Processing (Art. 18 GDPR): You have the right to request that we restrict the processing of your personal data, under certain conditions.
  • Right to Data Portability (Art. 20 GDPR): You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
  • Right to Object to Processing (Art. 21 GDPR): You have the right to object to our processing of your personal data, under certain conditions.
  • Right to Withdraw Consent (Art. 7(3) GDPR): If we are relying on your consent to process your personal data, you have the right to withdraw your consent at any time.
  • Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority, in particular in the EU Member State of your habitual residence, place of work, or place of the alleged infringement.

To exercise any of these rights, please contact us at privacy@sobmit.com or via the details provided in our Imprint.

Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. This includes encryption of data in transit (HTTPS/TLS) and access controls.

Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

  • Your email address and account data are retained until you delete your account.
  • You can delete your account at any time through the account settings in the App.

International Data Transfers

Your data is primarily processed and stored within the European Union (Railway hosting in Amsterdam, Netherlands). For OAuth providers (Google, LinkedIn), data may be processed outside the EEA. In such cases, we ensure that appropriate safeguards are in place, such as EU Standard Contractual Clauses or certification under the EU-U.S. Data Privacy Framework.

Children’s Privacy

Sobmit is not intended for users under the age of 16. We do not knowingly collect personal data from children under 16. If you are a parent or guardian and believe your child has provided us with personal data, please contact us at privacy@sobmit.com.

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the “Last updated” date. We encourage you to review this Privacy Policy periodically for any changes.

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

  • Email: privacy@sobmit.com
  • Address: Sobmit.com – a Kopfundgeist Company, Franz-Liszt Str. 38, 38106 Braunschweig, Germany

For full contact details, please see our Imprint.

endeesfritnlpttrzhvi