Alinme (“we,” “our,” or “us”) values your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, and share your personal data (“Personal Information”) when you use our website (www.alinme.com) and related services (collectively, the “Platform”).
Please read this Privacy Policy carefully, it describes your rights and our responsibilities under the EU General Data Protection Regulation (GDPR) and applicable German data protection laws.
By using Alinme, you acknowledge that your use of the Platform is governed by this Privacy Policy and our Terms of services, which together form the agreement between you and Alinme. Any terms we use in this Privacy Policy without defining them have the meanings assigned in the Terms of services.
If you are located in the European Economic Area (EEA), the United Kingdom, or Switzerland, this Privacy Policy applies to you in accordance with applicable local privacy regulations.
We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. The most recent version will always be available at www.alinme.com/privacy-policy.
You provide data directly when you create an account, use our services, or communicate with us.
Depending on your use of the Platform, this may include:
All data you submit is processed on the legal basis of Art. 6 (1)(b) GDPR (performance of a contract) or Art. 6 (1)(a) GDPR (consent, where applicable).
When you use the Platform, we automatically collect certain technical data to ensure stability, security, and performance. This may include:
Alinme allows you to connect your professional profiles to showcase your work. When you link third-party accounts (e.g., GitHub, Medium, Udemy, YouTube, Hugging Face), we collect publicly available data from those platforms, for example:
This aggregation happens only after your explicit consent and connection action. We do not access private data from those platforms and you can revoke access at any time. The legal basis is Art. 6 (1)(a) GDPR (consent).
If you opt in to our newsletter or marketing updates, we process your email address and engagement metrics (e.g., opens, clicks) to improve our communications.
You can unsubscribe at any time via the link in each message or by contacting us.
We may use basic usage statistics (aggregated and anonymized) to understand general platform performance and feature adoption.
Legal basis: Art. 6 (1)(a) (consent) and Art. 6 (1)(f)(legitimate interest in improving our services).
We may receive limited data from:
No data is bought or sold to third parties.
We process personal data only for specific, lawful, and transparent purposes in accordance with the EU General Data Protection Regulation (GDPR) and German data protection laws (particularly the TTDSG and AO/HGB for retention).
We apply the principles of data minimisation, purpose limitation, and storage limitation (Art. 5 GDPR).
Below we explain how and why we process your data, the lawful basis for each purpose, how long we keep it, and who may receive it.
When you register an Alinme account, we process your name, email address, and a password (stored in hashed form).
The content you add is published on your public page at your request; therefore, the lawful basis is againperformance of a contract under Art. 6 (1)(b) GDPR.
If you connect an external account to import public content, you give explicit consent for that connection (Art. 6 (1)(a) GDPR).
You can revoke it at any time by disconnecting the account.
Your profile data is stored until you remove it or delete your account.
We use your email address to send essential communications, such as registration confirmations, password resets, billing Snackbars, and service updates.
These messages are necessary for the performance of our contract and for ourlegitimate interest in keeping users informed about material changes (Art. 6 (1)(b) and (f)).
Transactional email content is deleted once delivery is confirmed; metadata is kept only for troubleshooting.
If you opt in to receive newsletters or updates, we use your email address to send you Alinme-related news, product tips, and promotional information.
This occurs only with your explicit consent (Art. 6 (1)(a) GDPR).
You can withdraw consent at any time using the unsubscribe link or by contacting us.
We keep proof of consent and minimal delivery logs for up to twenty-four months to demonstrate compliance.
To improve stability and user experience, we process pseudonymous usage data such as page views, feature interactions, and device information.
Essential technical logs are collected under ourlegitimate interest in maintaining a secure and functional service (Art. 6 (1)(f)).
Any optional analytics that rely on cookies or device identifiers are only activated after you have given consent, as required by § 25 TTDSG.
Raw logs are typically deleted within ninety days, while aggregated statistics may be kept longer in anonymised form.
We continuously monitor our systems to detect abuse, spam, and security incidents.
This includes automated vulnerability scanning (e.g., Gosec), incident alerting, and rate-limiting through Azure Security Center.
Such processing is necessary to fulfil our legal obligations under Art. 32 GDPR and our legitimate interest in protecting our services(Art. 6 (1)(f)).
Security logs are retained no longer than necessary, typically up to ninety days.
When users or visitors click affiliate links (for example, to Udemy, Coursera, edX, Amazon, or Gumroad), we may process limited technical identifiers to attribute commissions and comply with our partner agreements.
Affiliate tracking that relies on cookies or advertising IDs is only activated after you consent via our cookie banner, in line with § 25 TTDSG andArt. 6 (1)(a) GDPR.
Financial records of affiliate commissions are kept for accounting purposes for up to ten years.
We occasionally run paid advertisements on platforms such as LinkedIn, YouTube, or Google.
Any data collected through those services (e.g., cookies or ad IDs) is processed only after your consent and managed in accordance with their respective privacy policies.
Our legal basis is consent (Art. 6 (1)(a) GDPR) and § 25 TTDSG.
When you register for an Alinme meetup or webinar, we use your contact details to send event information and manage participation.
Processing is necessary for contract performance (Art. 6 (1)(b)).
Event-related data is deleted within twelve months after the event unless required for invoicing.
We may process personal data to comply with our legal obligations, for instance, taxation, record-keeping, and responding to lawful requests from authorities, and to establish, exercise, or defend legal claims.
This processing is required under Art. 6 (1)(c) and (f) GDPR.
Retention follows the statutory periods in German commercial and tax law, generally ten years for financial records.
Alinme does not use automated decision-making that produces legal or similarly significant effects under Art. 22 GDPR.
Any future personalisation (for example, recommending relevant experts or AI content) will be limited to improving your experience, hosted entirely within the EU, and can be turned off where feasible.
All core processing occurs within the European Economic Area (EEA) on Microsoft Azure (West Europe).
Where partners or affiliates are based outside the EEA, such as certain payment processors or advertising platforms — we ensure that EU Standard Contractual Clauses or equivalent safeguards are in place in compliance with Art. 46 GDPR.
We do not intentionally collect sensitive data such as health, political opinions, or religious beliefs (Art. 9 GDPR).
If you voluntarily publish such information in your profile, it becomes visible according to your settings.
We recommend avoiding the disclosure of sensitive information on public pages.
Alinme does not sell personal data and shares it only when strictly necessary to operate the Platform, perform our contractual obligations, or comply with legal duties.
All recipients are bound by data-processing agreements (Art. 28 GDPR) or act as independent controllers with equivalent safeguards.
Whenever possible, data is processed within the European Economic Area (EEA) on Microsoft Azure West Europe infrastructure.
Information you choose to publish on your Alinme profile, such as your name, photo, biography, professional links, and showcased projects — becomespublicly visible in accordance with your settings.
Public content may be indexed by search engines or seen by visitors who are not registered users. This visibility is an inherent part of the Platform’s purpose and is therefore based on Art. 6 (1)(b) GDPR (performance of contract).
You can edit or remove your content at any time; changes take effect immediately for new views, although cached versions may persist temporarily on external search engines.
When you connect your account with external services (e.g., GitHub, Medium, Udemy, YouTube, Hugging Face) to display your work, only public data from those platformsis imported, after your explicit consent (Art. 6 (1)(a) GDPR).
You may revoke access at any time in your account settings.
To run the Platform reliably and securely, we use several data processors who act solely on our documented instructions:
Each provider is contractually bound under Art. 28 GDPR, implements state-of-the-art security (Art. 32 GDPR), and may not use your data for its own purposes.
Where you have consented (Art. 6 (1)(a) GDPR and § 25 TTDSG), we may share limited pseudonymous identifiers or cookie data with verified affiliate or advertising partners to attribute commissions or measure campaign reach.
hese partners include platforms such as Udemy, Coursera, edX, Gumroad, Amazon Associates, LinkedIn Ads, YouTube, and Google Ads.
No personally identifying payment or profile data is transferred to them unless you explicitly interact with their services (e.g., clicking an affiliate link).
You can withdraw consent for such sharing at any time via the cookie-consent banner or browser settings.
If you register for an in-person or online Alinme event, we may share your registration details (name, email, ticket number) with event-management platforms or venue providers solely to facilitate access and communication.
These partners are bound by Art. 28 GDPR processing agreements and delete the data after the event unless further retention is required for accounting or legal obligations.
For statutory compliance, financial auditing, or legal representation, we may share limited personal data with:
Such sharing is based on Art. 6 (1)(c) (legal obligation) and Art. 6 (1)(f) (legitimate interest in safeguarding our rights)
In rare cases, we may be required to disclose personal data to law-enforcement or supervisory authorities when legally mandated under the GDPR, the German Federal Data Protection Act (BDSG), or other applicable EU law.
Disclosures occur only if they are necessary to comply with a binding legal request, court order, or to protect the rights, property, or safety of Alinme or others.
We carefully assess every request for legality and proportionality and, where permitted, notify affected users before disclosure.
This processing is required under Art. 6 (1)(c) GDPR.
If Alinme undergoes a merger, acquisition, restructuring, or sale of assets, relevant personal data may be transferred to the acquiring entity as part of that transaction, but only under strict confidentiality and subject to this same Privacy Policy.
The receiving entity must continue to use your data solely for the same purposes and comply with the GDPR.
If ownership or control changes, you will be informed in advance, and your existing privacy choices will remain valid.
All operational data is stored in the EEA (Microsoft Azure West Europe).
Where a sub-processor or partner operates outside the EEA, transfers take place only under:
We regularly verify that all international partners maintain equivalent levels of protection, and we record these transfers in our internal processing registry as required by Art. 30 GDPR.
Every recipient of personal data from Alinme is contractually obligated to:
No third party is authorised to use Alinme user data for independent marketing or profiling activities.
This section ensures full compliance with Articles 13 and 14 GDPR and § 25 TTDSG, detailing all categories of recipients, conditions of disclosure, and safeguards for international transfers—exactly what a supervisory authority in Germany (BayLDA) would expect.
Alinme processes your personal data transparently and in accordance with the data-protection principles set out in Articles 5–11 GDPR.
This section explains how long we keep your data, what rights you have under European and German law, and how you can exercise them.
We retain personal data only for as long as necessary to fulfil the purposes described in this Privacy Policy or as required by law.
The specific retention periods depend on the data category and purpose of processing.
Your profile and account information are kept active as long as your account remains open.
If you delete your account, we anonymise or erase your data within 30 days, unless further retention is legally required or justified.
Payment data, invoices, and donation or sales records are retained for ten (10) years, in accordance with §§ 147 AO and 257 HGB, which require German companies to preserve financial documentation.
Technical logs, such as IP addresses or access metadata, are stored for up to 90 days to maintain system security and detect fraud.
After that, they are automatically deleted or anonymised.
Emails and customer-support interactions are deletedafter resolution unless retention is necessary for dispute handling or legal compliance.
If you subscribed to newsletters or consented to cookies or marketing, we store your consent record for up to 24 months to demonstrate lawful processing, or until you withdraw it.
We may keep non-identifiable, aggregated data (for example, platform usage statistics) indefinitely for legitimate business or research purposes, provided it can no longer be linked to an individual.
s an individual located in the European Union, the EEA, the United Kingdom, or Switzerland, you have the following rights under Articles 12–23 GDPR and the German Federal Data Protection Act (BDSG).
You can exercise these rights free of charge at any time by emailing privacy@alinme.com.
For Alinme, the competent authority is:
Bayerisches Landesamt für Datenschutzaufsicht (BayLDA)
Promenade 27, 91522 Ansbach, Germany
Website: www.lda.bayern.de
Requests should be sent to privacy@alinme.com.
We may need to verify your identity before processing your request to protect your data from unauthorised access.
We aim to respond within 30 days, as required by Art. 12 (3) GDPR.
Complex or multiple requests may extend this timeframe by a further two months; if so, we will inform you.
If your request involves data that we process on behalf of an enterprise client (for example, a company using “Alinme as a Solution”), we will forward your request to the relevant data controller.
You can delete your Alinme account at any time through your account settings or by contacting us.
After closure:
We retain anonymised, non-personal data (such as aggregated usage metrics) indefinitely for service improvement and statistical reporting, as it can no longer identify you.
Certain rights may be restricted if fulfilling your request would:
In such cases, we will provide a clear explanation of the reasons and the applicable legal basis.
Alinme is intended for individuals aged 16 and older.
We do not knowingly collect data from children under 16 years of age.
If we become aware that personal data has been collected from a minor without parental consent, we will promptly delete it.
If you have any questions or requests regarding the processing of your personal data under this Privacy Policy, you can contact us at:
Maryam Bahrami: Founder, Alinme
📧 privacy@alinme.com
All other company and contact details (including the postal address and phone number) are provided in ourImprint.
If a formal Data Protection Officer (DPO) is appointed or an external consultant engaged, their contact details will be published and kept up to date on this page.