mattopen

1. Controller

mattopen is operated as a personal project. For questions regarding your data, please use the contact information provided in the Imprint.

2. Data we collect

When you create an account we store:

Your email address (used for login and password resets)
An optional display name
A hashed password (we never store your password in plain text)
The date your account was created

When you use the service we additionally store the bookmarks (URLs, titles, descriptions, images) you add, the lists you create, tags, and interaction data such as likes and follows.

3. How we use your data

To provide and operate the service
To send transactional emails (password resets) — no marketing emails
To display your public profile and bookmarks to other users (only when you set items public)
To enforce security rules and prevent abuse

4. Data sharing

We do not sell or share your personal data with third parties. Your data is stored in a managed MySQL database hosted on AWS (EU region). Server infrastructure is provided by AWS Amplify (EU-Central-1).

5. Cookies & sessions

We use a single session cookie to keep you logged in. This cookie is technically necessary for the service to function and does not require consent. We do not use tracking or advertising cookies.

6. Your rights

Under GDPR you have the right to:

Access your personal data
Correct inaccurate data (via Dashboard → Settings)
Delete your account and all associated data (via Dashboard → Settings)
Data portability — contact us to request an export
Lodge a complaint with a supervisory authority

7. Data retention

Your data is retained as long as your account exists. When you delete your account, all personal data and content you created is permanently deleted within 24 hours. Anonymised aggregate statistics may be retained.

8. Changes

We may update this policy occasionally. Material changes will be announced on the platform. Continued use after a change constitutes acceptance.

Privacy Policy