This Privacy Policy describes how deckd UG (haftungsbeschränkt), Feurigstr. 17, 10827 Berlin, Germany (“deckd”, “we”, “us”) processes your personal information when you access or use our websites (deckd.io, app.deckd.io) and associated services (collectively, the “Services”).
1. Controller
For the purposes of the General Data Protection Regulation (“GDPR”), deckd acts as the Data Controller for the processing described in this Privacy Policy.
2. Personal Data We Process
We collect and process the following categories of personal information:
Category
Examples
Identification data
Name, email address, profile picture
Account data
Login credentials, user role, workspace information
Content data
Files, media, slide content, templates, communications created in deckd
Payment information and subscription details via our payment processor
Communication data
Calendared bookings, support inquiries, survey responses
3. How We Collect Personal Data
Directly from you – when you register for an account, book a demo, submit a form, upload content, or contact us.
Automatically – via cookies and analytics for usage tracking and service optimisation.
From third parties – if you connect external services (e.g., Figma) or interact with us through scheduling (e.g., Cal.com).
4. Purposes and Legal Bases
Purpose
Legal Basis (Art. 6 GDPR)
Provide, operate, and secure our Services
Performance of contract (Art. 6(1)(b))
Process payments
Performance of contract (Art. 6(1)(b))
Improve and develop our Services
Legitimate interest (Art. 6(1)(f))
Respond to enquiries or support requests
Legitimate interest / Consent
Conduct analytics and usage statistics
Legitimate interest (Art. 6(1)(f))
Send marketing updates (newsletter opt-in)
Consent (Art. 6(1)(a))
Comply with applicable laws
Legal obligation (Art. 6(1)(c))
5. AI Features
We offer optional AI-powered features powered by Google Gemini and OpenAI for content generation and media enrichment.
When enabled, prompts and context you input are sent securely to the respective provider.
AI features are optional and can be disabled at workspace-level settings.
The processing behavior is described further in our Data Processing Addendum.
6. Cookies and Tracking
We use strictly-necessary and analytics cookies (PostHog) to operate and improve our Services. You may find more information and manage preferences via our cookie banner.
7. Recipients and Sub-Processors
We share personal data with trusted third-party processors who support us in providing the Services:
Recipient
Purpose
Location
Hetzner
Hosting infrastructure
Germany
AWS S3
Media storage
EU (Frankfurt/Ireland)
Clerk
User authentication & system email
EU / US
Liveblocks
Real-time collaboration
EU / US
PostHog
Product analytics (self-hosted)
Germany
LemonSqueezy
Payment processing
US / EU
Cal.com
Calendar scheduling
US / EU
Tally.so
Long form submissions
EU
Attio
CRM for sales communication
EU / US
Google Gemini
Optional AI content generation
EU / US
OpenAI
Optional AI content generation
US
Loops.so
Newsletter campaigns (opt-in only)
EU / US
Data transfers outside the EEA/UK are safeguarded using Standard Contractual Clauses (SCCs) or equivalent.
For more information, see our Data Processing Addendum
8. Retention
We retain personal data only for as long as reasonably required for the purposes described above or to comply with legal obligations. Account data is deleted within 30 days following account closure.
9. Your Rights
You have the following GDPR rights:
Right of access (Art. 15)
Right to rectification (Art. 16)
Right to erasure (Art. 17)
Right to restriction of processing (Art. 18)
Right to data portability (Art. 20)
Right to object (Art. 21)
Right to lodge a complaint with a supervisory authority
To exercise these rights, contact: hello@deckd.io
10. Children
The Services are not intended for individuals under 18. We do not knowingly process children’s personal data.
11. Security Measures
We implement appropriate technical and organisational measures including encryption, access control, secure hosting, backups, and staff confidentiality to protect personal data.
12. Business Transfers
In the event of a merger, acquisition, or asset sale, personal data may be transferred to the acquiring entity, subject to this Policy.
13. Links to Other Websites
Our Services may contain links to third-party websites not operated by us. We are not responsible for the privacy practices of such sites.
14. Changes to this Privacy Policy
We may update this Policy from time to time. Changes will be posted at https://deckd.io/legal/privacy. Significant changes will be notified to registered users where required.
Privacy Policy
Last updated: August 2025
This Privacy Policy describes how deckd UG (haftungsbeschränkt), Feurigstr. 17, 10827 Berlin, Germany (“deckd”, “we”, “us”) processes your personal information when you access or use our websites (deckd.io, app.deckd.io) and associated services (collectively, the “Services”).
1. Controller
For the purposes of the General Data Protection Regulation (“GDPR”), deckd acts as the Data Controller for the processing described in this Privacy Policy.
2. Personal Data We Process
We collect and process the following categories of personal information:
3. How We Collect Personal Data
4. Purposes and Legal Bases
5. AI Features
We offer optional AI-powered features powered by Google Gemini and OpenAI for content generation and media enrichment.
6. Cookies and Tracking
We use strictly-necessary and analytics cookies (PostHog) to operate and improve our Services. You may find more information and manage preferences via our cookie banner.
7. Recipients and Sub-Processors
We share personal data with trusted third-party processors who support us in providing the Services:
Data transfers outside the EEA/UK are safeguarded using Standard Contractual Clauses (SCCs) or equivalent.
For more information, see our Data Processing Addendum
8. Retention
We retain personal data only for as long as reasonably required for the purposes described above or to comply with legal obligations. Account data is deleted within 30 days following account closure.
9. Your Rights
You have the following GDPR rights:
To exercise these rights, contact: hello@deckd.io
10. Children
The Services are not intended for individuals under 18. We do not knowingly process children’s personal data.
11. Security Measures
We implement appropriate technical and organisational measures including encryption, access control, secure hosting, backups, and staff confidentiality to protect personal data.
12. Business Transfers
In the event of a merger, acquisition, or asset sale, personal data may be transferred to the acquiring entity, subject to this Policy.
13. Links to Other Websites
Our Services may contain links to third-party websites not operated by us. We are not responsible for the privacy practices of such sites.
14. Changes to this Privacy Policy
We may update this Policy from time to time. Changes will be posted at https://deckd.io/legal/privacy. Significant changes will be notified to registered users where required.
15. Contact
deckd UG (haftungsbeschränkt)
Feurigstr. 17, 10827 Berlin, Germany
Email: hello@deckd.io