Skip to main content

Privacy Policy

Last updated: April 2026

This privacy policy applies to the Spendemon website and documentation at spendemon.com. It is issued in accordance with the Swiss Federal Act on Data Protection (nDSG, in force since 1 September 2023). Where we process data of persons in the EU/EEA, the EU General Data Protection Regulation (GDPR) applies additionally.

Controller

Fabio Tavernini
Switzerland
Contact: tavernini.online/contact

What data we collect and why

Contact form

When you submit the contact form on this site, we collect your name, email address, company name (optional), and message. This data is used solely to respond to your inquiry and is not shared with third parties beyond the form processor.

The form is handled by Netlify Forms (Netlify, Inc., 44 Montgomery Street, Suite 300, San Francisco, CA 94104, USA). Netlify's privacy policy: https://www.netlify.com/privacy/.

Subscriptions and payments

When you subscribe to a commercial license, payment is processed by Stripe (Stripe, Inc., 510 Townsend Street, San Francisco, CA 94103, USA). We do not store your payment card details. Stripe's privacy policy: https://stripe.com/privacy.

We receive only the information necessary to confirm and manage your subscription (email address, subscription status, billing period).

Hosting and log data

This site is hosted by Netlify. Netlify may process server log data (IP address, browser type, pages visited, timestamps) for operational and security purposes on our behalf.

The Spendemon application itself is self-hosted by you in your own infrastructure. We have no access to data processed by your instance.

No tracking or analytics

We do not use cookies for tracking, Google Analytics, or any third-party analytics tools on this site.

Under the nDSG, processing is justified by overriding interests (Art. 31 nDSG): responding to inquiries, managing subscriptions, and securing the site.

For persons in the EU/EEA, the legal bases under GDPR are:

  • Art. 6(1)(b) — processing necessary to perform a contract (subscriptions)
  • Art. 6(1)(f) — legitimate interests (contact inquiries, site security)

International data transfers

Netlify and Stripe are US-based services. Switzerland recognises the USA as providing adequate protection for certain data transfers under the applicable standard contractual clauses. For EU/EEA persons, transfers are covered by the EU Standard Contractual Clauses adopted by these providers.

Data retention

Contact form submissions are retained only as long as needed to handle your inquiry. Subscription records are retained for as long as required by Swiss accounting and tax law (Art. 958f OR, typically 10 years).

Your rights

Under the nDSG and/or GDPR you have the right to access, rectify, erase, restrict, or port your personal data. To exercise these rights, contact us at tavernini.online/contact.

You also have the right to lodge a complaint with the Swiss supervisory authority: EDÖB (Eidgenössischer Datenschutz- und Öffentlichkeitsbeauftragter), https://www.edoeb.admin.ch. EU/EEA residents may also contact their local data protection authority.

Changes to this policy

We may update this policy from time to time. The date at the top of this page reflects the most recent revision.