postmint

Privacy policy

Last updated: 14 July 2026

This policy explains what personal data we process when you visit postmint.de or use the Postmint application, why we process it, and what rights you have under the GDPR.

1. Controller

Tobias Schäfer, BuildIT Consulting
Raiffeisenstraße 40, 67133 Maxdorf, Germany
Email: contact@postmint.de

2. Visiting the website (server logs)

When you request a page, our server automatically logs your IP address, the date and time of the request, the requested URL, the HTTP status code, the amount of data transferred, the referrer URL, and the user agent. This is technically necessary to deliver the page and to detect and investigate attacks and malfunctions.

Legal basis: Art. 6 (1) (f) GDPR. Our legitimate interest is the secure and stable operation of the service. Retention: 30 days, then automatic deletion.

3. Cookies

We use strictly necessary cookies only: a session cookie that keeps you logged in, and a CSRF token cookie that protects forms against cross-site request forgery. We do not use advertising or cross-site tracking cookies, and our usage analytics work without cookies (see section 4). That is why we show no cookie banner.

Legal basis: § 25 (2) no. 2 TDDDG (strictly necessary), together with Art. 6 (1) (b) or (f) GDPR for the personal data contained in them.

4. Usage analytics (Plausible, self-hosted)

To understand which pages are used and how people find us, we run Plausible Analytics on our own server in Germany (see section 12). No data is transmitted to third parties — we are the only recipient.

Plausible works without cookies and does not store any information on your device. It does not build a cross-site or cross-session profile of you and does not assign you a persistent identifier. Per page view it records: page URL, referrer, browser, operating system, device type, and country. To tell repeat visits within a day apart, Plausible derives a temporary hash from your IP address, the user agent, and a salt that rotates daily; the salt is discarded after 24 hours, so the hash can no longer be traced back to you afterwards. Your IP address itself is never written to disk.

Legal basis: Art. 6 (1) (f) GDPR. Our legitimate interest is designing and improving our website to meet actual demand; given the transient, non-identifying nature of the data, your interests do not override it. Because Plausible neither stores nor accesses information on your device, § 25 (1) TDDDG does not apply and no consent is required.

Retention: only aggregated statistics are kept. They contain no personal data and are stored indefinitely.

5. Error monitoring (Bugsink, self-hosted)

To find and fix crashes and errors, we run the error tracker Bugsink on the same server of our own in Germany (see section 12). Here too, no data leaves our infrastructure.

When an error occurs, Bugsink records a technical error report. It contains the error message and stack trace, the URL and HTTP method of the request, and your browser and operating system. Your IP address, your user ID and your email address are not transmitted: sending personal data to the error tracker is switched off in the application.

One residual risk remains: depending on where the error occurred, an error message may incidentally contain data you entered, such as parts of a prompt. Any such fragments are deleted together with the error report.

Legal basis: Art. 6 (1) (f) GDPR. Our legitimate interest is keeping the service secure, stable, and functional. Retention: error reports are deleted automatically after 90 days.

6. Account and organisation

To create an account we process your name, your email address, a hashed password, and — if you enable two-factor authentication — your 2FA secret and your recovery codes. We send a verification email to confirm your address. We store the times of account creation, email confirmation, and the last change. We also record that and when you accepted our Terms of Service during registration, so that we can evidence the conclusion of the contract.

Legal basis: Art. 6 (1) (b) GDPR (performance of a contract and pre-contractual steps). Retention: for the life of the account; see section 13.

7. Content you create

In the application we store your brand kit (colours, typeface, uploaded logo), your projects, the text prompts you enter, and every generated design version. Uploaded logos and generated images are stored on our server in Germany. This content belongs to your organisation and is not accessible to other customers.

Legal basis: Art. 6 (1) (b) GDPR. Please do not enter third parties' personal data into prompts unless you have a legal basis for doing so — see section 14.

8. AI generation

To generate a design, we transmit your prompt, your brand kit values, and the current design to our AI providers. Their models produce the layout and the images you see in the editor.

Provider Purpose Place of processing
Anthropic PBC, San Francisco, USA Layout and copy generation (Claude models) USA
OpenAI Ireland Ltd., Dublin, Ireland Image generation USA

Both providers act as processors under Art. 28 GDPR on the basis of a data processing agreement concluded with them. Under their API terms they do not use API inputs and outputs to train their models, and they delete inputs after a limited retention period held for abuse monitoring.

Both providers process the data in the USA. The transfer is safeguarded by the EU Standard Contractual Clauses (Implementing Decision (EU) 2021/914) and — where the provider is certified — by the EU-US Data Privacy Framework. You can obtain a copy of these safeguards on request at contact@postmint.de.

Legal basis: Art. 6 (1) (b) GDPR — generating designs is the core of the service.

9. Payments

Paid plans are processed via Stripe Payments Europe Ltd., 25/28 North Wall Quay, Dublin 1, Ireland. Card details are entered directly with Stripe and never reach our server. We store your Stripe customer ID, subscription status, card brand and last four digits, and your generation quota, so that we can bill and meter correctly.

Legal basis: Art. 6 (1) (b) GDPR, and Art. 6 (1) (c) GDPR for the statutory retention of invoices. Retention: invoice data is kept for ten years under § 147 AO / § 257 HGB. Stripe's privacy policy: stripe.com/privacy.

10. Email

Transactional emails (verification, password reset, billing notices) and our newsletter are sent via Resend (Plus Five Five, Inc., San Francisco, USA), which acts as a processor on the basis of a data processing agreement and the EU Standard Contractual Clauses. You can obtain a copy of these safeguards on request at contact@postmint.de. Resend processes your email address, the message content, and delivery events (delivered, opened, bounced, marked as spam).

Legal basis: Art. 6 (1) (b) GDPR for transactional email; for the newsletter see section 11.

11. Newsletter

You can subscribe to our newsletter with your email address. We use the double opt-in procedure: after you sign up we send you a confirmation email and only add you to the list once you click the link it contains. To be able to demonstrate your consent under Art. 7 (1) GDPR, we store your email address, the times of sign-up and confirmation, the IP address used at sign-up, and the place on the website where you signed up.

Legal basis: Art. 6 (1) (a) GDPR (consent). You can withdraw your consent at any time with effect for the future — via the unsubscribe link in every newsletter or by emailing us. After you unsubscribe we continue to keep the record of sign-up and withdrawal, so that we can demonstrate that the mailing was lawful and so that we do not contact you again.

12. Hosting

The application, the database, our usage analytics and error monitoring, and all uploaded and generated files run on our own hardware, housed in a datacentre in Germany (colocation). The datacentre operator merely provides rack space, power, and network connectivity, and has no access to the data stored on our servers.

13. Retention and deletion

We keep account and content data for as long as your account exists. If you delete your account, we delete your account data, brand kits, projects, and generated designs within 30 days, unless we are legally required to retain them (invoices, see section 9). Server logs and error reports are deleted as described in sections 2 and 5.

14. Your responsibility as a customer

You decide what you type into a prompt and what you upload. If that content contains personal data (for example a photo of a named individual), you are the controller for it and we process it on your behalf. In that case we will conclude a data processing agreement with you on request — write to contact@postmint.de.

15. Your rights

  • Access to the data stored about you (Art. 15 GDPR)
  • Rectification of inaccurate data (Art. 16 GDPR)
  • Erasure (Art. 17 GDPR)
  • Restriction of processing (Art. 18 GDPR)
  • Data portability (Art. 20 GDPR)
  • Withdrawal of consent with effect for the future (Art. 7 (3) GDPR)

An email to contact@postmint.de is enough to exercise these rights. You also have the right to lodge a complaint with a supervisory authority. The authority responsible for us is the Landesbeauftragte für den Datenschutz und die Informationsfreiheit Rheinland-Pfalz, Hintere Bleiche 34, 55116 Mainz, Germany.

16. Right to object

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you that is carried out on the basis of legitimate interests (Art. 6 (1) (f) GDPR, Art. 21 (1) GDPR). In this policy that concerns sections 2 (server logs), 4 (usage analytics), and 5 (error monitoring).

If you object, we will no longer process the data concerned unless we can demonstrate compelling legitimate grounds that override your interests, rights, and freedoms, or the processing serves to establish, exercise, or defend legal claims. An informal email to contact@postmint.de is sufficient.

17. Automated decision-making

We do not use automated decision-making or profiling that produces legal effects concerning you. The AI in Postmint generates designs; it does not make decisions about you. The bot check on the registration form (section 18) assesses technical signals from your browser to judge whether the request is automated; it does not assess you as a person and has no legal effect. If it fails, you can retry it or write to us at contact@postmint.de.

18. Spam protection on registration (Cloudflare Turnstile)

On the registration page — and nowhere else — we use Cloudflare Turnstile to fend off automated bulk sign-ups. The provider is Cloudflare, Inc., 101 Townsend Street, San Francisco, CA 94107, USA.

When you open the registration page, your browser loads a script from challenges.cloudflare.com. Your IP address is transmitted to Cloudflare in the process. Cloudflare evaluates technical characteristics of your browser and device, along with how you interact with the page, to judge whether the sign-up comes from a human. The contents of the form — name, email address, password — are not transmitted to Cloudflare.

In the default configuration we use, Turnstile stores no cookies and no other information on your device. Consent under § 25 TDDDG is therefore not required, and we show no banner for this service either.

The legal basis is Art. 6 (1) (f) GDPR. Our legitimate interest is protecting registration from automated abuse: bulk sign-ups burden our infrastructure, incur cost in AI generation, and cause mail to non-existent addresses that damages our deliverability. No equally effective, less intrusive means is available to us. The check runs once, when the form is submitted, and not during the rest of your visit.

Cloudflare acts on the basis of a data processing agreement and the EU standard contractual clauses; a copy of the safeguards is available on request at contact@postmint.de. For more information, see Cloudflare's privacy policy.

19. Changes to this policy

We may adapt this policy when the service changes. The current version is always available on this page; the date of the last update is shown at the top.


This is a translation for convenience. In the event of any discrepancy, the German version of this privacy policy prevails.