Privacy Policy

Last updated: 31 March 2026

1. Controller

crispy web e.a. GmbH & Co. KG
46145 Oberhausen, Germany
Email: hello@web-universe.com

2. Data We Collect

We collect the following personal data when you use Web-Universe.com:

  • Account data: name, email address, hashed password
  • Domain listings: domain names, prices, descriptions you provide
  • Payment data: transaction amounts and status (payment details processed by Stripe)
  • Technical data: IP address, browser type, access logs
  • Communications: messages sent via the contact and inquiry forms

3. Legal Basis (GDPR)

We process your data on the following legal bases:

  • Art. 6(1)(b) GDPR — performance of a contract (account, listings, payments)
  • Art. 6(1)(c) GDPR — legal obligation (invoicing, tax records)
  • Art. 6(1)(f) GDPR — legitimate interests (security, fraud prevention)
  • Art. 6(1)(a) GDPR — consent (optional features, marketing)

4. Third-Party Services

Stripe: Payment processing. Your payment card details are processed directly by Stripe, Inc. and are never stored on our servers. Stripe's privacy policy: stripe.com/privacy

Dokploy: Domain routing infrastructure. Domain names and DNS records are shared with our Dokploy instance to enable domain connectivity.

5. Data Retention

We retain your data for as long as your account is active or as required by law. Account data is deleted upon account deletion. Invoice and payment records are retained for 10 years as required by German tax law (§ 147 AO).

6. Your Rights

Under GDPR, you have the right to:

  • Access your personal data (Art. 15)
  • Rectification of inaccurate data (Art. 16)
  • Erasure ("right to be forgotten") (Art. 17)
  • Restriction of processing (Art. 18)
  • Data portability (Art. 20)
  • Object to processing (Art. 21)
  • Lodge a complaint with a supervisory authority

To exercise these rights, contact us at hello@web-universe.com.

7. Cookies

We use only technically necessary cookies (authentication session). No tracking or advertising cookies are used. See our Cookie Policy for details.

8. Security

We implement appropriate technical and organizational measures to protect your data, including encrypted connections (HTTPS), hashed passwords (bcrypt), and secure session management.

9. Changes

We may update this Privacy Policy. Material changes will be notified by email or via a prominent notice on our website.