Privacy Policy

Last Updated: January 28, 2026

1. Overview

This Changeset Management application is an internal tool designed for organizational use. This privacy policy describes what information is collected and how it is used.

2. Information Collection

2.1 User Account Information

The application stores the following information necessary for authentication and authorization:

  • Username
  • Email address
  • Password (stored as a cryptographic hash)
  • User role information (Administrator, Editor status)
  • Two-factor authentication settings

2.2 Technical Data

When you access the application, standard HTTP request data is transmitted, including:

  • IP address
  • Browser type and version
  • Operating system
  • Date and time of access
  • Pages visited

Important: This technical data is not logged or stored by the application. It is only processed temporarily to fulfill HTTP requests.

3. Use of Information

The information collected is used solely for:

  • User authentication and authorization
  • Providing access control based on user roles

4. Data Storage and Security

  • All data is stored in a secure database within the organization's infrastructure
  • Passwords are hashed using industry-standard cryptographic algorithms
  • Access to the application requires authentication
  • User management is restricted to administrators only

5. Data Sharing

This is an internal tool. No personal or application data is shared with external parties, third-party services, or other organizations. All data remains within the organization's internal systems.

6. Cookies and Tracking

The application uses session cookies for authentication purposes only. These cookies are:

  • Essential for the application to function
  • Not used for tracking or analytics
  • Deleted when you close your browser (session cookies)

No analytics, tracking, or advertising cookies are used.

7. User Rights

As a user of this internal tool, you have the right to:

  • Access your user account information
  • Update your email address and username (contact an administrator)
  • Reset your password through the account management features
  • Manage your two-factor authentication settings

8. Data Retention

User accounts and application data are retained as long as they are needed for business purposes. When a user account is deleted by an administrator, the associated authentication data is removed from the system.

9. Changes to This Policy

This privacy policy may be updated from time to time. Users will be notified of any significant changes through appropriate internal communication channels.

10. Contact

For questions about this privacy policy or data handling practices, please contact Florian Berger.