SlideBridge iG — Privacy Policy

1. Who we are

This Privacy Policy explains how SlideBridge iG ("we", "us") collects and uses personal data when you visit our websites and use our software-as-a-service platform (the "Service"). Unless stated otherwise, SlideBridge iG is the controller for data processed for account administration, billing, analytics, marketing (including demo/contact forms) and our websites. For Customer Data processed within the Service at the instruction of our business customers, SlideBridge iG acts as a processor (see Section 7).

‍

2. Contact

- Controller: SlideBridge iG, Siezenheimer Straße 39a, 5020, Salzburg, Austria
- Contact email: privacy@slidebridge.io
- Data Protection Officer (if applicable): dpo@slidebridge.io
- Supervisory authority: Austrian Data Protection Authority (Datenschutzbehörde), Barichgasse 40-42, 1030 Vienna, Austria

‍

3. What we collect

- Account and profile information (e.g., company name, business contact details, billing information).
- Service usage data (e.g., logs, device and browser characteristics, IP address, timestamps, interaction with features).
- Customer Data and Output Files that you or your organization choose to upload to the Service or make available via connected third-party services (e.g., Airtable, Google Sheets, Excel, CSV).
- Website and form data (e.g., basic server logs, cookies and similar technologies; demo/contact form submissions such as Name, Company, Email, and your message).
- Marketing preferences and communications.

‍

4. Why we use personal data (purposes and legal bases)

1. To provide and operate the Service, including converting files and facilitating integrations you enable (Art. 6(1)(b) GDPR – performance of a contract).
2. To secure, maintain and improve the Service, including troubleshooting, monitoring, and preventing abuse (Art. 6(1)(f) GDPR – legitimate interests).
3. To bill, collect and manage subscriptions (Art. 6(1)(b) and (c) GDPR – contract and legal obligations).
4. To provide customer support and communicate about the Service (Art. 6(1)(b) GDPR).
5. To respond to demo/contact requests and manage sales/marketing follow-up (Art. 6(1)(f) GDPR – legitimate interests; and Art. 6(1)(a) GDPR – consent, where required).
6. To run analytics and measure website/app performance, only with your consent where required (Art. 6(1)(a) GDPR – consent).
7. To send marketing communications to business contacts, only where permitted and subject to your right to opt-out (Art. 6(1)(a) or (f) GDPR, as applicable).
8. To comply with legal obligations and enforce our terms (Art. 6(1)(c) and (f) GDPR).

‍

5. Cookies and similar technologies

Our informational landing pages (e.g., Webflow) and our application may use cookies and similar technologies. We use:

- Strictly necessary cookies (essential for site or app functionality).
- Preference cookies (remembering choices, e.g., language).
- Analytics cookies (e.g., Google Analytics) to understand usage, set only with your consent where required.
- Advertising/remarketing cookies (e.g., Google services), set only with your consent.

You can manage your preferences at any time via the cookie banner or settings link on our sites. The specific cookies and their lifetimes may vary. See your consent management platform for the current vendor list.

‍

6. Sharing and recipients

- Service providers processing data on our behalf (e.g., hosting, support, analytics, payment processing).
- Third-party services you choose to connect to the Service; when enabled, data is exchanged as necessary to provide the integration.
- Professional advisors and authorities where required by law or to protect our rights.
- Corporate transactions (e.g., merger or acquisition), subject to appropriate safeguards.

‍

7. Role as processor (Customer Data)

Where SlideBridge iG processes personal data contained in Customer Data and Output Files on behalf of a business customer, the customer is the controller and SlideBridge iG is the processor. Processing is governed by a Data Processing Agreement (DPA). We process such data only on documented instructions from the controller, implement appropriate security measures, and assist the controller with obligations regarding data subject rights, security incidents and DPIAs as described in the DPA.

‍

8. International data transfers

We store primary Customer Data in the EU. Some of our vendors (for example, certain Google services) may process personal data in countries outside the EU/EEA. Where such transfers occur, we rely on an adequacy decision or, where not available, on appropriate safeguards such as the European Commission’s Standard Contractual Clauses, combined with supplementary measures as needed.

‍

9. Retention

We keep personal data for as long as necessary for the purposes described above: account data for the duration of the subscription and as required by law (e.g., tax retention); website/form submissions for a reasonable period to handle your request and follow up; website analytics data according to your consent and the provider’s retention settings; support communications for a reasonable period. Customer Data and Output Files within the Service are retained as directed by the Customer; administrators can delete them at any time. We may retain minimal logs and backups for a limited time for security, continuity and legal purposes.

‍

10. Your rights

- Right of access, rectification, erasure, restriction, portability, and objection under Articles 15–21 GDPR.
- Where processing is based on consent, the right to withdraw consent at any time (without affecting the lawfulness of processing before withdrawal).
- You may lodge a complaint with a supervisory authority, in particular the Austrian Data Protection Authority (Datenschutzbehörde) or your local authority.

To exercise your rights, contact us at the address in Section 2. We may need to verify your identity and coordinate with your organization if your data is processed under a business account.

‍

11. Security

We implement technical and organizational measures designed to protect personal data. If we become aware of a personal data breach that is likely to result in a risk to individuals’ rights and freedoms, we will notify the relevant controller and, where we act as controller, the competent supervisory authority and affected individuals as required by law.

‍

12. Children

Our Service is intended for business use and is not directed to children.

‍

13. Changes to this Policy

We may update this Policy from time to time. We will post the updated version with a new "Last updated" date. Where changes are material, we will provide additional notice (e.g., in-app or by email).

‍

14. Company details

Company: SlideBridge iG
Registered office: Siezenheimer Straße 39a, 5020, Salzburg, Austria
Contact: privacy@slidebridge.io
Website: https://www.slidebridge.io

‍