Privacy Policy

Learn more about our Privacy Policy.

Last updated on July 18, 2025.

I. General Information

The following Privacy Policy applies to the use of our website www.website2desktop.com and its variations (e.g. subdomains). This Privacy Policy also explains how we generally collect and process data (e.g. statistics).

We, Website2Desktop, Inh. Andreas Krause, Zechenstr. 5, 51103 Cologne, Germany (hereinafter referred to as 'Website2Desktop'), take the protection of your personal data very seriously and strictly comply with data protection laws. The following statement provides you with an overview of how we ensure this protection. In particular, we would like to explain to you, as a visitor to our website, what type of data we collect, why we collect it, how we use it, and how you can control the handling of your personal data at any time.

In accordance with the General Data Protection Regulation (GDPR), you have various rights that you may exercise against us. This includes, among others, the right to object to certain types of data processing, especially processing for advertising purposes. The option to object is highlighted for better visibility.

Within this Privacy Policy, the term 'subpage' refers to pages accessible within our website (e.g. Library, Contact). The term 'customer' refers to users who have performed at least one conversion or purchased a license.

If you have any questions regarding this Privacy Policy, please feel free to contact our Data Protection Officer, Ms. Krause, at any time. The contact details are provided below.

II. Name and Contact Details of the Controller and the Data Protection Officer

This Privacy Policy applies to data processing by Website2Desktop, Inh. Andreas Krause, Zechenstr. 5, 51103 Cologne, Germany ('Controller'). Our Data Protection Officer, Ms. Krause, can be reached at support@website2desktop.com or by mail at: Website2Desktop, Inh. Andreas Krause, Zechenstr. 5, 51103 Cologne, Germany, subject line: 'Data Protection'.

III. Purposes of Data Processing, Legal Basis, and Legitimate Interests Pursued by Website2Desktop or Third Parties, as well as Categories of Recipients

1. Browsing our Website

Website2Desktop automatically collects and stores in its server log files information that your browser transmits while you browse our site. The most relevant data we store include:

• Browser type/version
• Operating system used
• Referrer URL (previously visited subpage)
• Accessed URLs / subpages
• IP address of the accessing device along with its host name
• Time of the server request
• Visitor history

In addition, we record, in anonymized form, the full Uniform Resource Locator (URL) clickstream to, through, and from our website, i.e. the sequence of subpages you visit, including date and time, cookie ID, and the content you viewed or searched for.

During your visits, we occasionally use JavaScript to collect and evaluate information such as the time it takes to load a subpage, download errors, duration of visits, user interactions between subpages (e.g. scrolling, clicking, mouseovers), and information about exiting subpages.

The legal basis for processing the IP address is Art. 6(1)(f) GDPR. Our legitimate interest arises from the purposes of data collection listed below. Please note that no direct conclusions about your identity can be drawn from the collected data, nor do we attempt to draw any.

The IP address of your device and the other data listed above are used by us for the following purposes:

• Ensuring a smooth connection setup,
• Ensuring convenient use of our website,
• Evaluating system security and stability.

The data are stored for a period of 7 days and then automatically deleted or anonymized. In addition, we use cookies, tracking tools, and social media plug-ins on our website. The specific tools used and how your data are processed in this context are explained in more detail below under Section III.7.

2. Contact form, email, phone & social media contact

On our website, you can contact us via contact forms, email, phone numbers, and social media. The information you transmit usually includes:

• License code
• Company name
• Last name
• First name
• Address
• Email address

We use the personal data you provide exclusively to process your inquiry and may store it in a Customer Relationship Management system ('CRM system') or a comparable request management tool. We delete inquiries when they are no longer required. We review the necessity every two years; statutory archiving obligations also apply.

The legal bases are both your consent pursuant to Art. 6(1)(a) GDPR and Art. 6(1)(f) GDPR. Properly handling your inquiry is considered a legitimate interest within the meaning of the GDPR. You may withdraw your consent to the processing of the personal data you have provided at any time with effect for the future by contacting us using the details listed in Section II. From the time of withdrawal, we can no longer process your inquiry.

3. Purchase of licenses

If you decide to purchase a license, personal data are generally collected. These include:

• Company name
• Last name
• First name
• Address
• Email address
• VAT ID

We collect this data for your identification, to create your license, and to provide your Customer Area. The legal basis is Art. 6(1)(b) GDPR, i.e. you provide us with the data on the basis of the contractual relationship between you and us. We are also obligated to process your email address due to a requirement under the German Civil Code (BGB) to send an electronic confirmation/invoice (Art. 6(1)(c) GDPR). If we do not use your contact details for advertising purposes (see Section III.5), we store the data collected for contract processing until the end of the statutory or any contractual warranty and guarantee periods. After this period, we retain the information on the contractual relationship required under commercial and tax law for the legally prescribed durations. For this period (regularly ten years from the conclusion of the contract), the data are processed again solely in the event of a review by the tax authorities.

Payment processing is carried out via our payment partner 'Stripe' (Stripe Payments Europe Limited). You can find Stripe’s privacy policy here.

4. Collection of activities

We collect various types of activities.

4.1 Data collected during the login process

During the login process, we collect the IP address, the user agent transmitted by the browser, and the time of access. This processing is carried out to ensure the lawful and secure use of the Customer Areas, to detect and prevent unauthorized access, to defend against attacks (e.g. credential stuffing, brute force), to document misuse, and, where necessary, to provide evidence for the assertion or defense of claims. The legal bases are Art. 6(1)(b) GDPR, insofar as processing is necessary to provide account access and perform the contract, and Art. 6(1)(f) GDPR on the basis of our legitimate interests in IT security, integrity and availability of our systems, and protecting our customers from account misuse. We observe the principles of data minimization pursuant to Art. 5(1)(c) GDPR, implement data protection by design and by default pursuant to Art. 25 GDPR, and take appropriate technical and organizational measures to ensure processing security within the meaning of Art. 32 GDPR (including access controls, logging, encryption). Log data are retained only as long as necessary for the stated security, documentation, and evidentiary purposes; thereafter they are deleted or anonymized within the meaning of Art. 5(1)(e) GDPR. Where processing is based on Art. 6(1)(f) GDPR, there is a right to object under Art. 21 GDPR on grounds relating to the data subject’s particular situation; however, where login security data are strictly necessary for performance of the contract, an objection cannot be implemented.

4.2 Data collected during the use of the applications

Data during the use of the applications are collected only if the customer has explicitly enabled the 'Statistics' option during the conversion process or in the Customer Area. In this case, the application sends webhooks to the endpoint configured by the customer upon certain events; at the same time, we log the data and make them available to the customer. Events particularly include installation and application start. Depending on configuration, license identifiers, an encrypted/hashed IP value, language, operating system and version, CPU characteristics, and display settings (e.g. dark mode) may be transmitted and stored. Processing is carried out to provide the customer with meaningful usage statistics (such as installation and start frequencies, system environments), to improve application stability and security, and to detect misuse. The legal basis is—depending on the customer’s setup—Art. 6(1)(a) GDPR (end-user consent obtained by the customer) or Art. 6(1)(f) GDPR (the customer’s legitimate interests in product improvement, reach measurement, and IT security); we generally process these data on behalf of the customer pursuant to Art. 28 GDPR and do not use them for our own advertising purposes. We observe the principles of data minimization and purpose limitation (Art. 5(1)(b) and (c) GDPR), implement data protection by design and by default (Art. 25 GDPR), and take appropriate technical and organizational measures to ensure processing security (Art. 32 GDPR), in particular transport encryption and access restrictions. The storage period is determined by the purposes and retention periods defined by the customer; data are deleted or anonymized as soon as they are no longer required for the stated purposes (Art. 5(1)(e) GDPR). The customer is responsible for fulfilling all required information duties towards end users (Art. 13/14 GDPR), lawfully obtaining consents (if required), and complying with other legal requirements—including telemedia and telecommunications data protection (e.g. consent requirements for end-device access). Data subject rights under Art. 15–21 GDPR are generally to be asserted against the customer as controller; we support the customer in fulfilling these obligations in accordance with Art. 28(3) GDPR.

4.3 Collection of special usage data

In certain areas, we collect special usage data to ensure the lawful and secure use of our applications. This includes, in particular, automated checks at start-up and during application use to verify whether a valid license is being used, as well as additional security-related functions such as integrity and abuse checks. Processing is carried out for the purposes of proper contract performance, ensuring the security, availability, and integrity of our systems, and enforcing contractual and legal claims. The legal bases are Art. 6(1)(b) GDPR, insofar as processing is necessary for contract performance (e.g. license verification), and Art. 6(1)(f) GDPR, insofar as our legitimate interests in IT security, prevention of misuse, and protection against unauthorized use prevail. We observe the principles of data minimization (Art. 5(1)(c) GDPR), processing security (Art. 32 GDPR), and data protection by design and by default (Art. 25 GDPR). Where possible, we process the data in a pseudonymized manner. Only the data strictly necessary for license and security checks are collected; additional statistics or telemetry data are collected only if the customer has explicitly enabled this during the conversion process. Data are stored only as long as necessary for the stated purposes; security- and audit-related logs are regularly deleted or anonymized within a limited period. Disclosure to third parties occurs only to processors bound by instructions under Art. 28 GDPR or in cases provided for by law; transfers to third countries are carried out solely in compliance with Art. 44 et seq. GDPR (e.g. adequacy decision or EU standard contractual clauses). Providing the data required for license verification is necessary for using the application; without these data, the application cannot be provided. Data subjects have the rights under Art. 15 to 20 GDPR; where we rely on Art. 6(1)(f) GDPR, there is a right to object under Art. 21 GDPR. Where processing is strictly necessary for contract performance, an objection cannot be implemented.

5. Data processing for advertising purposes

If you have entered into a contract with us, we process your contact details—absent a specific consent—to occasionally send you information about news via that channel. We may also process your email address to occasionally send you information about further, similar topics that may be of interest to you, absent a specific consent. Apart from this, no further use of your data takes place without your explicit consent.

You may object to the processing of data for the aforementioned purposes at any time, free of charge, separately for each communication channel, and with effect for the future. To do so, it is sufficient to send an email or a letter to the contact details listed in Section II. No costs other than the transmission costs according to the base rates are incurred.

6. Online presences on social media

In addition to our website, we also maintain online presences on the social media platforms Facebook, Instagram, WhatsApp, Pinterest, LinkedIn, TikTok, and YouTube. You can access these via the corresponding buttons on our website. When visiting such a presence, personal data may be transmitted to the provider of the social network. The provider collects, among other things, your IP address, browser type, and possibly further information. If you are logged in, the visit can be associated with your account. To prevent this, please log out before visiting, delete cookies, and restart your browser.

For the purpose and scope of data collection and your rights, please refer to the providers’ privacy notices:

• Facebook
• Instagram
• Pinterest
• YouTube
• TikTok
• LinkedIn
• WhatsApp

7. Cookies, website optimization

Our website uses so-called cookies in several places. Cookies are small files that your browser creates automatically and stores on your end device (laptop, tablet, smartphone, etc.) when you visit our subpages. Cookies do not damage your device and do not contain viruses, trojans, or other malware. A cookie stores information related to the specific device used. However, this does not mean that we gain direct knowledge of your identity. Different types of information can be stored in cookies—for example, language settings on our website. Cookies also make it more convenient for you to use our offering. For example, we use so-called session cookies to recognize that you have already visited individual subpages of our website. These are automatically deleted after you leave our website. In addition, we also use temporary cookies to enhance user-friendliness, which are stored on your device for a certain defined period. If you visit our website again to use our services, it is automatically recognized that you have already been with us and which entries and settings you made so that you do not have to enter them again.

If these cookies are necessary to ensure the proper functioning of our website, their use is based on Art. 6(1)(f) GDPR. Our interest in optimizing our website is considered legitimate within the meaning of the aforementioned provision. In all other cases, we ask for your consent (pursuant to Art. 6(1)(a) GDPR), which allows us to set additional cookies (analytics cookies, marketing cookies). Without consent, no cookies are set (except required/essential cookies).

You can change or withdraw your consent at any time on our website in the privacy section (at the end of the subpage).

7.1 Google Analytics

For demand-oriented design and continuous optimization of our digital offerings, we use, based on Art. 6(1)(a) GDPR, Google Analytics, a web analytics service of Google Inc. ('Google'). In this context, anonymized usage profiles are created and cookies are used. The information generated by the cookie about your use of our website, such as

• Browser type/version,
• Operating system used,
• Referrer URL (previously visited subpage),
• Host name of the accessing device (IP address),
• Time of the server request,

is transmitted to a Google server in the USA and stored there. The information is used to evaluate website usage, compile reports on website activity, and provide other services related to website and internet usage for market research and demand-oriented design of our digital offerings. This information may also be transferred to third parties if required by law or if third parties process this data on our behalf. Your IP address will not be merged with other Google data under any circumstances. IP addresses are anonymized so that assignment is not possible (so-called IP masking). You can prevent the storage of cookies by selecting the appropriate settings in your browser software; however, please note that in this case you may not be able to use all functions of our website to their full extent. You can also prevent the collection of the data generated by the cookie and related to your use of the website (incl. your IP address) by Google as well as the processing of this data by Google by downloading and installing the available browser plug-in.

7.2 Google reCaptcha

To protect web forms (e.g. contact form) against unwanted use, we use the reCaptcha service provided by Google Inc. This service distinguishes whether an input is made by a human or abusively and automatically by a machine (spam bot). For this purpose, your IP address and, where applicable, other data required by Google Inc. for the reCaptcha service are transmitted to Google Inc. For these data, the different privacy policies of Google Inc. apply.

7.3 Google Maps

We use the Google Maps mapping service via an interface to visually display geographic information. The provider of this service is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ('Google').

When using Google Maps, Google also collects, processes, and uses data about the use of the map functions by visitors. This information is usually transmitted to a Google server in the USA and stored there.

The use of Google Maps is in the interest of an attractive presentation of our online offerings and to make it easy to find the locations we indicate on the website. The legal basis is your consent pursuant to Art. 6(1)(a) GDPR. You can view and change your consent at any time in the privacy section of our website.

More information on how user data are handled can be found in Google’s Privacy Policy.

7.4 Google Fonts

We integrate the fonts ('Google Fonts') provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. The privacy policy can be found here. Opt-out options can be found here.

7.5 Google Ads and conversion tracking

On the basis of our legitimate interests (Art. 6(1)(f) GDPR), we use the services of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ('Google') to place ads on the Google advertising network and to use conversion cookies. Google is certified under the Privacy Shield. Data are processed in a pseudonymous manner. For more information, see here and here.

IV. Your rights

1. Overview

In addition to the right to withdraw any consent you have given to us, you are entitled—subject to the respective legal requirements—to the following further rights:

• Right of access to the personal data stored about you pursuant to Art. 15 GDPR; in particular, you may request information about the purposes of processing, the categories of personal data, the categories of recipients to whom your data have been or will be disclosed, the planned storage period, and the origin of your data if they were not collected directly from you,
• Right to rectification of inaccurate data or completion of incomplete data pursuant to Art. 16 GDPR,
• Right to erasure of your data stored by us pursuant to Art. 17 GDPR, unless statutory or contractual retention periods or other legal obligations or rights require further storage,
• Right to restriction of processing pursuant to Art. 18 GDPR, insofar as the accuracy of the data is contested by you, the processing is unlawful but you oppose deletion, the controller no longer needs the data but you require them for the establishment, exercise or defense of legal claims, or you have objected to processing pursuant to Art. 21 GDPR,
• Right to data portability pursuant to Art. 20 GDPR, i.e. the right to receive selected data stored about you by us in a commonly used, machine-readable format, or to request transmission to another controller,
• Right to lodge a complaint with a supervisory authority. As a rule, you may contact the supervisory authority at your habitual residence or place of work or at our registered office.

2. Right to object

Under the conditions of Art. 21(1) GDPR, you may object to data processing on grounds relating to your particular situation. The above general right to object applies to all processing purposes described in this Privacy Policy that are based on Art. 6(1)(f) GDPR. Unlike the specific right to object to processing for advertising purposes (see Section III.5.2 above), we are only obliged under the GDPR to implement such a general objection if you provide reasons of overriding importance (e.g. a potential risk to life or health).

V. Disclosure to third parties

We do not sell the data we collect. We disclose the information we receive only to the extent described below:

1. Service providers

We engage other companies and individuals to perform tasks on our behalf. Examples include support with processing payments (credit card, direct debit, and purchase on account). These service providers have access to personal information needed to perform their tasks but may not use it for other purposes. They are also obliged to handle the information in accordance with this Privacy Policy and the General Data Protection Regulation.

2. Protection of Website2Desktop and third parties

We disclose personal data when we are legally obliged to do so or when such disclosure is necessary to protect our rights and those of third parties.

3. Recipients outside the EU

Your data are generally processed in Germany and within the European Economic Area. If, in exceptional cases, your data are also processed in countries outside the European Union (so-called third countries), this will only occur if you have expressly consented, if it is necessary for us to provide our services to you, or if it is legally permitted (Art. 49 GDPR). Beyond that, processing of your data in third countries will only take place where appropriate safeguards ensure an adequate level of data protection (e.g. an adequacy decision of the EU Commission; EU Standard Contractual Clauses or so-called appropriate safeguards, Art. 44 et seq. GDPR).

VI. Further information and notes

Our website and its variations are continuously evolving. This Privacy Policy will also change. You should therefore visit our website regularly and take note of any changes. Unless otherwise specified, the use of all information we have about you is subject to this Privacy Policy. We assure you that we will only implement material changes to this Privacy Policy that would reduce the level of protection for data already obtained with your consent as the affected data subject.

Your trust is very important to us. We therefore aim to answer your questions about the processing of your personal data at any time. If you have questions that this Privacy Policy could not answer, or if you would like more detailed information on any point, please contact our Data Protection Officer at any time.

Cookies – Overview & Settings

Current choice: null

Permission granted on: null

Change settings