Last updated: June 2026
Oswald & Sommer GbR
Sonnhalde 94, 79194 Gundelfingen, Germany
E-Mail: contact@privshield.app
Steuernummer: 07068/02307
When you join the waitlist, we store your email address to notify you at launch. Legal basis: your consent (Art. 6(1)(a) GDPR). You can withdraw at any time by emailing us.
When you create an account, we store:
Legal basis: performance of contract (Art. 6(1)(b) GDPR).
When an email arrives at one of your alias or temporary addresses it passes through our infrastructure. We store the following in your personal inbox so you can read and manage your mail inside the app:
During delivery, emails are automatically analysed for spam. This involves:
For Premium users, a vector embedding of the email subject is stored alongside the message to power personalised spam detection. Emails classified as auto-delete (score > 15) are discarded immediately — no database entry is created.
Legal basis: performance of contract (Art. 6(1)(b) GDPR); legitimate interest in spam protection (Art. 6(1)(f) GDPR).
If you enable forwarding, emails that pass our spam filter are relayed to your real address via Resend. The full email content is transmitted during forwarding. You can disable forwarding at any time in settings. Legal basis: performance of contract (Art. 6(1)(b) GDPR).
If you use the Phone Shield feature, we provision a masked phone number via Twilio. We store your real phone number in our database to enable forwarding of incoming SMS messages. SMS content passes through Twilio's infrastructure and, depending on your settings, may be relayed to your real number or displayed inside the app. Legal basis: performance of contract (Art. 6(1)(b) GDPR).
If you enable push notifications, we store a device push token (APNs / FCM) in your profile to deliver alerts about new emails or account events. You can revoke this by disabling notifications in your device settings. Legal basis: consent (Art. 6(1)(a) GDPR).
The optional account-migration feature lets you scan an existing email inbox to discover aliases you have registered elsewhere. To do this, you provide IMAP credentials (address and password) which are transmitted to our Supabase edge function over an encrypted connection. We do not persist your IMAP credentials — they are used only for the duration of the scan and then discarded. Legal basis: consent (Art. 6(1)(a) GDPR).
If you subscribe to Privacy Shield Pro, payments are processed by Stripe. We do not store your card details. We only receive an anonymised customer reference from Stripe. Legal basis: performance of contract (Art. 6(1)(b) GDPR).
We use the following sub-processors to operate the service. All transfers to the US are covered by Standard Contractual Clauses (SCCs) under Art. 46 GDPR.
| Provider | Purpose | Location |
|---|---|---|
| Google (GA4) | Web analytics — only after consent | USA |
| Supabase | Database, authentication, edge functions | USA (EU infrastructure: Frankfurt) |
| Cloudflare | Email routing, infrastructure, Workers AI (spam analysis) | USA |
| Postmark (ActiveCampaign) | Spam scoring via Spamcheck API — receives email content | USA |
| Spamhaus | DNS-based sender-domain blocklist lookup | UK / USA |
| Resend | Outbound email delivery (forwarding) | USA |
| Twilio | Masked phone numbers and SMS forwarding (Phone Shield) | USA |
| Stripe | Payment processing | USA |
| RevenueCat | In-app subscription management (iOS) | USA |
| Data | Retention |
|---|---|
| Waitlist email | Until you unsubscribe or the service launches |
| Account & alias data | Until you delete your account |
| Emails in inbox (body, subject, metadata) | Until you delete the message or your account |
| Emails classified as auto-delete (score > 15) | Not retained — discarded immediately |
| Subject embeddings (Premium) | Until the associated email is deleted |
| Spam feedback & sender adjustments | Until you delete your account |
| SMS messages (Phone Shield) | Until you delete the message or your account |
| Device push token | Until you disable notifications or delete your account |
| IMAP credentials (migration scan) | Not retained — discarded after scan completes |
| Payment records | 10 years (German commercial law / § 147 AO) |
Under GDPR, you have the right to:
To exercise any of these rights, contact: contact@privshield.app
You also have the right to lodge a complaint with your local data protection authority. In Baden-Württemberg: Der Landesbeauftragte für den Datenschutz und die Informationsfreiheit Baden-Württemberg.
This website uses Google Analytics 4 (Measurement ID: G-CC1W9LW6CC) to understand how visitors use the site. GA4 is loaded with Consent Mode active: analytics_storage and ad_storage default to denied — no data is collected or transmitted to Google until you explicitly accept via the cookie banner.
If you accept, Google Analytics sets cookies to measure sessions, page views, and traffic sources. You can withdraw consent at any time by clicking “Reject” in the cookie banner (clear your browser's localStorage for privshield.app to make it reappear).
Your theme preference (light / dark) and language choice are stored in localStorage on your device only and are never transmitted to us.
Legal basis for analytics: your consent (Art. 6(1)(a) GDPR).
We may update this policy as the service evolves. Material changes will be communicated via email (if you have an account) or a notice on the website. The date at the top of this page always reflects the most recent revision.