Privacy policy

KarbonLens (“we”, “us”) operates the carbon-market intelligence terminal at karbonlens.com. This page explains what personal data we collect, why, and how we handle it. This is a v0.1 document and will be replaced with a full policy before general availability.

What we collect

Public pages (/projects, /prices, /regulatory, /methodology) do not require an account and do not set analytics or advertising cookies.

When you sign in with Google, we receive:

• Your email address and display name
• Your Google profile picture URL (optional)

When you use authenticated features we additionally store the watchlist entries, alert preferences, and notification history you create. We never receive your Google password.

Why we collect it

• Authentication. To recognise you across sessions and authorise access to your watchlist and alerts.
• Alert delivery. If you opt in to email digests, we send them to the address Google returned at sign-in.
• Service operation. Standard server logs (IP address, user-agent, timestamp) for abuse prevention and debugging, retained 30 days.

Where it lives

User data is stored in a PostgreSQL database hosted in the European Union (Hetzner, Falkenstein). Daily encrypted backups are retained for 7 days. We do not sell, rent, or share personal data with third parties for advertising.

Sub-processors

• Google — OAuth sign-in (your email and name are sent to us at authentication).
• Hetzner Online GmbH — infrastructure hosting (EU).
• Resend — transactional email delivery, only when alert emails are enabled.
• Sentry — error monitoring, only when enabled; stack traces may include request URLs but not request bodies.

Your choices

You can sign out at any time. To delete your account and all associated data (watchlist, preferences, notifications), email us from your signed-in address and we will remove them within 14 days. We will confirm when deletion is complete.

Contact

Questions or requests: hello@karbonlens.com.