DentroChat logo
Kostenlos testen

europealternatives.com privacy policy — score 78/100 (low risk)

Zuletzt analysiert

Der Berichtsinhalt (Zusammenfassung, Befunde, Zitate) wurde auf Englisch erstellt und ist nicht lokalisiert.

Neue Analyse für eine andere Richtlinie starten

React Technologies GmbH · europealternatives.com

Berichtsdetails

low Risiko

Europe Alternatives is a privacy-friendly directory that collects almost no personal data, but clicking partner links can send your data to third parties—including potentially outside the EU—with no clear safeguards described.

This is a notably lean and privacy-respecting policy for a static informational website. No user accounts, no tracking cookies, and only privacy-friendly Cloudflare Web Analytics are used. However, the partner/affiliate link mechanism is a meaningful gap: personal data (IP address, browser info, click timestamps) is transmitted to unspecified destination companies and affiliate platforms, potentially including US-based processors, without any description of transfer safeguards such as Standard Contractual Clauses. Retention periods are also entirely absent.

Zuletzt analysiert
QuelleURL
Länge15,764 Zeichen

Kategoriebewertung

Aufschlüsselung der Richtlinie nach zentralen Compliance-Bereichen. Gut = stark, mittel = gemischt, schlecht = bedenklich.

Data Minimizationgood

The site collects virtually no personal data directly—no accounts, no tracking cookies, and analytics are aggregated and anonymous.

Transparencyfair

The policy is commendably clear about its own practices but vague on which affiliate platforms process partner link data and what safeguards apply to third-country transfers.

Third-party Sharingfair

Only Cloudflare and partner link destinations receive data, but the specific affiliate platforms and destination companies are not identified by name.

International Transferspoor

The policy acknowledges third-country transfers via partner links but provides zero detail on safeguards such as Standard Contractual Clauses or adequacy decisions.

AI/Model Traininggood

No mention of AI or model training; the site is a static directory with no such functionality, making this a non-concern.

User Rightsgood

All standard GDPR rights are clearly listed with a contact email and the competent supervisory authority (BayLDA) is identified.

Wichtigste Befunde

Bemerkenswerte Klauseln, Probleme oder positive Praktiken (kritische zuerst)

Warnung

Partner links transmit personal data to unspecified third parties without safeguard details

The Partner Links section discloses that clicking outbound links sends IP address, browser/device info, click timestamp, referrer, and URL parameters to destination companies and affiliate platforms. However, neither the specific platforms nor the legal safeguards for international transfers are named, creating a transparency gap under Arts. 13(1)(f) and 44–49 GDPR.

Warnung

No retention periods specified for any data category

The policy does not state how long Cloudflare log data, analytics data, or partner link referral data are retained. GDPR Art. 13(2)(a) requires informing data subjects of the envisaged storage period or the criteria used to determine it.

Warnung

No Data Processing Agreement details with Cloudflare

While Cloudflare is the sole third-party processor for hosting and analytics, the policy does not confirm the existence of a Data Processing Agreement as required by Art. 28 GDPR, though one likely exists given Cloudflare's enterprise terms.

Info

Cloudflare Web Analytics is genuinely privacy-friendly

The analytics service uses no cookies, does not track individuals across sites, and collects only aggregated anonymous metrics (page views, referrer, country, device type). This is a strong data minimization practice.

Info

IP addresses are anonymized at the hosting layer

The policy states that Cloudflare collects 'IP address (anonymized)' in server logs, and the controller explicitly notes 'We do not have access to individual log entries,' limiting the identifiability of visitors.

Fazit für Nutzer

Your data footprint on this site itself is minimal, but be aware that clicking outbound partner links hands your IP and browser data to unknown third parties who may process it outside Europe.

Compliance-Posture

The controller demonstrates strong GDPR alignment for its own operations—clear legal basis citations, identified supervisory authority, and full GDPR rights listing. The weakness is the partner links section, which acknowledges third-country transfers but provides no detail on safeguards, violating the GDPR principle of transparency regarding international transfers (Art. 44–49).

EU-Übermittlungen

The policy explicitly acknowledges that clicking partner links may result in data processing outside the EU/EEA, including the United States, but names no specific safeguard mechanism (SCCs, adequacy decisions, or supplementary measures). This is a transparency gap under Chapter V GDPR.

Erkannte Signale

Konkrete Datenpunkte und Praktiken im Text identifiziert

Erhobene Daten
IP address (anonymized)Browser type and versionOperating systemReferrer URLTime of accessPage views (aggregated)Country of origin (aggregated)Device type (aggregated)
Verarbeitungszwecke
Website hosting and security (Cloudflare)Privacy-friendly web analyticsPartner link referral attribution
Weitergabe an Dritte
Cloudflare, Inc. — hosting, CDN, security, and web analyticsUnspecified destination companies via partner linksUnspecified affiliate/partner platforms for referral attribution
Internationale Übermittlungen
Cloudflare, Inc. (US-based) processes hosting and analytics dataPartner link destinations may process data outside EU/EEA including the United States

Textbelege

Direkte Zitate aus der Richtlinie, die diese Befunde stützen

We do not collect personal data, do not require user accounts, and do not use advertising or cross-site tracking technologies.

depending on the provider you click, data may also be processed outside the EU or EEA, including in third countries such as the United States.

Does not use cookies / Does not track individual visitors across sites / Does not collect personal data

the recipient may receive personal data and technical connection data, especially your IP address, browser and device information, the date and time of the click, the referring page, and URL parameters required to attribute the referral.

We do not set additional cookies, use local storage, or run extra tracking scripts on our own site for partner links.

Fehlend oder unklar

  • No retention periods specified for any data category
  • No specific affiliate/partner platforms named
  • No safeguards described for third-country transfers (e.g., SCCs, adequacy decisions)
  • No explicit confirmation of Data Processing Agreement with Cloudflare
  • No cookie table or detailed listing of technically necessary cookies

Fragen zum Nachfragen

  • Which specific affiliate or partner platforms are used for referral attribution, and what are their privacy policies?
  • What safeguards (Standard Contractual Clauses, adequacy decisions, supplementary measures) are in place for third-country transfers that occur when users click partner links?
  • What are the retention periods for Cloudflare server logs and analytics data?
  • Is there a signed Data Processing Agreement with Cloudflare covering hosting and analytics processing?
  • How is IP address anonymization implemented—does Cloudflare truncate or hash IPs, and at what point in the request lifecycle?
Diese Analyse wird von KI erstellt und ist keine Rechtsberatung. Konsultiere für Compliance-Entscheidungen immer eine qualifizierte Rechtsfachkraft.

Diese Analyse teilen

Jeder mit diesem Link kann das Ergebnis oben einsehen.

Entwickelt von DentroChat

100 % europäischer KI-Chat für alle

Chatte mit KI, arbeite mit Dateien, generiere Bilder und suche im Web. Daten bleiben in Europa.

In der EU gehostete InfrastrukturText, Dateien, Bilder & WebsucheSchnell-, Denk- und Kreativ-ModusDatenschutz zuerstKeine Daten verlassen Europa
Kostenlos testen →