DentroChat logo
Prova gratis

europealternatives.com privacy policy — score 78/100 (low risk)

Senast analyserad

Rapportinnehållet (sammanfattning, fynd, citat) genererades på engelska och är inte lokaliserat.

Kör en ny analys på en annan policy

React Technologies GmbH · europealternatives.com

Rapportdetaljer

low risk

Europe Alternatives is a privacy-friendly directory that collects almost no personal data, but clicking partner links can send your data to third parties—including potentially outside the EU—with no clear safeguards described.

This is a notably lean and privacy-respecting policy for a static informational website. No user accounts, no tracking cookies, and only privacy-friendly Cloudflare Web Analytics are used. However, the partner/affiliate link mechanism is a meaningful gap: personal data (IP address, browser info, click timestamps) is transmitted to unspecified destination companies and affiliate platforms, potentially including US-based processors, without any description of transfer safeguards such as Standard Contractual Clauses. Retention periods are also entirely absent.

Senast analyserad
KällaURL
Längd15,764 tecken

Bedömning per kategori

Uppdelning av policyn över viktiga efterlevnadsområden. Bra = stark, rimlig = blandad, dålig = oroande.

Data Minimizationgood

The site collects virtually no personal data directly—no accounts, no tracking cookies, and analytics are aggregated and anonymous.

Transparencyfair

The policy is commendably clear about its own practices but vague on which affiliate platforms process partner link data and what safeguards apply to third-country transfers.

Third-party Sharingfair

Only Cloudflare and partner link destinations receive data, but the specific affiliate platforms and destination companies are not identified by name.

International Transferspoor

The policy acknowledges third-country transfers via partner links but provides zero detail on safeguards such as Standard Contractual Clauses or adequacy decisions.

AI/Model Traininggood

No mention of AI or model training; the site is a static directory with no such functionality, making this a non-concern.

User Rightsgood

All standard GDPR rights are clearly listed with a contact email and the competent supervisory authority (BayLDA) is identified.

Viktiga fynd

Anmärkningsvärda klausuler, problem eller positiva rutiner (kritiska först)

Varning

Partner links transmit personal data to unspecified third parties without safeguard details

The Partner Links section discloses that clicking outbound links sends IP address, browser/device info, click timestamp, referrer, and URL parameters to destination companies and affiliate platforms. However, neither the specific platforms nor the legal safeguards for international transfers are named, creating a transparency gap under Arts. 13(1)(f) and 44–49 GDPR.

Varning

No retention periods specified for any data category

The policy does not state how long Cloudflare log data, analytics data, or partner link referral data are retained. GDPR Art. 13(2)(a) requires informing data subjects of the envisaged storage period or the criteria used to determine it.

Varning

No Data Processing Agreement details with Cloudflare

While Cloudflare is the sole third-party processor for hosting and analytics, the policy does not confirm the existence of a Data Processing Agreement as required by Art. 28 GDPR, though one likely exists given Cloudflare's enterprise terms.

Info

Cloudflare Web Analytics is genuinely privacy-friendly

The analytics service uses no cookies, does not track individuals across sites, and collects only aggregated anonymous metrics (page views, referrer, country, device type). This is a strong data minimization practice.

Info

IP addresses are anonymized at the hosting layer

The policy states that Cloudflare collects 'IP address (anonymized)' in server logs, and the controller explicitly notes 'We do not have access to individual log entries,' limiting the identifiability of visitors.

Sammanfattning för användaren

Your data footprint on this site itself is minimal, but be aware that clicking outbound partner links hands your IP and browser data to unknown third parties who may process it outside Europe.

Efterlevnadsställning

The controller demonstrates strong GDPR alignment for its own operations—clear legal basis citations, identified supervisory authority, and full GDPR rights listing. The weakness is the partner links section, which acknowledges third-country transfers but provides no detail on safeguards, violating the GDPR principle of transparency regarding international transfers (Art. 44–49).

EU-överföringar

The policy explicitly acknowledges that clicking partner links may result in data processing outside the EU/EEA, including the United States, but names no specific safeguard mechanism (SCCs, adequacy decisions, or supplementary measures). This is a transparency gap under Chapter V GDPR.

Upptäckta signaler

Specifika datapunkter och rutiner identifierade i texten

Insamlad data
IP address (anonymized)Browser type and versionOperating systemReferrer URLTime of accessPage views (aggregated)Country of origin (aggregated)Device type (aggregated)
Behandlingsändamål
Website hosting and security (Cloudflare)Privacy-friendly web analyticsPartner link referral attribution
Delning med tredje part
Cloudflare, Inc. — hosting, CDN, security, and web analyticsUnspecified destination companies via partner linksUnspecified affiliate/partner platforms for referral attribution
Internationella överföringar
Cloudflare, Inc. (US-based) processes hosting and analytics dataPartner link destinations may process data outside EU/EEA including the United States

Bevisutdrag

Direkta citat från policyn som stödjer dessa fynd

We do not collect personal data, do not require user accounts, and do not use advertising or cross-site tracking technologies.

depending on the provider you click, data may also be processed outside the EU or EEA, including in third countries such as the United States.

Does not use cookies / Does not track individual visitors across sites / Does not collect personal data

the recipient may receive personal data and technical connection data, especially your IP address, browser and device information, the date and time of the click, the referring page, and URL parameters required to attribute the referral.

We do not set additional cookies, use local storage, or run extra tracking scripts on our own site for partner links.

Saknas eller otydligt

  • No retention periods specified for any data category
  • No specific affiliate/partner platforms named
  • No safeguards described for third-country transfers (e.g., SCCs, adequacy decisions)
  • No explicit confirmation of Data Processing Agreement with Cloudflare
  • No cookie table or detailed listing of technically necessary cookies

Frågor att ställa

  • Which specific affiliate or partner platforms are used for referral attribution, and what are their privacy policies?
  • What safeguards (Standard Contractual Clauses, adequacy decisions, supplementary measures) are in place for third-country transfers that occur when users click partner links?
  • What are the retention periods for Cloudflare server logs and analytics data?
  • Is there a signed Data Processing Agreement with Cloudflare covering hosting and analytics processing?
  • How is IP address anonymization implemented—does Cloudflare truncate or hash IPs, and at what point in the request lifecycle?
Den här analysen genereras av AI och är inte juridisk rådgivning. Rådfråga alltid en kvalificerad jurist för efterlevnadsbeslut.

Dela den här analysen

Alla med den här länken kan se resultatet ovan.

Byggd av DentroChat

100 % europeisk AI-chatt för alla

Chatta med AI, arbeta med filer, generera bilder och sök på webben. Data stannar i Europa.

Infrastruktur hostad i EUText, filer, bilder och webbsökningSnabb-, Tänk- och Kreativ-lägenIntegritet först som standardIngen data lämnar Europa
Prova gratis →