Privacy Policy (GDPR) for MemeMachine

This Privacy Policy explains how we collect, use, and protect your personal data when you use the MemeMachine service, in accordance with the EU General Data Protection Regulation (GDPR).

Data Controller

SEN.CO UG (haftungsbeschränkt)
Paradiesgasse 53
60594 Frankfurt am Main
Germany

Email: privacy@meme-machine.app

What Personal Data We Collect

When you use MemeMachine, we may collect and process the following data:

Phone number (used for WhatsApp delivery)
Subscription status (e.g. trial, active, cancelled)
Payment status and billing details (via Stripe)
IP address and browser metadata (on website only)
Anonymous usage data (via Google Analytics)

We do not collect names, addresses, birthdates, or create user accounts.

Why We Collect This Data

We process your data for the following purposes:

To deliver memes and other content via WhatsApp
To manage your subscription and payments through Stripe
To analyze service usage and improve performance
To fulfill our legal obligations as a business in the EU

Legal Basis for Processing

We rely on the following legal grounds under Article 6 of the GDPR:

Art. 6(1)(b): Processing necessary for the performance of a contract
Art. 6(1)(f): Legitimate interest in operating and improving the service

Third-Party Services

We use third-party tools to operate MemeMachine. These services may process your data in accordance with their own privacy policies:

Twilio (WhatsApp & phone number delivery) Privacy Policy
Stripe (payments and billing) Privacy Policy
Google Analytics (anonymous website usage tracking) Privacy Policy
Imgflip (meme template and generation service) Privacy Policy

These providers act as data processors under GDPR. For meme generation services like Imgflip, we ensure that any content you create is handled according to their privacy policies and our data protection standards.

Data Retention

We store your data only as long as necessary to fulfill the purposes outlined above or as required by law. You can request deletion at any time.

Your Rights Under GDPR

You have the following rights:

Access your personal data
Correct or update your data
Request deletion ("Right to be forgotten")
Object to processing
Restrict processing
Data portability

To exercise any of these rights, contact us at: privacy@meme-machine.app

Data Deletion

You can request full deletion of your data (e.g. phone number and subscription status) by sending an email to privacy@meme-machine.app. We will delete your data within a reasonable timeframe and confirm completion.

Data Security

We use appropriate technical and organizational measures to protect your data. Communication with Stripe and Twilio is encrypted. We do not store sensitive personal data on our own servers.

International Transfers

Data may be processed outside the EU by third-party providers (e.g. Twilio, Stripe). All providers are GDPR-compliant or certified under international agreements such as the EU-US Data Privacy Framework.

Contact

If you have any questions about this Privacy Policy or how your data is used, contact us at: privacy@meme-machine.app

Questions about your privacy?

If you have any questions about how we handle your personal data or would like to exercise your rights, please contact us.

Contact Privacy Team

This privacy policy was last updated on April 9, 2025.