LoginRegister

Privacy Policy

Last updated: March 2026

1. Data Controller

The controller responsible for data processing on this website is: fat elephant — Isabella Di Ponio-Voit, Blocksbergstr. 38a, 66955 Pirmasens, Germany. Email: hello@kinotrack.app

2. Data We Collect

Account Data

When you register, we collect your name, email address, and a password (stored as a cryptographic hash). Optionally, you may provide a date of birth, location, and a short bio. This data is used solely to operate your account.

Usage Data

We store the film, series, season and episode data you interact with: titles you mark as watched, items on your watchlist, ratings, notes, and lists you create. This data is stored to provide the core functionality of KinoTrack.

Profile Pictures

If you upload a profile picture, the image is processed server-side (resized and converted to WebP format) and stored in a cloud storage bucket located in the European Union. The original image is not retained.

Server Log Files

Our web server automatically collects and stores information in server log files that your browser transmits. This includes browser type, operating system, referrer URL, IP address, and date/time of access. This data cannot be attributed to specific individuals and is not merged with other data sources.

3. Cookies

KinoTrack uses only technically necessary cookies — specifically a session cookie required for authentication. We do not use tracking cookies, advertising cookies, or any third-party cookies. No cookie consent banner is required as no non-essential cookies are used.

4. Third-Party Services — TMDB

Film and series data (titles, descriptions, images, trailers) is sourced from The Movie Database (TMDB) via their API. When content is displayed, your browser may load images directly from TMDB's image servers (image.tmdb.org). Please refer to TMDB's privacy policy at themoviedb.org for details on their data practices.

5. YouTube (Trailers)

Trailers are embedded via YouTube. Trailer thumbnails are loaded from YouTube's servers (img.youtube.com). When you click play, an iframe connection to YouTube is established and YouTube's privacy policy applies. YouTube is operated by Google LLC. We use the privacy-enhanced embed mode where possible.

6. Data Storage & Retention

Your data is stored on servers located in the European Union. We retain your account data for as long as your account is active. You may delete your account at any time, which will permanently remove all associated personal data within 30 days.

7. Your Rights under GDPR

Under the GDPR you have the right to: access the personal data we hold about you, rectify inaccurate data, request erasure of your data, restrict or object to processing, and data portability. To exercise these rights, contact us at hello@kinotrack.app.

8. Data Security

We use HTTPS encryption for all data transmission. Passwords are stored using a one-way cryptographic hash and are never stored in plain text. Access to personal data is restricted to authorised personnel only.

9. Changes to This Policy

We may update this privacy policy from time to time. The date at the top of this page indicates when it was last revised. Continued use of KinoTrack after changes constitutes acceptance of the updated policy.

10. Contact

For any privacy-related questions, contact us at: hello@kinotrack.app