Icelake
GitHubAnmeldenRegistrieren

Datenschutz

Last updated: March 14, 2026

1. Controller

The controller responsible for data processing on this website is:

nordbase IT GmbH
Pallasweg 28
23562 Lübeck, Germany
Email: privacy@icelake.eu

2. Data We Collect

2.1 Website Visits

When you visit our website, your browser automatically transmits certain data for technical reasons. The following data is logged: date and time of access, browser type and version, operating system, the URL of the previously visited page (referrer), your IP address, and the amount of data transferred. This data is processed on the basis of Art. 6(1)(f) GDPR — our legitimate interest in ensuring the security and functionality of our website. Server logs are automatically deleted after 30 days.

2.2 Account Registration

When you create an Icelake account, we collect your name, email address, and organization name. This data is processed on the basis of Art. 6(1)(b) GDPR — performance of a contract. Your account credentials are managed via Keycloak and stored separately from your application data.

2.3 Application Data

Data you ingest into Icelake (metrics, logs, traces) is stored in your dedicated S3 storage on European infrastructure. We do not access, analyze, or share your application data unless required for technical support at your explicit request.

3. Hosting & Data Location

This website and the Icelake platform are hosted on European infrastructure (UpCloud, Finland/Germany). All data remains within the European Union. We do not transfer personal data to third countries outside the EU/EEA unless adequate safeguards under Chapter V GDPR are in place.

4. Cookies

This website uses only technically necessary cookies required for authentication and session management. We do not use tracking cookies, analytics tools, or advertising cookies. No consent banner is required as these cookies are strictly necessary under Art. 5(3) of the ePrivacy Directive.

5. Your Rights

Under the GDPR, you have the following rights:

  • Right of access (Art. 15 GDPR) — obtain confirmation and a copy of your personal data
  • Right to rectification (Art. 16 GDPR) — correct inaccurate personal data
  • Right to erasure (Art. 17 GDPR) — request deletion of your personal data
  • Right to restriction (Art. 18 GDPR) — restrict the processing of your data
  • Right to data portability (Art. 20 GDPR) — receive your data in a structured, machine-readable format
  • Right to object (Art. 21 GDPR) — object to processing based on legitimate interest

To exercise any of these rights, contact us at privacy@icelake.eu.

6. Data Retention

We retain your account data for the duration of your active account. Upon account deletion, your personal data is removed within 30 days. Application data stored in your S3 buckets is deleted according to your configured retention policies. Legal retention obligations (e.g., tax and commercial law) may require us to retain certain data for up to 10 years.

7. Sub-Processors

We use the following sub-processors to provide our services:

  • UpCloud Ltd (Helsinki, Finland) — Infrastructure hosting

All sub-processors are located in the EU/EEA and subject to data processing agreements in accordance with Art. 28 GDPR.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including TLS encryption for all data in transit, encryption at rest for stored data, role-based access controls, and regular security reviews.

9. Supervisory Authority

You have the right to lodge a complaint with a data protection supervisory authority. The competent authority for nordbase IT GmbH is:

Unabhängiges Landeszentrum für Datenschutz Schleswig-Holstein (ULD)
Holstenstraße 98, 24103 Kiel, Germany
www.datenschutzzentrum.de

10. Changes to This Policy

We may update this privacy policy from time to time. The current version is always available at this URL. We will notify registered users of material changes via email.