Separation of Marketing & Produkt
Privacy - Product
Privacy Policy (Product)
Data Processing Agreement
Subprocessors
Technical & Organizational Measures
Privacy - Marketing
Privacy Policy (Marketing)
Separation of Marketing & Product
No Cookie Banner
Security
Overview
Whitepaper
Vulnerability Disclosure
More
Accessibility Statement
Site Notice

Separation of Marketing & Product

We maintain a strict separation between our marketing website heylogin.com and the actual product at heylogin.app.

On heylogin.app, sensitive personal data is processed. All sensitive data is end-to-end encrypted and can only be accessed by the respective users. Because of this, the use of third-party and external services within the product is kept to an absolute minimum, and we work very deliberately with European service providers wherever possible.

The marketing website heylogin.com serves a different purpose. It is used to provide information about heylogin, publish content, and support our business operations. For this site, we use the modern website builder Webflow that also uses Cloudflare for hosting. This setup is common for marketing websites and helps us deliver content reliably and securely worldwide. Importantly, our marketing pages do not track personally identifiable information, nor do we engage in excessive third-party data sharing. Details can be found in our marketing privacy policy.

More generally, we apply different standards depending on context:

  • Product: very strict focus on European suppliers and maximum data minimization
  • Marketing: pragmatic choices that allow us to operate and grow as a business, while still avoiding unnecessary tracking or data sharing

Because of this clear separation, we also maintain two different privacy policies. One privacy policy applies to heylogin.app and covers the processing of data within the product. The other applies to heylogin.com and describes the limited and purpose-specific data processing related to our marketing.

This separation ensures transparency and allows us to clearly communicate which data is processed where, for which purpose, and under which technical and organizational safeguards.