Legal & contact

Legal notice

feedback2code is operated by:

Santino Seither and Fabian Stehle, Appsplosion, GbR
Sperlingsweg 5
61462 Königstein
Germany

Represented by: Santino Lopez Seither, Fabian Stehle

Email: appsplosion.help@gmail.com

Tax identification

VAT identification number under Section 27a of the German Value Added Tax Act: DE346375923

Terms of Service

Last updated: 21 March 2026

These Terms of Service ("Terms") form a legally binding agreement between you and Appsplosion GbR ("Appsplosion", "we", "us"). By accessing or using feedback2code (the "Service"), you agree to these Terms. If you use the Service on behalf of a company or other entity, you represent that you have authority to bind that entity, and "you" refers to that entity.

1. Definitions

• "Account" means the account you create to access the Service.
• "Content" means any data, text, or materials submitted to or generated by the Service, including feedback, prompts, and outputs.
• "Customer" means the person or entity using the Service.
• "End user" means a person who submits feedback through a Customer's widget.
• "Order" means a subscription or purchase of a paid plan.
• "Service" means the feedback2code website, dashboard, APIs, widgets, integrations, and automation pipeline.

2. Eligibility

You must be at least 16 years old and capable of entering into a binding contract. If mandatory consumer laws apply to you, those rights are not waived by these Terms.

3. Service description

The Service enables Customers to collect feedback, manage it in a dashboard, and optionally run automation workflows that may generate draft code changes. Outputs are intended to assist you and require your review and approval before use in production.

4. Account registration and security

You must provide accurate and complete information, keep it up to date, and protect your Account credentials. You are responsible for all activity under your Account. Notify us promptly if you suspect unauthorized access.

5. Acceptable use

You agree not to:

• Use the Service for unlawful, fraudulent, or abusive purposes.
• Interfere with or disrupt the Service or its infrastructure.
• Upload or submit Content that infringes third-party rights, violates privacy, or is harmful.
• Attempt to gain unauthorized access to systems, data, or accounts.

6. Customer Content and licenses

You retain ownership of your Content. You grant us a worldwide, non-exclusive license to host, store, process, transmit, and display Content as necessary to operate and improve the Service, perform your instructions, and provide support. If you embed the widget on your site, you represent that you have the necessary rights and consents to submit End user data to us and to instruct us to process it on your behalf.

7. Feedback and suggestions

If you provide feedback, ideas, or suggestions about the Service, you grant us a perpetual, irrevocable, worldwide license to use them without restriction or compensation.

8. Third-party services

The Service integrates with third-party services (such as GitHub and Stripe). Your use of those services is subject to their terms and privacy policies. We are not responsible for third-party services.

9. Fees, billing, and taxes

Paid plans are billed in advance and processed by Stripe. You authorize us to charge your selected payment method for recurring fees, taxes, and other charges described at checkout. You are responsible for all applicable taxes. Fees are non-refundable except where required by law or explicitly stated otherwise.

10. Suspension and termination

We may suspend or terminate your access if you breach these Terms, pose a security risk, or if required by law. You may cancel your subscription at any time; cancellation takes effect at the end of the current billing period. Upon termination, your access to the Service may end and your Content may be deleted in accordance with our retention practices and legal obligations.

11. Data protection

Our processing of personal data is described in the Privacy Policy below. If you are a business customer and require a data processing agreement (DPA), contact us at the address above.

12. Confidentiality

Each party may receive confidential information from the other. The receiving party will protect it with reasonable care and use it only to perform its obligations under these Terms. Confidentiality obligations do not apply to information that is publicly known, independently developed, or rightfully obtained from a third party.

13. Intellectual property

We own all rights, title, and interest in and to the Service, including its software, design, and trademarks. Except as expressly granted in these Terms, no rights are transferred to you.

14. Warranty disclaimer

The Service is provided "as is" and "as available". To the maximum extent permitted by law, we disclaim all warranties, including any implied warranties of merchantability, fitness for a particular purpose, and non-infringement. We do not warrant that the Service will be uninterrupted, error-free, or that outputs will be accurate or suitable for your purposes.

15. Limitation of liability

To the maximum extent permitted by law, we will not be liable for indirect, incidental, special, consequential, or punitive damages, or any loss of profits, revenue, data, or goodwill. Our total liability for any claim related to the Service is limited to the amount you paid to us for the Service in the 12 months before the claim arose. These limitations do not apply to liability that cannot be excluded under applicable law, including liability for intent, gross negligence, or injury to life, body, or health.

16. Indemnification

You will indemnify and hold us harmless from claims arising out of your use of the Service, your Content, or your breach of these Terms, including reasonable legal fees.

17. Export and compliance

You agree to comply with applicable laws, including export control and sanctions laws. You will not use the Service in a prohibited jurisdiction or for prohibited activities.

18. Force majeure

We are not liable for delays or failures caused by events beyond our reasonable control, including natural disasters, outages, or governmental actions.

19. Changes to these Terms

We may update these Terms from time to time. We will post the updated Terms here and update the "Last updated" date. Continued use of the Service after changes become effective constitutes acceptance where permitted by law.

20. Governing law and jurisdiction

These Terms are governed by the laws of Germany, excluding its conflict of laws rules. If you are a merchant, a legal entity under public law, or a special fund under public law, exclusive jurisdiction is the courts at our registered office. Mandatory consumer protections remain unaffected.

21. Miscellaneous

If any provision is unenforceable, the remaining provisions remain in effect. You may not assign these Terms without our consent, except to an affiliate or in connection with a merger or sale of assets. We may assign these Terms as part of a corporate reorganization. These Terms constitute the entire agreement between you and us regarding the Service.

Privacy policy

Last updated: 21 March 2026

This Privacy Policy explains how Appsplosion GbR ("we", "us") processes personal data when you use feedback2code, including our website, dashboard, APIs, and feedback widget (the "Service").

1. Controller

The controller under the EU General Data Protection Regulation (GDPR) is:

Santino Seither und Fabian Stehle, Appsplosion, GbR
Sperlingsweg 5, 61462 Königstein, Germany
E-mail: appsplosion.help@gmail.com

2. Scope and roles

• If you use the dashboard or API as a Customer, we act as the controller for your account data, billing data, and Service usage data.
• If you embed the feedback widget on your site, you determine which personal data your End users submit. In that context, you are the controller of your End users' data and we act as a processor on your behalf to provide the Service.
• If you are an End user submitting feedback through a Customer site, please contact that site operator for privacy questions.

3. Categories of personal data we process

Depending on how you use the Service, we may process:

• Account and authentication data such as name, username, email address, profile image, and identifiers from GitHub when you sign in via OAuth.
• Repository and integration data such as GitHub App installation IDs, repository names, permissions, and settings you configure in the dashboard.
• Feedback content and metadata such as text you or your End users submit, page URLs or paths, timestamps, and status metadata generated by the Service.
• Automation data such as prompts, code suggestions, sandbox execution metadata, and pull request links generated by automation workflows.
• Billing data such as plan tier, Stripe customer and subscription IDs, billing status, and invoice metadata. Payment card data is handled by Stripe directly.
• Communication data such as support requests or transactional emails you receive from us.
• Technical and security data such as IP address, device or browser information, timestamps, and error logs necessary to operate, secure, and improve the Service.

We do not sell personal data or build marketing profiles from your Content.

4. Sources of data

We receive personal data from:

• You when you create an Account, configure the Service, or contact support.
• GitHub when you authorize our GitHub App or sign in with GitHub.
• Your End users when they submit feedback through your widget.
• Stripe when you purchase a paid plan (limited billing and subscription status).
• Our systems and logs generated as you use the Service.

5. Purposes and legal bases (GDPR)

We process personal data for the following purposes and legal bases:

• Provide and operate the Service (Art. 6(1)(b) GDPR - contract or steps prior to a contract).
• Authenticate users and connect integrations (Art. 6(1)(b) GDPR).
• Process feedback and run automation workflows requested by you (Art. 6(1)(b) and Art. 6(1)(f) GDPR - contract and legitimate interests).
• Billing and subscription management (Art. 6(1)(b) GDPR).
• Security, abuse prevention, and legal compliance (Art. 6(1)(c) and Art. 6(1)(f) GDPR - legal obligation and legitimate interests).
• Service improvement and support (Art. 6(1)(f) GDPR - legitimate interests), where not overridden by your rights.

Where we rely on consent (e.g., optional non-essential cookies or marketing communications, if offered), we will ask separately (Art. 6(1)(a) GDPR).

6. Cookies and similar technologies

We use essential cookies and similar technologies to provide the Service, such as authentication, session management, and security protections. If we introduce optional analytics or marketing cookies, we will provide a consent mechanism where required by law.

7. Automated processing

The Service may use automated systems, including AI models and sandboxed code execution, to draft code changes or generate responses based on feedback you submit. These outputs are intended to assist you and do not produce legal effects by themselves. You remain responsible for reviewing and applying changes.

8. Recipients and processors

We use trusted service providers (sub-processors) to operate the Service. They process data only on our instructions and for the purposes described above. Typical categories include:

• Hosting and infrastructure providers
• Database and storage providers
• Authentication providers (GitHub / OAuth)
• Payment processors (Stripe)
• Email delivery providers (Resend)
• Sandbox and AI model providers used for automation

We can provide an updated list of sub-processors on request.

9. International transfers

Some providers are located outside the European Economic Area (EEA). Where required, we use appropriate safeguards such as EU Standard Contractual Clauses or equivalent mechanisms.

10. Retention

We keep personal data only as long as necessary for the purposes described above. Typical factors include the lifetime of your Account or subscription, legal retention requirements, the need to resolve disputes, and operational backup and log retention cycles.

11. Security

We implement technical and organizational measures designed to protect personal data, including access controls and encrypted transmission where appropriate. No system is completely secure; please contact us promptly if you believe your Account has been compromised.

12. Your rights

Where the GDPR applies, you may have the right to access, rectification, erasure, restriction, data portability, and objection to certain processing, and to withdraw consent where processing is consent-based. You may also lodge a complaint with a supervisory authority (in Germany, your local Landesdatenschutzbehörde).

To exercise your rights, contact us at appsplosion.help@gmail.com.

13. Children's data

The Service is not intended for children under 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us.

14. Changes

We may update this policy from time to time. The "Last updated" date above will change when we do. Continued use of the Service after changes constitutes acceptance where permitted by law.