Daneshbase

Daneshbase is a product of TechSnap e.U. This policy describes how we collect, process, and protect your personal data when you use the service.

1. Data Controller

The data controller responsible for processing your personal data is:

TechSnap e.U.
Seyed Mohammad Naghavi, BSc
Stranzenberggasse 16/8
1130 Wien, Austria

Email: office@techsnap.eu

2. Data We Collect

Account data. Email address, display name (from your OAuth provider when you sign in with Google), preferred language, preferred timezone, authentication tokens.

Wiki content. Everything you hand into your knowledge base — text notes, prompts, images, PDFs — both as the raw input ("raw sources") and as the AI-authored wiki documents derived from them. The base is yours; we process it only to provide the service.

Reminders and tasks. Markdown checkboxes you author in your wiki are scraped server-side into a task index so the reminder cron can deliver web-push notifications when something is due.

Push subscriptions. When you enable reminders, your browser's push-service endpoint and keys are stored so we can deliver notifications.

Authorized AI clients. OAuth registrations of MCP clients (Claude Desktop, Cursor, Claude Code, etc.) you have connected to your base, including the client name and the granted scopes.

Usage and operational data. Audit log of changesets (which raw source caused which document edit), credit-usage counters (number of built-in chats, voice transcriptions, searches), and standard server logs.

3. Purposes and Legal Basis

Contract performance (Art. 6(1)(b) GDPR). Operating the service — storing your wiki, running search, running the AI agent that maintains your documents, delivering reminders.

Consent (Art. 6(1)(a) GDPR). Web push notifications (opt-in via the browser permission). Voice transcription (only runs when you record audio). The Crisp customer-support chatbox (only activates if you accept the cookie banner).

Legitimate interest (Art. 6(1)(f) GDPR). Preventing abuse, debugging incidents, improving the service.

4. Third-Party Processors

We use the following service providers to operate Daneshbase. All are bound by appropriate data-processing agreements.

ProviderRoleCountry
Cloudflare, Inc.Hosting (Workers), database (D1), object storage (R2), embeddings (Vectorize), AI inference (Workers AI), image transformation, edge cacheUSA / EU edge
ResendTransactional email delivery (sign-in OTP codes)USA
Google LLCOAuth provider — optional sign-in via Google account; we receive only the email address and display nameUSA
Crisp IM SARLCustomer-support chatbox; session cookie only set after you accept the cookie bannerFrance

US-based processors operate under Standard Contractual Clauses (SCCs) or equivalent safeguards. Cloudflare's data-processing addendum applies to all data we store with them.

5. Data Storage Location

Your wiki content (D1 database, R2 object storage, Vectorize embeddings) is hosted on Cloudflare's EU region. Edge caches may temporarily hold rendered pages at the location closest to the visitor. AI inference (Workers AI) is performed on Cloudflare's network; we use only the providers and models that match our data-processing posture.

6. AI Processing

Daneshbase is an "AI-maintained" wiki: an agent reads your raw sources and rewrites your wiki documents based on them. This processing happens inside our Cloudflare environment (Workers AI). We do not send your content to third-party AI APIs unless you explicitly connect one through MCP — and in that case, your own credentials govern that flow; we are not party to it.

No automated decision-making with legal or similarly significant effects (Art. 22 GDPR) is performed on your data. Document edits are reversible from the review queue.

7. Data Retention

Your data is retained for as long as your account is active. When you delete your account:

  • All wiki documents, raw sources, assets, tasks, and reminders are permanently deleted from D1 and R2 within 30 days.
  • Authorized AI client registrations and push subscriptions are revoked immediately.
  • Server logs containing your IP address may be retained for up to 30 days for security purposes.

8. Your Rights

Under the GDPR, you have the following rights regarding your personal data:

  • Right of access — request a copy of your personal data
  • Right to rectification — correct inaccurate personal data
  • Right to erasure — delete your account and all associated data
  • Right to data portability — receive your data in a structured format (every wiki document is plain markdown; every asset is a standard image or PDF)
  • Right to object — object to processing based on legitimate interests
  • Right to lodge a complaint — contact the Austrian Data Protection Authority (Datenschutzbehörde)

To exercise your rights, contact us at office@techsnap.eu.

9. Cookies

Daneshbase uses cookies sparingly:

  • Necessary — an i18n cookie (i18n_redirected) to remember your preferred language; a sealed session cookie to keep you signed in. Both are essential to the service and set without consent.
  • Functional (consent-gated) — Crisp customer-support chatbox sets a session cookie when activated. Only loads after you accept the cookie banner.

You can manage your cookie preferences at any time via the consent banner or your browser settings.

10. Changes to this Policy

We may update this policy when the service changes (new sub-processor, new feature, new legal obligation). Material changes are surfaced in-app on next sign-in.

We use a sealed session cookie to keep you signed in and an i18n cookie to remember your language. Our customer-support chat (Crisp) also uses a cookie — if you decline, the chat will not load and you can reach us at hello@daneshbase.com instead.Learn more in our Privacy Policy.