Privacy Policy

The controller for data processing on this website is: Less Annoying CRM GmbH, Less Annoying Software, LLC 1017 Olive St. 300 St. Louis, MO 63101, Email: contact@lessannoying-crm.com, Phone: N/A.

If you have any questions about our privacy practices, you can contact our privacy officer at support@lessannoying-crm.com.

When you visit our website, your browser automatically transmits information such as: browser type and version, operating system, referring URL, hostname of the accessing device, time of server request, and IP address.

These data are stored temporarily in server log files and are automatically deleted after 30 days. The legal basis for this processing is our legitimate interest in operating and securing the website.

When you register for an account, we collect: name, email address, optional company information, and payment details. The legal basis for this is the performance of a contract (your account usage).

We use your data for the following purposes: providing and improving our services, processing payments, sending service notifications (such as password reset or account alerts), sending product updates (only with your explicit consent), analyzing usage patterns to optimize the platform, and fulfilling legal obligations.

We do not sell your personal data to third parties.

Less Annoying CRM uses cookies and similar technologies. Details are provided in our Cookie Policy at /cookies.

We only use non‑essential cookies with your prior consent. You can adjust or withdraw your consent at any time via the cookie banner.

We use privacy‑friendly analytics tools such as Plausible Analytics (no cookies by default) and, optionally, Google Analytics when explicit consent is given and IP anonymization is enabled.

We disclose your data only when: it is necessary for contract performance (e.g., payment processors), you have given explicit consent, there is a legal obligation, or it is necessary to protect legitimate interests.

Our processors include: Stripe (payments), Amazon Web Services (hosting), Hetzner (backup servers), all based in the EU or under appropriate safeguards for data transfers.

We have written data processing agreements (DPA) with all processors, in line with applicable privacy laws.

You have the right to: access your data, correct inaccurate data, request deletion of your data, restrict processing, receive your data in a structured format (data portability), and object to certain types of processing.

To exercise these rights, you can send an email to support@lessannoying-crm.com or use the data management tools in your Less Annoying CRM account.

You also have the right to lodge a complaint with a supervisory authority if you believe your rights have been violated.

We implement strong technical and organizational measures, including: TLS 1.3 encryption for data in transit and AES‑256 encryption at rest, regular security audits and penetration tests, role‑based access control with the principle of least privilege, and daily encrypted backups with geographic redundancy.

Our infrastructure runs in ISO 27001‑certified data centres within the European Union.

We retain your data only as long as necessary for the purposes for which it was collected or as required by law.

After you delete your account, all personal data will be deleted within 30 days, unless longer retention is required by law (e.g., tax‑related retention of 10 years).

We may update this privacy policy from time to time. The most current version will always be available on this page. For material changes, we will notify you by email or via notices in the product.