Privacy Policy

The controller responsible for data processing on this platform is:

DayLift Systems LLC, 4030 Wake Forest Rd Ste 349, Raleigh, NC 27609, USA

Email: support@mail-daylift.io

DayLift Academy (“we”, “us”) operates a learning service for tax and finance professionals and other audiences, consisting of a free daily audio “Signal” and a paid Academy. The service is offered in English and German.

• Account data: email address, optionally your name, and your role/function.

• Profile and usage data: chosen focus (e.g. tax & finance or general), language, subscription status (free/Pro), and learning progress (saved answers to the daily question, streaks, episodes heard, course and lesson progress).

• Waitlist data: email address, requested focus and language when you sign up for a focus that is not yet available.

• Payment data: when you take out a paid subscription or make a one-time purchase, payments are handled by our processor Stripe. We do not store full card/payment details.

• Technical data: IP address, date and time of access, browser and device information, and server log data generated automatically during operation.

• Providing the account, the daily Signal and the Academy, and handling subscriptions and purchases — Art. 6(1)(b) GDPR (contract / pre-contractual steps).

• Passwordless sign-in via magic link: we send a one-time sign-in link to your email address — Art. 6(1)(b) GDPR.

• Waitlist sign-up and related product notifications — Art. 6(1)(a) GDPR (consent), which you may withdraw at any time.

• Security, stability and abuse prevention, and improving the service — Art. 6(1)(f) GDPR (legitimate interest).

• Meeting statutory retention and accounting obligations for payment and invoice data — Art. 6(1)(c) GDPR.

We use only strictly necessary cookies / local storage. We do not use advertising or tracking cookies, and we do not build profiles for advertising purposes.

• dl_jwt — stores your sign-in session (login token) so you stay logged in. Required for operation.

• dl_lang — stores your language choice (English/German).

As these are necessary cookies, no separate consent is required for them.

To provide the service we use carefully selected providers that process data on our behalf:

• Xano (backend and database hosting) — storage of account, usage and waitlist data.

• Stripe (payment processing) — processing of payments and related data.

• Email delivery provider — delivery of magic-link and service emails.

• Cloud storage / CDN (Google Cloud Storage) — delivery of the audio files.

We do not pass your data to third parties for their own purposes.

This site loads fonts via Google Fonts (Google LLC). In doing so, your IP address is transmitted to Google so the font files can be delivered to your browser. The legal basis is our legitimate interest in a consistent, appealing presentation (Art. 6(1)(f) GDPR).

The content of our Signal and Academy is created with the help of artificial intelligence (including for text and speech) and subsequently reviewed by humans. There is no automated decision-making producing legal effects concerning you within the meaning of Art. 22 GDPR. Your personal data is not used to train third-party AI models.

DayLift Systems LLC is based in the USA, and several of the providers above process data in the USA. This involves a transfer to a third country outside the EU/EEA. Where no adequacy decision recognises an adequate level of protection, we rely on appropriate safeguards, in particular the EU Commission’s Standard Contractual Clauses or certification under the EU-US Data Privacy Framework.

We retain personal data only as long as necessary for the stated purposes. Account data is stored for the duration of your account and removed after deletion, unless statutory retention obligations apply. Invoice and payment data is subject to statutory retention periods (in Germany up to 10 years).

Under the GDPR you have the right to access (Art. 15), rectification (Art. 16), erasure (Art. 17), restriction of processing (Art. 18), data portability (Art. 20), and to object to processing (Art. 21).

You may withdraw any consent at any time with effect for the future.

To exercise your rights, an email to support@mail-daylift.io is sufficient.

You also have the right to lodge a complaint with a data protection supervisory authority.

Using the account and paid offerings requires certain data (in particular your email address, and payment data for purchases). Without this data we cannot provide the respective service.

Our service is aimed at working adults and not at children. Persons under 16 should not transmit personal data without the consent of a parent or guardian.

We update this Privacy Policy when our service or the legal situation changes. The version published on this page applies.

For privacy questions, reach us at support@mail-daylift.io.