Privacy Notice for analyzer.beyondXC.cloud

This privacy notice explains how personal data is processed when you use analyzer.beyondXC.cloud. The service is part of the beyondXC environment and provides browser-based IGC analysis, map views and optional upload notifications. The applicable legal basis is in particular the GDPR, the Austrian DSG and section 165 TKG 2021.

1. Controller and Contact

Markus Schüssler
Sonnleitenweg 18, 8062 Kumberg, Austria
Email: m.schuessler@airspace.at
Phone: +43 699 17998641

2. Purposes and Legal Bases

  • Providing the website, security functions, sessions, CSRF protection and stable delivery of the analyzer (Art. 6(1)(b) and (f) GDPR).
  • Processing uploaded IGC files and generating technical flight, altitude, airspace and map analyses (Art. 6(1)(b) GDPR).
  • Sending an optional result link by email when you actively provide an email address during upload (Art. 6(1)(a) GDPR).
  • Operating optional shared account features when you access the analyzer while logged in with a beyondXC account (Art. 6(1)(b) GDPR).
  • Error analysis, abuse prevention, operational logging and system protection (Art. 6(1)(f) GDPR).
  • Reach measurement with a privacy-friendly Matomo setup without tracking cookies (Art. 6(1)(f) GDPR).

3. Categories of Personal Data

  • Upload and analysis data: uploaded IGC files, derived analysis values, hash/token references, timestamps and requested result views.
  • Optional contact data: email address if you request delivery of the analysis link by email.
  • Shared account/session data: login state, session identifiers, preferred basemap and other account-bound settings when you access the analyzer as an authenticated beyondXC user.
  • Technical usage data: IP address, device/browser data, referrer, server logs, error logs and security events.
  • Preference data stored locally: dark mode, dashboard view mode, selected basemap, panel collapse states, altitude filter settings and cookie-hint acknowledgement.

4. Data Sources

Data comes directly from you, from your browser usage, from optional uploads and from the shared beyondXC login context if you use the analyzer while authenticated. Depending on the features you open, map and weather references may additionally be requested from external providers.

5. Recipients and Processors

  • Hosting and infrastructure providers for web servers, storage, backups and technical operation.
  • Self-hosted Matomo on am-vs2.airspace.at for aggregate reach measurement without tracking cookies.
  • Weather or analysis providers such as Meteostat or Meteoblue, where required for the analysis you open.
  • Map and tile providers such as basemap.at, OpenStreetMap, Esri, Thunderforest or Google when you actively use the related map views.
  • PayPal only if you voluntarily click and use the donation function shown in the footer.

Data is otherwise disclosed only where legally required, for legitimate legal defence, or because you explicitly trigger a related function.

6. Third-Country Transfers

Depending on the map, weather or payment features you use, personal data may be processed outside the EU/EEA. This may in particular affect Google services. For Switzerland and the United Kingdom, adequacy decisions exist. Otherwise, transfers occur only if required for the requested function or if the provider uses suitable safeguards.

7. Cookies and Local Storage

analyzer.beyondXC.cloud uses technically necessary cookies and local storage only insofar as needed to provide the functions you actively request. This includes session and security cookies, the optional remembered email address, dark-mode and dashboard preferences, basemap choice, UI collapse states, altitude filter values and the storage of whether a notice banner was dismissed.

Matomo is configured without tracking cookies, respects the browser’s “Do Not Track” setting and does not submit URL query parameters or fragments to the analytics endpoint.

8. Retention Periods

  • Uploaded analysis data is stored for as long as needed for the requested analysis, support, security and operational purposes.
  • Optional upload-notification data is stored for the delivery process and evidence of the chosen action.
  • Security and server logs are stored only for as long as required for operational stability, abuse prevention and traceability.
  • Locally stored browser preferences remain on your device until you delete them or your browser clears them.
  • Backups are overwritten on a rolling basis once they are no longer needed for recovery or security purposes.

9. Obligation to Provide Data

Providing IGC data is necessary if you want to use the analyzer. Providing an email address is voluntary and only required if you explicitly want the result link sent by email.

10. Security Measures

We apply appropriate technical and organisational measures, including TLS/HTTPS, separated environments, access controls, logging, updates and backups. Absolute security of electronic communication cannot be guaranteed.

11. Your Rights

Subject to the statutory conditions, you have rights of access, rectification, erasure, restriction, portability, objection to processing based on legitimate interests, and withdrawal of consent with future effect. Please contact m.schuessler@airspace.at.

12. No Automated Decision-Making

No solely automated decision-making, including profiling under Art. 22 GDPR, takes place on analyzer.beyondXC.cloud.

13. Right to Complain

You may lodge a complaint with the Austrian Data Protection Authority: Barichgasse 40-42, 1030 Vienna, www.dsb.gv.at.

14. Updates

This privacy notice is updated whenever functions, data flows or legal requirements materially change. The version published on this page is authoritative.

Status: April 2026

require $sponsorBannerTemplate; require $navigationFooterTemplate; require $footerTemplate;