← Back to Focal

Privacy Policy

Last updated: January 2026

1. Introduction

Focal ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our financial analytics platform, in compliance with the General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG), and other applicable data protection laws.

2. Data Controller

Anton Berndt is the data controller for the personal data we collect.
Contact:
Anton Berndt
Weisestr. 37, 12049 Berlin, Germany
Email: hello@focal-forecast.com

3. Data We Collect

We collect the following categories of personal data:

  • Account Information: Name, email address, company name, and password.
  • Financial Data: Bank statements, revenue data, and financial metrics you choose to connect or input.
  • Usage Data: Information about how you use our platform, features accessed, and session duration.
  • Technical Data: IP address, browser type, device information, and standard server log files (referrer URL, timestamp).
  • Communication Data: Records of correspondence when you contact support or us via email.

4. Legal Basis for Processing

Under GDPR (Art. 6), we process your data based on:

  • Contract Performance (Art. 6 (1) (b) GDPR): To provide our SaaS services as agreed in our Terms.
  • Legitimate Interests (Art. 6 (1) (f) GDPR): To improve our platform, ensure security, and analyze usage to optimize our product.
  • Legal Obligation (Art. 6 (1) (c) GDPR): To comply with applicable tax and commercial laws.
  • Consent (Art. 6 (1) (a) GDPR): For marketing communications (newsletter) or optional features where explicit consent is requested.

5. How We Use Your Data

  • Provide and maintain our financial analytics services.
  • Generate financial reports, forecasts, and insights based on your inputs.
  • Process your financial data securely.
  • Send service-related notifications (e.g., password resets, updates).
  • Respond to your inquiries and provide customer support.
  • Detect and prevent fraud and security issues.

6. Your Rights Under GDPR

As a user in the EU, you have the following rights:

  • Right of Access: Request a copy of your personal data.
  • Right to Rectification: Request correction of inaccurate data.
  • Right to Erasure: Request deletion of your data ("right to be forgotten"), provided no legal retention obligations exist.
  • Right to Restriction: Request limitation of data processing.
  • Right to Data Portability: Receive your data in a structured, machine-readable format.
  • Right to Object: Object to processing based on legitimate interests.
  • Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent.

To exercise these rights, please contact us at hello@focal-forecast.com.

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements.

Financial data associated with your account is retained for the duration of your active account. Upon account deletion, we will delete your data within 30 days, unless a longer retention period is required by law (e.g., for tax purposes).

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including encryption at rest and in transit (SSL/HTTPS), access controls, and regular security reviews. However, please be aware that no method of transmission over the Internet is 100% secure.

9. Third-Party Services

We may use trusted third-party service providers to assist in operating our platform. These providers act as data processors and are bound by Data Processing Agreements (DPA) to ensure the security of your data. Examples include:

  • Hosting: Vercel (cloud hosting).
  • Authentication: Secure user authentication services.
  • Analytics: Aggregated, anonymous usage analytics to improve our product.

10. Cookies

We use essential cookies to enable platform functionality (e.g., keeping you logged in). We may also use analytics cookies to understand usage patterns. You can manage your cookie preferences through your browser settings.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via the email address associated with your account or through a notice on our platform.