ProductLog

Legal Terms of Service

Terms of Service

Updated 27 May 2026

ProductLog — operated by JJ Online GmbH | Last updated: 27 May 2026 | HRB 235074 B, Amtsgericht Berlin-Charlottenburg

Controlling language. This document is published in English and translated into one or more additional languages for convenience. In case of conflict or ambiguity between language versions, the English version prevails.

Definitions

The following terms have specific meanings throughout this document:

  • "Company", "we", "us", "our" — JJ Online GmbH, the entity that operates the ProductLog platform, incorporated under the laws of Germany, with its registered address at Schönhauser Allee 163, 10435 Berlin, Germany.
  • "ProductLog" — the software platform, website, application, and all associated services operated by the Company under the ProductLog brand.
  • "Service" — all features, tools, functionality, and content made available through ProductLog, including the workspace dashboard, changelog publishing, roadmap and feedback boards, surveys, knowledge base, broadcast email to End-Subscribers, public boards (including on customer custom domains), the per-project content APIs, and customer-enabled outbound integrations.
  • "User", "you", "your" — any individual or legal entity that accesses or uses the Service, whether under a paid Subscription or a free plan; in the role of Workspace Operator (defined below) unless context indicates otherwise.
  • "Workspace Operator" — the natural or legal person identified as the account holder on the ProductLog Subscription; the person operating a ProductLog workspace and authoring or publishing content through it. The Workspace Operator is the User for the purposes of these Terms.
  • "Consumer" — a User who is a natural person acting for purposes outside their trade, business, craft, or profession (§ 13 BGB), or the equivalent definition under the law of the User's country of residence (for example, s.2(3) of the UK Consumer Rights Act 2015 for UK Consumers, or any analogous definition in the User's domestic consumer-protection law).
  • "Business Customer" — a User who accesses the Service in the course of their trade, business, craft, or profession (§ 14 BGB), or the equivalent definition under the law of the User's country of residence.
  • "End-Subscriber" — a person who subscribes to a Workspace Operator's public changelog board to receive email notifications when entries are published.
  • "End-Feedback-User" — a person who posts, votes, comments, or reacts on a Workspace Operator's public roadmap or feedback board.
  • "Workspace Content" — any content the Workspace Operator submits, publishes, or stores in the Service, including changelog entries, roadmap and feedback posts, survey questions, knowledge-base articles, brand assets, sanitised custom CSS, custom-domain configuration, and integration configurations.
  • "Account" — the registered profile and associated data created by a Workspace Operator to access the Service.
  • "Subscription" — a paid plan that grants access to the Service on a recurring billing basis.
  • "Content" — any information, text, data, configuration, or material submitted to the Service by a User or an End-Subscriber / End-Feedback-User; Workspace Content is a subset of Content.
  • "Usage Data" — data collected automatically about how the Service is accessed and used, including technical diagnostics, session data, and interaction logs.
  • "Personal Data", "Controller", "Processor", "Sub-processor", "Data Subject" — bear the meanings given in Art. 4 GDPR.

1. Who we are and what these Terms cover

ProductLog is operated by JJ Online GmbH, a company incorporated under the laws of Germany, with its registered address at Schönhauser Allee 163, 10435 Berlin, Germany. Full provider identification as required by § 5 DDG is set out in our Imprint (English) / Impressum (German).

These Terms of Service ("Terms") govern all access to and use of the ProductLog platform and Service. By creating an Account, selecting a Subscription plan, or using any part of the Service, you acknowledge that you have read, understood, and agree to be bound by these Terms in their entirety.

If you are acting on behalf of a company or other legal entity, you represent and warrant that you have full authority to bind that entity to these Terms. In that case, references to "you" throughout these Terms mean both you individually and the entity you represent.

These Terms apply to all Users, regardless of plan or location, subject to the jurisdiction-specific provisions in § 27.

Controlling language. This document is published in English and translated into one or more additional languages for convenience. In case of conflict or ambiguity between language versions, the English version prevails.

2. Three-audience model and our role as a hosting platform

ProductLog touches three audiences with different contractual and data-protection relationships to JJ Online GmbH:

Audience Relationship to JJ Online GmbH Role under Art. 4 GDPR
Workspace Operator (paying account holder) Direct contract under these Terms JJ Online GmbH is Controller of the Operator's own Account data
End-Subscriber (a person who subscribed to your changelog board to receive email notifications) No direct contract with JJ Online GmbH You are Controller; JJ Online GmbH is Processor under our DPA
End-Feedback-User (a person who posts, votes, comments, or reacts on your public roadmap or feedback board) No direct contract with JJ Online GmbH You are Controller; JJ Online GmbH is Processor under our DPA

These Terms govern the Workspace Operator's contract with JJ Online GmbH. The Workspace Operator is responsible for its own terms vis-à-vis its End-Subscribers and End-Feedback-Users; the DPA governs the Processor relationship for those audiences.

ProductLog is a hosting platform, not the publisher of Workspace Content. We host, render, and transmit the changelog entries, roadmap items, feedback posts, survey responses, comments, reactions, and votes that you and your end-users publish through the Service. We are not the author or publisher of that content; we host it on your instruction. The accuracy, lawfulness, and timeliness of any Workspace Content published through the Service is wholly determined by you and the end-users whose contributions you choose to accept. We make no representation that the Service will detect every event of operational, legal, or reputational concern affecting your Workspace Content, and the absence of any such detection does not constitute evidence that no such event occurred.

3. Eligibility

To use the Service, you must:

  • Be at least 18 years old (or the age of legal majority in your jurisdiction, if higher)
  • Be legally capable of entering into binding contracts under the laws of your jurisdiction
  • Not be located in a country or territory subject to a trade embargo or sanctions designation that would prohibit you from using the Service
  • Not have had a prior Account permanently terminated by us for a breach of these Terms

If you are registering on behalf of an organisation, you additionally warrant that you have the authority to bind that organisation to these Terms and that the organisation meets these eligibility requirements.

We reserve the right to verify eligibility at any time and to decline or revoke access where eligibility requirements are not met.

Not directed to children. The Service is not directed to, nor intended for, children under the age of 16. We do not knowingly collect Personal Data from children under 16, whether of Workspace Operators or of End-Subscribers / End-Feedback-Users participating in your public boards. If you are a parent or legal guardian and become aware that a child under 16 has provided Personal Data through the Service, please contact us at [email protected] and we will delete the data and the associated entry or Account without undue delay. Workspace Operators are also responsible for not directing their public boards at children under 16 (see § 8 — Limits on Use).

4. Account registration and security

Registration. To access the Service you must create an Account by providing accurate, current, and complete registration information. You agree to keep this information up to date throughout your use of the Service.

Security. You are responsible for choosing a strong, unique password for your Account and for maintaining its confidentiality. You must not share your login credentials with any third party or permit others to access the Service using your Account. You accept full responsibility for all activity that occurs under your Account, whether or not that activity was authorised by you.

Breach notification. If you become aware of any actual or suspected unauthorised access to your Account or any security breach affecting your credentials, you must notify us immediately at [email protected].

Account accuracy. We reserve the right to suspend or terminate Accounts where registration information is found to be false, misleading, or significantly incomplete, or where we have reasonable grounds to believe the Account is being operated in breach of these Terms.

One workspace per organisation. Each organisation should maintain a single workspace under a single primary Account; additional team members are added as Users within that workspace under the role-based access model (Owner / Admin / Editor / Viewer). You must not create or maintain multiple Accounts where the purpose or effect is to circumvent Free-plan limits, evade payment obligations, or evade enforcement of these Terms. Subject to that, an agency operating ProductLog on behalf of separate client organisations is welcome to register separate Accounts for separate clients; the restriction is on misuse of multi-Account creation, not on the count as such.

5. Description of the Service

ProductLog provides a multi-product workspace for software teams to publish, communicate, and gather feedback on their products. Core capabilities include:

  • Changelog publishing — rich-text editor with versioned entries, Draft / Scheduled / Published states, SEO fields, cover images, labels, and engagement metrics
  • Roadmap and feedback boards — public boards where End-Feedback-Users can post, vote, react, and comment; multiple statuses (Pending / Open / Under Review / Planned / In Progress / Shipped / Closed); prioritisation frameworks (RICE, MoSCoW); merge / deduplicate; staff-only internal comments
  • Surveys — public-facing surveys for collecting structured feedback from End-Feedback-Users
  • Knowledge base — self-service documentation rendered under productlog.dev/kb/… and under custom domains
  • Broadcast email — when you publish a changelog entry, your End-Subscribers receive notification emails (double-opt-in subscription; one-click unsubscribe; open / click tracking under your legitimate interest as Controller)
  • Public boards on custom domains — you can publish your boards under your own domain (for example, changelog.theircompany.com) with DNS-TXT verification, with branding (color, logos, sanitised custom CSS)
  • Per-project content APIs — CSV / JSON export of changelog entries, subscriber lists, and survey responses on eligible Subscription plans
  • Customer-enabled outbound integrations — Slack, Jira, Linear, and generic outbound webhooks, on Pro and Business plans

The features available to you at any given time are determined by the Subscription plan you have selected. A full description of plan features and limits is available on the pricing page. We reserve the right to modify, add, withdraw, or limit features at any time, subject to the notice requirements in § 24.

Out of scope. ProductLog is deliberately not a project-management product, an issue tracker, an APM / uptime / monitoring product, a customer-support or helpdesk product, an A/B-testing or feature-flagging product, or an embedded analytics dashboard. Specifically, the Service does not currently provide: AI-translated public-board content (this is documented in the product vision but is not yet built); a customer-side cookie-consent management platform (you are responsible for the consent and Art. 13 GDPR disclosures on your public-board surfaces — see § 18 and our DPA); audit logging of operator actions; or self-service aggregated GDPR data export (handled manually on request via [email protected] — see our Privacy Policy).

6. Your responsibility for the accuracy of information you provide

The accuracy and usefulness of any Workspace Content is wholly dependent on what you submit, publish, and configure: the changelog entries you write, the roadmap items you create, the survey questions you author, the subscriber lists you build, the brand and custom-domain configuration you submit, the integration credentials you connect, and the moderation decisions you make on incoming end-user feedback. We cannot audit, verify, or validate the configuration you submit or the content you publish.

You are solely and exclusively responsible for:

  • Ensuring that all Workspace Content is accurate, lawful, and within your right to publish — in particular, that you hold the necessary rights to the text, images, logos, branding, and custom CSS you upload, and that the content does not infringe third-party intellectual-property rights, defame any person, or violate applicable law in any jurisdiction where the Service is reasonably likely to be accessed
  • Confirming that you have the right to host the End-Subscribers and End-Feedback-Users who appear on your public boards — in particular, obtaining and being able to demonstrate the double-opt-in consent your End-Subscribers gave, and respecting any unsubscribe or erasure request immediately
  • Moderating End-Feedback-User comments, posts, votes, and reactions against your own community guidelines and applicable law; removing contributions that violate those guidelines or that contain content you are not entitled to host
  • Configuring outbound integration credentials (Slack webhook URLs, Jira and Linear API tokens, generic outbound webhook secrets) with the data-minimisation principle in mind — only the credentials necessary, with regular rotation
  • Avoiding PII in places where it should not appear. Where you publish Workspace Content to a public board, configure a survey question, or configure an outbound webhook payload, please avoid including Personal Data of End-Feedback-Users or third parties beyond what the underlying flow strictly requires. The Service exposes public boards to the open internet; content you publish there is by design world-readable

We make no representation and give no warranty that the Service is sufficient to detect every event of operational, legal, or reputational concern affecting your Workspace Content, and the absence of such detection does not constitute evidence that no such event occurred.

7. Public boards on custom domains

Where you publish a public board (changelog, roadmap, feedback, surveys, or knowledge base) under a custom domain you control (for example, changelog.theircompany.com), the following allocation of responsibility applies:

  • You are responsible for ownership and DNS control of the domain, for any third-party rights affecting the use of the domain or the content you publish there, and for the consent / Art. 13 GDPR disclosures applicable to visitors of that surface (in particular under § 25 Abs. 1 TDDDG and Art. 5 (3) of Directive 2002/58/EC — see § 18.2 below)
  • We are responsible for rendering the board, transmitting it over TLS, processing it under your documented Art. 28 GDPR instructions, and complying with our DSA obligations as hosting service (see § 11.1 below)

You acknowledge that the HelpCanvas chat widget (a JJ Online GmbH product — same controller as ProductLog) is currently loaded on every ProductLog-rendered page, including public boards on your custom domain. Because HelpCanvas is operated by the same controller (JJ Online GmbH), it is not a third-party Sub-processor — but the data flow exists and must be disclosed by you in the Art. 13 information you present to visitors of your public boards. See DPA Annex C and the Privacy Policy § 5.3 for the relevant facts you may copy into your own visitor-facing notice.

8. Limits on use

You may use the Service only for lawful purposes and in accordance with these Terms. You must not:

  • Use ProductLog to publish or host Workspace Content that infringes third-party intellectual-property rights, defames, harasses, or threatens any person, or violates applicable law in any jurisdiction where the Service is reasonably likely to be accessed
  • Use ProductLog to host adult or sexually-explicit content, content that promotes hatred or violence against a protected group, content designed for or directed at children under the age of 16, or content listed as manifestly illegal under Art. 16 (3) DSA on a notice substantiated under § 11.1 below
  • Use ProductLog to publish content designed to mislead End-Feedback-Users about the operational status of a third-party product or service for commercial gain
  • Manipulate vote, reaction, comment, subscription, or survey-response counts on your own or anyone else's public boards (we use a server-side IP + User-Agent fingerprint hash to enforce one-vote-per-visitor; circumvention of this control is prohibited)
  • Use the Service to send unsolicited bulk email; broadcast email is reserved for End-Subscribers who completed double opt-in to your changelog notifications, and may not be used for general marketing, cold outreach, or non-Subscriber audiences
  • Configure outbound integrations or webhooks in a way that constitutes a denial-of-service load against the destination endpoint, or in a way designed to circumvent rate limits or anti-abuse controls at the destination
  • Resell, sublicence, white-label, or otherwise commercially exploit access to the Service or its outputs beyond the scope of the white-label / custom-domain features permitted by your Subscription plan

We reserve the right to investigate any Workspace Content under your Account, to suspend specific projects or boards that appear to violate this section pending investigation, and to terminate Accounts that demonstrate a pattern of such violations, in line with § 22 (Account Suspension and Termination).

9. Beta features and previews

From time to time, we may make features, tools, or functionality available in "beta", "preview", "early access", or "experimental" form. These features are provided for evaluation purposes and are offered strictly on an as-is basis, without any representations as to fitness for purpose, reliability, accuracy, or readiness for production use.

Beta features may be changed, suspended, or permanently removed at any time without notice. We will not be liable for any loss or damage resulting from your reliance on beta functionality. Your use of any beta feature constitutes acceptance of these additional conditions.

Nothing in this § 9 excludes or limits: (a) the statutory rights of Consumers under §§ 327a ff. BGB (digital-services conformity), (b) the liability carve-outs listed in § 19 (Disclaimer of Warranties), or (c) the liability carve-outs in § 20.2 (No limitation for the following). Where this § 9 conflicts with any of the foregoing, those provisions prevail.

10. Acceptable use

You may use the Service only for lawful purposes and in accordance with these Terms. Without limitation, you agree not to:

With respect to the Service itself:

  • Circumvent, disable, exploit, or otherwise interfere with any security, authentication, or access-control feature of the Service
  • Attempt to probe, scan, or test the vulnerability of the Service or any related system or network without prior written authorisation from us
  • Use automated scripts, bots, crawlers, or scrapers to extract data from the Service without our written consent, except for use of the documented per-project content APIs within the limits and authentication of those APIs
  • Reverse-engineer, decompile, disassemble, or attempt to derive the source code, algorithms, or trade secrets underlying the Service
  • Submit Workspace Content (including custom CSS or rich-text editor content) that contains malware, viruses, Trojan horses, cross-site-scripting payloads, or any other harmful or disruptive code
  • Use the Service in a manner that places an unreasonable or disproportionate load on our infrastructure (excessive project or board counts beyond plan limits, abusive API call patterns, abusive broadcast volumes)

With respect to End-Subscribers and End-Feedback-Users:

  • Add an End-Subscriber to your changelog notifications without their double-opt-in consent, or fail to honour an unsubscribe or erasure request from one of your End-Subscribers
  • Surface or transmit Personal Data of End-Feedback-Users beyond what their post or comment makes public — in particular, do not use the integration or webhook pipeline to send End-Feedback-User Personal Data to a destination they have not consented to or been informed of under your Art. 13 GDPR notice

General conduct:

  • Impersonate any person or entity, or falsely represent your affiliation with any person or entity
  • Harass, threaten, or abuse any member of our team or other users
  • Violate any applicable law, regulation, or third-party right

We reserve the right to investigate suspected violations and to suspend or terminate access without notice where a violation is confirmed or reasonably suspected.

Coordinated-disclosure safe harbour for security researchers. The prohibition on probing, scanning, or testing the vulnerability of the Service without prior written authorisation does not apply to good-faith security research that follows the coordinated-disclosure rules below. If you believe you have identified a security vulnerability in the Service, please report it to [email protected] with the subject line "Security Disclosure". Good-faith research is research that, in addition to the report above: (a) does not access, modify, exfiltrate, or destroy data belonging to any User or end-user other than test data you control on accounts you own; (b) does not degrade the Service for other Users (no denial-of-service, no high-volume fuzzing of production endpoints, no exhaustion of rate limits beyond what is needed to demonstrate the issue); (c) does not pivot from the initial finding into unrelated systems or Sub-processors; (d) does not publicly disclose the vulnerability before we have had a reasonable opportunity to remediate (we aim to acknowledge reports within 5 business days and to agree a coordinated-disclosure timeline with you). Where you act in good faith and within these rules, we will not pursue legal action under § 202a / § 202c StGB, the Computer Misuse Act 1990 (UK), the Computer Fraud and Abuse Act (US), or analogous foreign laws, and we will not invoke this § 10 against you. Activity that falls outside the rules above (in particular, exfiltrating real User data, demanding payment as a precondition to disclosure, or selling the finding to a third party) is not good-faith research and remains a violation of these Terms.

11. Intellectual property and notices of illegal content

Our intellectual property. The ProductLog platform — including its software, source code, algorithms, public-board templates, dashboard UI, knowledge-base templates, marketing copy, branding, trade marks, and all documentation — is owned by or licensed to the Company and is protected by intellectual property laws worldwide. These Terms do not transfer any ownership of our intellectual property to you. Any rights not expressly granted in these Terms are reserved.

Your intellectual property and Workspace Content. You retain ownership of all Workspace Content you submit to the Service. By submitting Workspace Content to the Service, you grant us a non-exclusive, worldwide, royalty-free licence to process, store, render, transmit, and (where you have configured it) display that Workspace Content solely to the extent necessary to provide the Service to you. This licence extends to the public-facing rendering of your Workspace Content on your public boards (including under your custom domain), to the broadcast-email transmission of your changelog entries to your End-Subscribers, and to the relaying of integration payloads to the destinations you have connected (Slack / Jira / Linear / outbound webhooks).

Licence to use the Service. Subject to your compliance with these Terms and timely payment of applicable fees, we grant you a limited, non-exclusive, non-transferable licence (revocable only in accordance with § 22 — Account Suspension and Termination) to access and use the Service for your own lawful internal business purposes — or, on Business and white-label plans, for the lawful purposes of your end clients within the scope of those plans. This licence does not extend to resale, sublicensing, redistribution, or public display of the Service beyond what your plan explicitly permits.

Feedback and suggestions.

For Business Customers: if you submit feedback, ideas, suggestions, or feature requests to us (including via our own public roadmap board), you grant the Company a perpetual, irrevocable, worldwide, royalty-free licence to use, implement, adapt, and commercialise that feedback without any obligation to compensate you or maintain its confidentiality.

For Consumers: if you submit feedback, ideas, suggestions, or feature requests to us, you grant the Company a non-exclusive, royalty-free licence to use such feedback to improve and develop the Service. This licence is limited to the purposes of operating, maintaining, and improving the Service; we will not separately commercialise your individual feedback as a stand-alone product. We make no claim to your moral rights (Urheberpersönlichkeitsrechte) and do not require you to maintain confidentiality. This narrower scope is provided in order to remain compatible with § 307 BGB (Inhaltskontrolle) for consumer terms.

11.1 Notice-and-action under the EU Digital Services Act

Where the Service hosts user-supplied content visible to third parties — in particular Workspace Content published on public changelog, roadmap, and feedback boards, survey responses rendered publicly, knowledge-base articles, custom-domain branding, and the comments / votes / reactions left by End-Feedback-Users — we operate as a hosting service within the meaning of Art. 3 (g) of Regulation (EU) 2022/2065 (the Digital Services Act, "DSA"), and to the extent we disseminate that content publicly we accept that we may also be an online platform within the meaning of Art. 3 (i) DSA. We comply with the obligations applicable to a hosting service of our size below.

Notices of allegedly illegal content (Art. 16 DSA). Any individual or entity may submit a notice that specific content stored or disseminated through the Service is illegal under Union law or the law of a Member State. To facilitate the submission of sufficiently substantiated notices, we provide a dedicated, no-login web form at https://productlog.dev/dsa-notice (linked from the public footer of every marketing page and from the footer of every public board we render). The form is the preferred channel because it captures all elements required by Art. 16 (2) DSA and issues an automatic, time-stamped receipt to the notifier on a durable medium. As an equally-effective alternative you may send the notice by email to [email protected] (or, as a fallback, [email protected]) with the subject line "DSA Notice", and include:

  • a sufficiently substantiated explanation of the reasons why you consider the content in question to be illegal;
  • a clear indication of the exact electronic location (URL) of the content, and where applicable, additional information enabling its identification;
  • your name and email address (except where the notice relates to content reasonably believed to involve offences referred to in Arts. 3 to 7 of Directive 2011/93/EU, in which case anonymous notices are accepted); and
  • a statement confirming your good-faith belief that the information and allegations in the notice are accurate and complete.

Handling. We will send you a confirmation of receipt of your notice without undue delay. We will process notices in a timely, diligent, non-arbitrary, and objective manner. Where a notice contains the elements above, we will consider it to give rise to actual knowledge or awareness for the purposes of Art. 6 DSA in respect of the specific item identified.

Statement of reasons (Art. 17 DSA). Where we restrict the visibility of, remove, disable access to, or take any of the other measures listed in Art. 17 (1) DSA in respect of content provided by one of our users (a "recipient" within the meaning of the DSA), we will provide that user with a clear and specific statement of reasons, including the facts and circumstances relied on, the legal or contractual basis, the territorial scope of the measure, and the redress possibilities available to them. Where the recipient affected by the measure is an End-Feedback-User (and the Workspace Operator is the Controller of that content), we will deliver the statement of reasons to the Workspace Operator alongside the affected end-user where the end-user's contact data is available to us.

Internal complaint handling and out-of-court dispute settlement. Affected users may contest a measure taken against their content by replying in writing to the statement of reasons within six months. We will examine each complaint in a timely, non-discriminatory, diligent, and non-arbitrary manner, and reverse the measure where it was unfounded. Users also have the right to select a certified out-of-court dispute-settlement body in accordance with Art. 21 DSA.

Point of contact for authorities and recipients (Arts. 11 and 12 DSA). Our single electronic point of contact for the authorities of Member States, the Commission, and the Board (Art. 11 DSA), and for recipients of the Service (Art. 12 DSA), is [email protected] (with [email protected] as a fallback). The dedicated notice intake form is reachable at https://productlog.dev/dsa-notice. Communications may be addressed in English or German.

Size. We confirm that we currently fall below the thresholds defined in Art. 33 (1) DSA (Very Large Online Platforms) and are not designated as a VLOP or VLOSE. We also confirm that we qualify as a micro- or small enterprise within the meaning of the Annex to Recommendation 2003/361/EC, and accordingly do not assume the obligations applicable only to online platforms exceeding that threshold (Art. 19 trusted flaggers, Art. 24 transparency reporting, etc.) — except, in any event, the obligations of Arts. 11, 12, 14, 16, and 17 DSA, which apply regardless of size and which we observe as set out above.

Content-moderation transparency (Art. 14 DSA). Our content-moderation activity in respect of user-disseminated content on the Service — principally Workspace Content published on public boards, End-Feedback-User comments and posts, custom-domain branding, and any other text fields a Workspace Operator or End-Feedback-User chooses to publish through the Service — is performed manually upon receipt of a notice under § 11.1 above or upon our own staff identifying obvious violations of these Terms in the course of ordinary platform operations. We do not use automated algorithmic decision-making or AI-based content classifiers to detect, flag, restrict, demote, or remove user-disseminated content. Where we take a moderation measure in respect of your content, we will provide you with the statement of reasons described above. The grounds on which we may restrict content are limited to (i) content that is illegal under Union or Member State law as set out in a substantiated notice under § 11.1; (ii) content that breaches the prohibitions in § 8 (Limits on Use) or § 10 (Acceptable Use); and (iii) where it is not the content but the use that is the issue, conduct that breaches §§ 8 or 10.

11.2 Copyright-specific claims

Copyright claims may be submitted via the DSA Notice form at https://productlog.dev/dsa-notice. If you prefer, you may also send a stand-alone copyright complaint to [email protected] (or [email protected] as a fallback), including: identification of the copyrighted work; identification of the allegedly infringing material with its URL; your contact details; a good-faith statement that the use is unauthorised; and a statement under penalty of perjury that the information is accurate and that you are authorised to act on behalf of the rights-holder. Repeated infringers may have their accounts suspended or terminated under § 22.

12. Third-party services and integrations

The Service integrates with, relies on, or may contain links to third-party platforms, services, and tools, organised by category:

  • Hosting and core infrastructure — for the main application, primary database, and image-upload storage, located within the European Economic Area
  • CDN, DDoS, TLS, and DNS — global edge network in front of the application and customer custom domains
  • Email delivery — for transactional email (account, billing, security, team invitations, password reset, subscriber double-opt-in confirmation) and broadcast email to your End-Subscribers
  • Payment processor — for card and SEPA Subscription billing
  • Invoicing — for GoBD-compliant invoice generation and archiving under § 14 UStG / § 147 AO
  • Bot-defence (self-hosted) — proof-of-work challenge on signup / public-form submissions; runs locally, no data leaves to a third party
  • Customer-enabled outbound integrations — Slack, Jira, Linear, and generic outbound webhooks, which you may connect to your workspace on Pro and Business plans

Named entities, addresses, transfer mechanisms, and DPA status for every Sub-processor used in each of the categories above are set out in our DPA Annex C, which is the single, dated, authoritative source for the Sub-processor list. We deliberately do not duplicate the named list in this § 12 to avoid synchronisation drift between this document and Annex C.

These third parties operate independently and are governed by their own terms of service and privacy policies. We do not control, endorse, or accept responsibility for any third-party service, including its availability, accuracy, privacy practices, or terms. Your use of any third-party service is entirely at your own risk and subject to that service's terms.

Customer-enabled outbound integrations are not Sub-processors of JJ Online GmbH. Where you connect Slack, Jira, Linear, or a generic outbound webhook to your workspace, the chosen provider receives data on your instruction and acts as your Sub-processor (or recipient) under your controller-responsibility — not as a Sub-processor of JJ Online GmbH. You are responsible for your own DPA with the chosen provider and for any Art. 13 GDPR disclosure to your End-Feedback-Users about the destination.

The complete Sub-processor list, with addresses, transfer mechanisms, and DPA status, is set out in our DPA Annex C, which is the authoritative source and is dated. Where we add, remove, or replace a Sub-processor, we will: (i) update DPA Annex C with the change and a new effective date; (ii) email the registered contact on each affected customer Account at least 30 calendar days before the new Sub-processor begins processing Customer Personal Data, per DPA § 9.3; and (iii) honour the change-objection and contract-termination mechanic in § 18.2 below.

13. Subscriptions, billing, and payments

13.1 Subscription plans

The Service is offered under tiered Subscription plans, including a Free plan and one or more paid plans (Starter, Pro, Business). A full description of features, limits, pricing units (number of projects, boards, monthly broadcast volume, included subscribers), and prices applicable to each plan is available on the pricing page. Annual is the default billing term presented on the pricing page; monthly billing is priced at a 20% premium to reflect the higher churn-management overhead of monthly contracts. We reserve the right to amend plan features with at least 30 days' written notice to affected Users.

13.2 Free plan

A Free plan is available with limited features as described on the pricing page. We may modify, restrict, or withdraw the Free plan at any time upon at least 30 days' notice.

13.3 Free trials

Where a free trial is offered, no payment is collected during the trial period. A free trial does not automatically convert into a paid Subscription. At the end of the trial period, if you have not separately placed a paid order, your Account reverts to the Free plan (§ 13.2) automatically — no card is charged, no contract for a paid plan comes into being, and no further action is required from you. To take up a paid plan, you must actively place an order through the Subscription page in the dashboard; that order step is the contractually binding act and is the click to which § 312j Abs. 3 BGB attaches (see § 13.11 below). We send a reminder by email a few days before the trial ends so that you can decide in good time whether to place a paid order or let the trial lapse into the Free plan.

13.4 Billing and payment

By subscribing to a paid plan, you authorise us to charge your nominated payment method on a recurring basis at the applicable Subscription rate. Stripe is our sole payment processor (cards and SEPA). We do not currently accept PayPal or any other payment method. Invoices and credit notes are issued and archived on our behalf by easybill GmbH (Germany) under § 14 UStG and § 147 AO. All charges are due at the start of each billing period. The primary billing currency is Euros (EUR); for non-EU customers, USD is available as a secondary billing currency at checkout, and where USD is selected the USD-equivalent price displayed at checkout is the final amount payable in USD. Conversion between EUR / USD and any other local currency is performed by your bank or card network at their applicable rate.

13.5 Taxes and VAT

For Consumers, all prices are quoted inclusive of applicable VAT (Bruttopreise) in accordance with § 3 PAngV. The total price shown on the pricing page and at checkout is the final amount payable. For Consumers resident in EU Member States other than Germany, the VAT included in the displayed price is the rate applicable in your country of residence, charged and remitted by us under the One-Stop Shop (OSS) regime for cross-border supplies of telecommunications, broadcasting, and electronically supplied services to non-taxable persons within the EU (Art. 369a ff. of Directive 2006/112/EC; §§ 18i bis 18k UStG). The displayed price is the final amount payable in all cases.

For Business Customers, prices are quoted exclusive of VAT (Nettopreise); applicable VAT is added at checkout in accordance with the applicable law of the country of supply. If you are a business established in the European Union and registered for VAT outside Germany, you may provide your valid VAT identification number at checkout, in which case the EU reverse-charge mechanism (Art. 196 VAT Directive 2006/112/EC; § 13b UStG) applies and no German VAT is charged.

Depending on your location, additional taxes such as goods and services tax (GST), sales tax, or similar may be applied at checkout in accordance with applicable law.

13.6 Price changes

We may change Subscription prices at any time. We will give you at least 30 days' advance written notice of any price increase before it takes effect at your next renewal, together with your right to terminate without penalty before the new price applies. Your continued Subscription after the new pricing takes effect constitutes your acceptance of the revised price.

13.7 Plan changes

Upgrading. If you upgrade your plan mid-billing period, the new plan will take effect immediately. We will credit the unused portion of your current period against the charges for your new plan (proration).

Downgrading. If you downgrade your plan, the change will take effect at the end of your current billing period. You will retain access to your current plan features until that date. We do not refund the difference — see Refund Policy.

13.8 Failed payments and Account suspension

If a payment fails, we will notify you and make reasonable retry attempts over a period of up to 7 days. If payment remains outstanding after that period, we may suspend your Account. During suspension, your public boards continue to render but your ability to publish new content, send broadcasts, modify integrations, or access paid features will be restricted. We will not delete your Workspace Content during a payment-related suspension within the 30-day grace period set out in § 22.4.

If payment is not resolved within 30 days of the original failed charge, we reserve the right to downgrade your Account to the Free plan or terminate it in accordance with § 22.

13.9 Cancellation and Kündigungsbutton (§ 312k BGB)

You may cancel your Subscription at any time, by either of the following equally-effective routes:

  • In-app: Dashboard → Settings → Subscription → "Cancel subscription".
  • By email: write to [email protected] from the email address registered on your Account.

Cancellation takes effect at the end of your current billing period. You will retain access to all paid features until that date. We do not issue refunds or credits for the unused portion of any billing period, except where required by applicable consumer protection law or as set out in § 14 and in our Refund Policy.

Annual plans — Consumers (§ 309 Nr. 9 BGB). For Consumers on an annual Subscription, the initial 12-month term runs from the start of the Subscription. Once that initial term has expired, the Subscription continues on a month-to-month basis rather than automatically renewing for a further fixed annual term, and you may terminate at any time with one (1) month's notice to take effect at the end of the then-current monthly continuation period. This continuation mechanic is the standard-form-conformant implementation of § 309 Nr. 9 Buchst. b und c BGB (as amended by the Gesetz für faire Verbraucherverträge, in force 1 March 2022): the initial term does not exceed two years, tacit renewal is not for a further fixed term but on a freely-terminable monthly basis, and the notice period does not exceed one month. The Kündigungsbutton route, the in-app cancellation control, and the [email protected] mailbox are all equally valid ways to give that notice; we do not require any stricter form (see "Form requirement" below).

For consumer contracts concluded online since 1 July 2022, § 312k BGB requires us to provide a Kündigungsbutton (cancellation button) reachable from the public website without requiring login. We provide that button at https://productlog.dev/cancel-contract (German: /de/vertraege-hier-kuendigen, labelled "Verträge hier kündigen" in the footer of every marketing page). The form is reachable from the public footer without login, presents the statutorily required fields, and submits via a button labelled "Jetzt kündigen". On submission, you receive an immediate on-screen acknowledgement with a receipt ID and, in line with § 312k Abs. 2 BGB, a durable confirmation by email to the address you provided.

The in-app cancellation route and the [email protected] mailbox above remain available in parallel as equally-effective routes.

Form requirement. Cancellation under this § 13.9 may be effected in Textform (text form, § 126b BGB) — including via the in-app cancellation control, via the public Kündigungsbutton form, or by plain email to [email protected] — and we do not require, and these Terms do not impose, any stricter form (such as written form / Schriftform with handwritten signature, registered post, fax, telegram, or any other formality more burdensome than Textform). The prohibition in § 309 Nr. 13 BGB on standard-terms clauses that impose a stricter form than Textform on consumer declarations is, accordingly, observed.

13.10 Refunds

Outside of the circumstances described in § 14 (EU right of withdrawal), any goodwill window stated in our Refund Policy, and any mandatory statutory rights in your jurisdiction, Subscription fees are non-refundable. No goodwill refund window beyond the statutory floor — see Refund Policy. If you believe you have been incorrectly charged, please contact us within 60 days of the charge at [email protected].

13.11 Button-Lösung (§ 312j Abs. 3 BGB / Art. 8 (2) Directive 2011/83/EU)

For any paid order placed through the dashboard — initial orders, plan upgrades, plan downgrades, and migrations from a legacy plan to a current plan — the binding order button is labelled "Pay [amount] now" (for example, "Pay €19.00 now"). The explicit "Pay" verb combined with the amount that will be charged on confirmation is an unambiguous formulation of the payment obligation within the meaning of § 312j Abs. 3 BGB and Art. 8 (2) of Directive 2011/83/EU, and within the case law of the Bundesgerichtshof recognising short payment-conveying verbs (e.g. "kaufen") as equivalent to the literal "zahlungspflichtig bestellen" formulation. The modal title separately describes the underlying action ("Order plan" / "Upgrade plan" / "Downgrade plan" / "Switch to [plan name]"). The "Change billing cycle" button (where the underlying plan does not change and no new immediate charge is triggered) is not styled as an order button under § 312j Abs. 3 because it does not, on the facts, create a new immediately-due payment obligation. The same § 312j Abs. 3-equivalent button language is used for all EU and UK consumers, not only German consumers, because the same disclosure standard applies under Directive 2011/83/EU and, in the United Kingdom, under Reg. 14 (3)–(5) of the Consumer Contracts (Information, Cancellation and Additional Charges) Regulations 2013. If you are a Consumer and the order button is found to fall short of § 312j Abs. 3 BGB on the facts of any individual order, that order is not binding on you under § 312j Abs. 4 BGB; the equivalent UK consequence is set out in Reg. 14 (5) of the 2013 Regulations.

13.12 Information on the conclusion of contracts online (§ 312i Abs. 1 BGB / Art. 246c EGBGB)

This § 13.12 satisfies the pre-contractual disclosure duties imposed on us as the trader by § 312i Abs. 1 BGB and Art. 246c EGBGB for any contract concluded through the Service over the dashboard. Unlike the consumer-only Button-Lösung in § 13.11, these duties apply both to Consumers and to Business Customers.

(a) Individual technical steps leading to contract conclusion (Art. 246c Nr. 1 EGBGB). A paid Subscription is concluded by the following sequence: (i) you select a plan and billing cycle on the public pricing page or in the in-app Subscription page; (ii) you click an action button (e.g. "Order plan", "Upgrade plan") which opens a confirmation modal summarising plan name, billing cycle, immediate charge amount, taxes where applicable, and the recurring renewal amount; (iii) you tick the consent box acknowledging the immediate charge and, where applicable, that you are aware your withdrawal right under § 14 below is unaffected; (iv) you click the § 312j Abs. 3-conformant order button (see § 13.11) — the click on that button is the contractually binding declaration of acceptance. Where the order is your first paid Subscription on a new Account, an additional checkout step at /checkout/billing-details collects billing identity, VAT identification (if any), and payment method before the order button is enabled. We confirm contract conclusion to you electronically and without undue delay by sending an order-confirmation email to the address registered on your Account (§ 312i Abs. 1 Nr. 3 BGB).

(b) Storage and accessibility of the contract text (Art. 246c Nr. 2 EGBGB). We store the contract text on our servers. The text of the contract consists of (i) these Terms of Service in the version in force at the time you placed your order, (ii) the Privacy Policy, the DPA, the Cookie Policy, and the Refund Policy in the versions in force at that time, (iii) the plan-specific commercial terms (plan name, monthly / annual price, included quotas) as displayed on the order confirmation modal, and (iv) the order-confirmation email we send you. The order-confirmation email contains the key order details and links to the then-current versions of the legal documents listed above. The current versions are always available at https://productlog.dev/legal/tos, …/privacy, …/dpa, …/cookies, and …/refund; we publish material amendments under § 24 with at least 30 days' advance notice. You do not have a self-service archive of the historical version of the contract you concluded — if you need a copy of the specific version in force on the date you concluded your contract, you may request it at [email protected] at any time at no charge, and we will return it within five (5) business days. The order-confirmation email and the legal documents are both in HTML / Markdown form and can be saved or printed in a reproducible form (§ 312i Abs. 1 Nr. 4 BGB).

(c) Identification and correction of input errors (Art. 246c Nr. 3 EGBGB / § 312i Abs. 1 Nr. 1 BGB). Before the order button takes effect, the confirmation modal restates plan name, billing cycle, immediate charge amount, billing identity, and payment method. You may identify input errors by reviewing the modal contents. You may correct input errors by closing the modal (browser back button or the in-modal "Cancel" / close control) and editing the underlying selection — plan selection on the Subscription page, billing identity on the Checkout Billing Details page, payment method on the same. No order is placed until you click the § 312j Abs. 3-conformant order button.

(d) Languages available for contract conclusion (Art. 246c Nr. 4 EGBGB). The dashboard — where contract conclusion takes place — is currently presented in English only. The legal documents (these Terms, Privacy Policy, DPA, Cookie Policy, Refund Policy, Imprint) are published in English as the controlling version; the Impressum exists in a German version per § 27. The contract you conclude is between you and JJ Online GmbH and is recorded in English.

(e) Codes of conduct (Art. 246c Nr. 5 EGBGB). JJ Online GmbH has not subscribed to any voluntary code of conduct for the conduct of its e-commerce business within the meaning of Art. 246c Nr. 5 EGBGB. If we subscribe to one in the future, we will publish the reference and the means of electronic access to it in this § 13.12 and notify Account holders under § 24.

(f) Reproducible storage of contract terms (§ 312i Abs. 1 Nr. 4 BGB). At the checkout step — specifically, on the confirmation modal that you must read before the order button takes effect — these Terms and the linked legal documents are reachable via the embedded "Terms of Service", "Privacy Policy", "DPA", and "Refund Policy" links. The linked pages open in your browser and may be saved in reproducible form before you complete the order via your browser's "Save Page As…" or "Print → Save as PDF" function (both produce a self-contained snapshot of the page text). The same documents are also available outside the checkout flow at the public URLs listed in (b), with no access controls. If you would prefer us to send you the bundle of legal documents as PDF attachments together with your order confirmation, write to [email protected] before placing your order and we will email the PDFs at no charge; the order then proceeds on those identified document versions.

14. EU Consumers: right of withdrawal

If you are a Consumer located in the European Economic Area (EEA), you have the right under §§ 312g, 355 BGB (transposing Directive 2011/83/EU) to withdraw from a distance contract within 14 calendar days of its conclusion, without giving any reason. The formal Withdrawal Disclosure (Widerrufsbelehrung) and the Model Withdrawal Form, prescribed by Anlage 1 zu Art. 246a § 1 Abs. 2 Satz 2 EGBGB (the Musterbelehrung Gesetzlichkeitsfiktion) and Anlage 2 zu Art. 246a § 1 Abs. 2 Satz 1 Nr. 1 EGBGB respectively (transposing Annex I of Directive 2011/83/EU), are reproduced in full in this Section so that the disclosure is available to you in Textform at the time of contract conclusion. They are also reproduced in our Refund Policy.

14.1 Withdrawal Disclosure (Widerrufsbelehrung)

Right of withdrawal

You have the right to withdraw from this contract within 14 days without giving any reason.

The withdrawal period will expire 14 days after the day of the conclusion of the contract. For the avoidance of doubt, and consistent with § 187 Abs. 1 BGB, the 14-day period begins on the day following contract conclusion: the day of conclusion itself is not counted.

To exercise the right of withdrawal, you must inform us —

JJ Online GmbH (operating ProductLog) Schönhauser Allee 163, 10435 Berlin, Germany Phone: +49 151 12032902 Email: [email protected]

— of your decision to withdraw from this contract by an unequivocal statement (e.g. a letter sent by post or an email). You may use the model withdrawal form set out in § 14.2 below, but it is not obligatory.

To meet the withdrawal deadline, it is sufficient for you to send your communication concerning your exercise of the right of withdrawal before the withdrawal period has expired.

Effects of withdrawal

If you withdraw from this contract, we shall reimburse to you all payments received from you without undue delay and in any event not later than 14 days from the day on which we are informed about your decision to withdraw from this contract. We will carry out such reimbursement using the same means of payment as you used for the initial transaction, unless you have expressly agreed otherwise; in any event, you will not incur any fees as a result of such reimbursement.

No § 356 Abs. 4 BGB waiver at checkout. We do not ask you at checkout to consent to immediate performance with loss of the withdrawal right under § 356 Abs. 4 BGB. § 356 Abs. 4 BGB is the lapse provision applicable to the Service: ProductLog qualifies as a digital service under § 327 Abs. 2 Satz 2 BGB, and the digital-service branch of the withdrawal-lapse regime sits at Abs. 4. § 356 Abs. 5 BGB, which addresses digital content supplied on a non-tangible medium, is not the applicable branch. The 14-day right of withdrawal therefore applies in full, even where you have already actively used the Service during the 14-day window — no pro-rata deduction is made for use already consumed.

14.2 Model Withdrawal Form (Muster-Widerrufsformular)

(complete and return this form only if you wish to withdraw from the contract)

— To: JJ Online GmbH (operating ProductLog), Schönhauser Allee 163, 10435 Berlin, Germany, [email protected]

— I/We () hereby give notice that I/We () withdraw from my/our (*) contract for the provision of the following service: ____________________

— Ordered on () / received on (): ____________________

— Name of consumer(s): ____________________

— Address of consumer(s): ____________________

— Signature of consumer(s) (only if this form is notified on paper): ____________________

— Date: ____________________

(*) Delete as appropriate.

15. EU Consumers: conformity of the digital Service

If you are a Consumer in the EEA, you have rights under Directive 2019/770 (transposed at §§ 327a ff. BGB) requiring that digital content and services conform to the contract. If the Service does not conform, you may be entitled to (a) have the Service brought into conformity at no cost to you, (b) a proportionate reduction in the Subscription price, or (c) termination of the contract with a refund, subject to applicable conditions.

15.1 Pre-contractual disclosures on functionality, technical protection measures, interoperability, and compatibility (Art. 246a § 1 Abs. 1 Nr. 7 and Nr. 8 EGBGB)

The following is the disclosure required under Art. 246a § 1 Abs. 1 Nr. 7 EGBGB (functionality of the digital service, including applicable technical protection measures) and Nr. 8 EGBGB (relevant interoperability and compatibility, to the extent known to us or reasonably knowable). It supplements — and is incorporated by reference from — the functional description in § 5 (Description of the Service) above and the per-plan feature and quota tables published on the pricing page at https://productlog.dev/pricing. Both surfaces are part of the contract under § 312d Abs. 1 Satz 2 BGB.

(a) Functionality (Nr. 7). ProductLog is a hosted SaaS workspace for changelog publishing, roadmap and feedback boards, surveys, knowledge-base hosting, broadcast email to End-Subscribers, and public-board rendering under customer custom domains. The functional surfaces in scope of your Subscription are: the workspace dashboard, the changelog editor, the roadmap / feedback board, the survey builder, the knowledge-base editor, the broadcast-email pipeline, the public-board renderer (including under your custom domain), the per-project content APIs, and the customer-enabled outbound integrations (Slack / Jira / Linear / generic webhook) on eligible plans. The set of features active on your Account at any given time is the set on the plan you have selected on the pricing page, as periodically reflected in the in-app Subscription page.

(b) Technical protection measures (Nr. 7, second limb). The Service uses no digital-rights-management or content-protection technology in the sense of, for example, encrypted media decryption, hardware-attested playback, or copy-prevention measures. Access to the Service is gated only by (i) authentication of the Account holder by email and password, with optional time-based one-time-password (TOTP) two-factor authentication where available; (ii) authentication of programmatic access by bearer tokens (API keys) issued from the in-app Settings; and (iii) server-side enforcement of the quotas and feature flags associated with your Subscription plan. We do not impose technical measures that would prevent you from exporting your Workspace Content in a standard format (CSV / JSON) at any time during your Subscription.

(c) Interoperability (Nr. 8, first limb). The Service is delivered through the open web: the hosted platform is reached over HTTPS by any modern evergreen browser executing JavaScript (current versions of Chrome, Firefox, Safari, and Edge — we follow each browser's vendor-supported release line and do not assume responsibility for end-of-life browser versions). The per-project content APIs use standard HTTP / JSON semantics. Outgoing webhooks (Business plan) are signed HTTP POST requests with HMAC-SHA256 signatures and are interoperable with any HTTP endpoint you operate. Customer-enabled outbound integrations rely on the public APIs of the integration providers (Slack, Atlassian Jira, Linear) and are subject to those providers' continued availability and API stability — see § 12.

(d) Compatibility (Nr. 8, second limb). The Service is delivered entirely as a hosted SaaS through your browser; there is no customer-installed client component (no agent, no SDK to embed on your own site, no desktop application). All compatibility requirements are therefore satisfied by a modern evergreen browser executing JavaScript over HTTPS. Custom-domain hosting additionally requires that you control the DNS for the chosen hostname so that the DNS-TXT verification record can be set; the precise DNS configuration is documented on the in-app Custom Domain settings screen.

To the extent any aspect of functionality, technical protection measures, interoperability, or compatibility is reasonably knowable to us but not addressed above or on the surfaces incorporated by reference, please write to [email protected] before placing your order and we will provide the additional information promptly and at no charge.

15.2 Updates (§ 327f BGB)

In accordance with § 327f BGB, we will provide the updates — including security updates — necessary to maintain the conformity of the Service for the duration of your Subscription. All updates to the ProductLog hosted platform (the web application, the public-board renderer, the broadcast-email pipeline, the per-project content APIs, and any other server-side component) are delivered automatically by us, server-side, with no installation step required from you. You do not need to take any action to receive them. § 327f Abs. 3 BGB — the carve-out for non-conformity resulting from your failure to install an update — does not, by its nature, apply, because no installation by you is possible or required, and we do not invoke it.

To exercise rights under § 327f BGB, please contact us at [email protected] with a description of the non-conformity.

16. Service availability and interruptions

We aim to maintain high availability of the Service but do not guarantee uninterrupted, error-free, or timely access. The Service is provided on an "as available" basis. We shall not be liable for any loss or damage arising from Service unavailability, interruptions, errors, or delays, except where:

  • such unavailability constitutes a failure of conformity under § 15
  • the loss results from a breach of our essential contractual duties (Kardinalpflichten) — duties whose performance is essential to the proper execution of the contract and on whose observance you regularly rely
  • the loss is caused by our gross negligence or wilful misconduct
  • the loss involves death, personal injury, or fraudulent misrepresentation

17. Support

Support is available through the channels and at the response times appropriate to your Subscription plan, as described on the pricing page. Support covers technical issues with the Service, questions about how to use the platform's features, and billing enquiries.

Support does not include: writing changelog entries on your behalf, drafting your roadmap, moderating End-Feedback-User contributions on your behalf, building custom integrations, or legal interpretation of your Workspace Content.

18. Privacy and data processing

18.1 Privacy Policy

The collection, use, storage, and disclosure of Personal Data by ProductLog is governed by our Privacy Policy, which is incorporated into these Terms by reference. By using the Service, you confirm that you have read and understood the Privacy Policy.

18.2 ProductLog as a Processor (Art. 28 GDPR)

Where the Service processes Personal Data on your behalf — in particular:

  • the email addresses, names, locale, and engagement state of End-Subscribers who signed up via double opt-in to receive your changelog broadcast emails
  • the author name, optional email, and content of comments posted by End-Feedback-Users on your public boards
  • the votes, reactions, and feedback posts left by End-Feedback-Users (with server-side IP + User-Agent fingerprint hashing for one-vote-per-visitor enforcement)
  • the public-board visitor analytics events captured for your operator-facing dashboards

— you act as the Controller in respect of that Personal Data, and ProductLog acts as a Processor.

In that capacity, and as required by Art. 28 (3) GDPR, we commit to: processing Personal Data only on your documented instructions; ensuring confidentiality of staff with access to Personal Data; implementing the technical and organisational measures described in our DPA Annex B; engaging Sub-processors only with at least 30 calendar days' prior notice to you, per DPA § 9.3; assisting you with your compliance obligations including data-subject-rights requests; and returning or deleting Personal Data at the end of the contract, at your choice.

Sub-processor change-objection mechanic. If, during the 30-day notice period, you reasonably object to a new Sub-processor on data-protection grounds, you may notify us at [email protected] with a description of the grounds for objection. We will work with you in good faith to address the concern — for example by adjusting the scope of processing, applying additional safeguards, or proposing an alternative Sub-processor. If, after good-faith discussion, the objection cannot be resolved, you may terminate the affected portion of the Service (i.e. the feature for which the new Sub-processor would have processed Customer Personal Data, or, if that portion cannot reasonably be separated, the Subscription as a whole) by giving us written notice within the 30-day period, with a pro-rata refund of prepaid fees for the unused portion of the Subscription period. This right is in addition to any right of objection or termination provided by DPA § 9.4.

The DPA is incorporated into these Terms by reference and applies automatically when you begin operating a public board or sending a broadcast that involves Personal Data of your End-Subscribers / End-Feedback-Users — you do not need to request a signed copy. If your procurement process requires a signed counterpart, contact [email protected].

Your warranty regarding § 25 TDDDG / Art. 5 (3) ePrivacy Directive consents on your public boards. Because you act as the Controller in respect of the End-Feedback-Users and visitors who land on your public boards (especially when published under your custom domain), you represent and warrant to us that, before exposing such a board to End-Feedback-Users located in the European Economic Area, the United Kingdom, or any other jurisdiction with an analogous rule, you have:

  • obtained, and will continue to maintain, the consent of each such visitor where consent is required under § 25 Abs. 1 TDDDG (Germany), Art. 5 (3) of Directive 2002/58/EC (ePrivacy Directive) as transposed by the relevant Member State, or any equivalent national implementation — including in particular for any cookies or local storage written by JJ Online's own embedded HelpCanvas chat widget loaded on your public boards (see DPA Annex C for the relevant facts), and
  • provided to each such visitor the information required under Art. 13 GDPR (or, where the processing is grounded on another lawful basis, Art. 14 GDPR), including specifically the use of JJ Online GmbH as the Processor on your behalf, the categories of data the public board collects, and the disclosure that JJ Online's HelpCanvas chat widget is rendered on the surface, and
  • where consent is the applicable legal basis under Art. 6 (1)(a) GDPR for the underlying processing (notably for changelog broadcast subscriptions and for any non-essential cookies on the board), that consent has been collected in a manner that meets Art. 7 GDPR (freely given, specific, informed, unambiguous, demonstrable, and as easy to withdraw as to give).

You acknowledge that we are not the Controller in respect of these consents and have no operational visibility into your consent-management system; we rely on this warranty as a material assumption of the parties' Art. 28 GDPR allocation. If a supervisory authority, court, or End-Feedback-User asserts that the consent under § 25 TDDDG / Art. 5 (3) ePrivacy Directive was missing or defective, the consequences fall on you as the Controller in the first instance, without prejudice to the parties' separate cooperation duties under the DPA § 11 (Assistance) and § 12 (Personal Data Breaches).

18.3 Data residency

We process Workspace Content and End-Subscriber / End-Feedback-User Personal Data primarily within the European Economic Area. The main application, primary database, and image-upload storage (local filesystem — no S3 / R2 / Spaces) are located in France (OVH). Transactional and broadcast email is sent from AWS SES, eu-central-1 (Frankfurt). Public boards and the marketing website are fronted by Cloudflare, whose global edge network terminates TLS close to the visitor and forwards requests to our EEA backend. Where customer-enabled outbound integrations (Slack / Jira / Linear / your own webhook endpoints) require transfers outside the EEA, those transfers happen on your instruction under § 12 above and your own controller responsibility. Stripe (Subscription billing) and easybill (invoicing) are EU-headquartered Sub-processors; their respective Chapter V transfer mechanisms (where applicable to sub-sub-processing within their corporate groups) are listed in the DPA Annex C and the Privacy Policy § 15.

18.4 Data portability

You may request an export of your Account data (including Workspace Content, subscriber lists, public-board content, and survey responses subject to applicable retention) at any time before Account closure. Per-project content APIs deliver the day-to-day exports (CSV / JSON of changelog entries, subscribers, and survey responses) under the in-app Export controls. For an aggregated GDPR-style export of your personal account data, write to [email protected] and we will deliver your data in a commonly used, machine-readable format within 30 calendar days of your request, at no charge. For requests that are particularly complex — for example, requests covering an unusually large workspace, requests requiring manual review of public-board content before disclosure, or requests bundled together with other Art. 15 / Art. 20 / Art. 17 actions — we reserve the further two-month extension permitted by Art. 12 (3) GDPR, in which case we will inform you of the extension and the reasons for it within the initial 30-day window. This commitment satisfies our portability obligation under Art. 20 GDPR for Personal Data that we process about you in our Controller capacity, and our cooperation duty under Art. 28 (3)(h) GDPR for Personal Data we process on your behalf as a Processor.

18.5 Right to complain to a supervisory authority

Your right to lodge a complaint. If you are in the EEA, you have the right under Art. 77 GDPR to lodge a complaint with the data protection supervisory authority in your country of residence, place of work, or place of the alleged infringement. A directory of national supervisory authorities is maintained by the European Data Protection Board at https://edpb.europa.eu. UK residents may complain to the Information Commissioner's Office (ICO) at ico.org.uk under Art. 77 UK GDPR. Swiss residents may notify the Federal Data Protection and Information Commissioner (FDPIC / EDÖB) at edoeb.admin.ch under Art. 49 FADP.

Our lead supervisory authority. Under the GDPR one-stop-shop mechanism (Art. 56 GDPR), our lead supervisory authority for processing covered by these Terms is the Berliner Beauftragte für Datenschutz und Informationsfreiheit (BlnBDI), Alt-Moabit 59-61, 10555 Berlin, Germany — https://www.datenschutz-berlin.de. You are not required to address your complaint to BlnBDI; you may complain to your own local supervisory authority, which will coordinate with BlnBDI where the one-stop-shop applies.

19. Disclaimer of warranties

The Service is provided on an "as is" and "as available" basis. To the fullest extent permitted by applicable law, the Company disclaims all warranties of any kind, whether express, implied, or statutory, including without limitation any implied warranty of merchantability or fitness for a particular purpose, any warranty that the Service will operate without interruption or be error-free, and any warranty that any Workspace Content is complete, accurate, or sufficient for any specific operational or commercial purpose.

This disclaimer does not affect:

  • our liability for breach of essential contractual duties (Kardinalpflichten), in which case our liability is limited to damages that are typical and foreseeable for this type of contract
  • our liability for death, personal injury, gross negligence, wilful misconduct, or fraudulent misrepresentation, which is not limited
  • your statutory rights as a Consumer that cannot be excluded under applicable law (including the conformity rights described in § 15)
  • any liability that cannot be limited under § 309 Nr. 7 BGB or under the Produkthaftungsgesetz

20. Limitation of liability

To the fullest extent permitted by applicable law, the Company shall not be liable for any indirect, incidental, special, consequential, punitive, or exemplary damages of any kind, including without limitation loss of profits, loss of business opportunity, loss of revenue, loss of goodwill, or any claim arising from a third party in connection with any Workspace Content.

20.1 Aggregate liability cap — for ordinary damages only, and subject to § 20.2 in all cases.

Read § 20.2 first. This § 20.1 does not apply to any of the categories listed in § 20.2 below (Kardinalpflicht breaches, gross negligence, wilful misconduct, fraud, death or personal injury, § 309 Nr. 7 BGB liability, ProdHaftG liability, or any other liability that cannot be excluded under mandatory law). For all such categories, our liability is not capped by this § 20.1 and is governed by § 20.2 and the underlying mandatory rule.

For ordinary damages that fall outside § 20.2, our total aggregate liability to you for all claims arising from or in connection with these Terms or the Service shall not exceed the greater of:

(a) the total Subscription fees you actually paid to us in the twelve calendar months immediately preceding the event giving rise to the claim; or

(b) five hundred euros (€500).

In other words, the cap is max(a, b). The €500 figure in (b) is the minimum value of the cap — it ensures the cap is never lower than €500 for any User, including a User on the Free plan or a User in their first twelve months of Subscription — and is not itself a guaranteed minimum payout, and not a cap on the Kardinalpflicht / § 20.2 liabilities (which are not subject to this § 20.1 at all). Where any part of this § 20.1 is found ambiguous under § 305c Abs. 2 BGB, the construction more favourable to the User prevails.

20.2 No limitation for the following — § 20.1 does not apply. Nothing in these Terms — including § 20.1 above — limits our liability for:

  • death or personal injury caused by our negligence
  • fraud or fraudulent misrepresentation
  • gross negligence (grobe Fahrlässigkeit) or wilful misconduct (Vorsatz)
  • breach of essential contractual duties (Kardinalpflichten), to the extent of damages that are typical and foreseeable for this type of contract
  • any other liability that cannot be excluded or limited under applicable law (including § 309 Nr. 7 BGB and the Produkthaftungsgesetz)

21. Indemnification — Business Customers only

If you are a Business Customer, you agree to indemnify and hold harmless the Company and its directors, officers, employees, contractors, agents, successors, and assigns from and against claims, actions, demands, losses, liabilities, damages, costs, and expenses (including reasonable legal fees) arising out of or relating to:

(a) third-party claims that any Workspace Content you submitted, published, or relayed through the Service infringed third-party rights or violated applicable law (for example, a third-party defamation claim arising from a feedback post you failed to moderate, or a copyright claim arising from an image you uploaded into a changelog entry); or (b) third-party intellectual-property claims arising from your branding, custom CSS, or other Workspace Content; or (c) claims that End-Subscribers were added to your changelog notifications without the consent required under § 7 Abs. 2 Nr. 3 UWG or analogous law; or (d) your material breach of these Terms (in particular § 8 — Limits on Use).

This indemnification clause does not apply to Consumers. The narrower scope of the indemnification compared with industry-standard templates reflects the limits imposed by § 307 BGB on indemnification clauses in consumer standard terms.

22. Account suspension and termination

22.1 Suspension (temporary)

We may temporarily suspend your access to the Service in the following circumstances: non-payment per § 13.8; suspected violation of § 8 (Limits on Use) or § 10 (Acceptable Use) pending investigation; where required by law; or where necessary to protect the security or integrity of the Service.

22.2 Termination by you

You may close your Account at any time by using the account deletion function in your settings, by using the Kündigungsbutton described in § 13.9, or by contacting us at [email protected]. We recommend you export your Workspace Content before requesting closure.

22.3 Termination by us

We may terminate your Account with at least 30 days' written notice, or immediately where you have: (a) materially breached these Terms (in particular § 8 — Limits on Use); (b) engaged in fraudulent activity; (c) subjected us or others to legal liability through your use of the Service; or (d) provided false identity information.

For Consumers, we will exercise this termination right consistent with the requirements of § 314 BGB (extraordinary termination for cause). The default is that we will give you a reasonable opportunity to cure (Abmahnung) — typically not less than 14 days from the date of our written notice describing the breach — before terminating on a curable breach. We will only dispense with that cure period in the narrow situations in which § 314 Abs. 2 BGB itself makes the Abmahnung dispensable — in particular, where you have refused to cure or have made clear that you will not cure, where cure would be objectively futile given the nature of the breach (for example, an irreversible disclosure of third-party Personal Data), or where the special circumstances of the individual case, weighing the interests of both sides, justify immediate termination. The burden of demonstrating one of these grounds is on us, not on you — you do not need to identify which § 314 Abs. 2 carve-out applies in order to receive the Abmahnung; that analysis is ours to make and to communicate to you.

22.4 Effect of termination

On termination, all licences granted to you cease immediately, you will lose access to your Account and dashboard, your public boards may be taken offline (including those rendered under your custom domain), and broadcast email delivery to your End-Subscribers ceases.

Data retained after termination. Your Workspace Content (including changelog entries, roadmap and feedback posts, comments, votes, reactions, survey responses, subscriber lists, custom-domain configuration, and branding) is retained for a 30-day grace period after expiry to allow you to re-subscribe or export, and is then deleted within a further 30 calendar days unless you have requested an export under § 18.4 (in which case deletion follows export delivery) or unless a longer retention is mandated by law (in particular § 147 AO / § 257 HGB for invoices and accounting records — see Privacy Policy § 11 and the DPA Annex B retention table). Where we act as a Processor for you under § 18.2, the data-return and deletion mechanics in DPA § 15 control over this paragraph.

All provisions intended by their nature to survive termination shall remain in full force, including §§ 6, 11, 18, 19, 20, 21, 25 (Governing Law), 26 (Dispute Resolution), and 28 — §§ 25 and 26 in particular survive so that any dispute arising after termination is resolved under the same forum and substantive law that the parties agreed during the Subscription.

23. Communications and electronic notices

By creating an Account, you agree to receive communications from us electronically. Transactional communications (account confirmations, billing receipts, security alerts, material changes to these Terms, broadcast-delivery confirmations for broadcasts you sent) cannot be opted out of while your Account is active.

Marketing communications — legal basis and how consent is (or is not) collected. Product-update emails, feature-launch announcements, and similar marketing communications about ProductLog itself are sent to existing customers under the Bestandskundenwerbung carve-out in § 7 Abs. 3 UWG (Gesetz gegen den unlauteren Wettbewerb), not under the § 7 Abs. 2 Nr. 2 UWG opt-in regime. This means we do not bundle a separate "I agree to receive marketing emails" tick-box with Account creation, and we do not rely on consent under Art. 6 (1)(a) GDPR for these emails; the lawful basis under the GDPR is Art. 6 (1)(f) GDPR (legitimate interests) in maintaining a customer relationship through information about similar products and services. We rely on this regime only where the four cumulative conditions of § 7 Abs. 3 UWG are met for the email in question, namely: (i) we obtained your email address in the context of the sale of our own goods or services; (ii) the email markets only goods or services of our own that are similar to those you have already purchased; (iii) you have not objected to such use; and (iv) you were clearly and conspicuously informed at the time the email address was collected (and in every marketing email) that you may object at any time, free of charge other than transmission costs at base rate. The signup-form disclosure that satisfies condition (iv) is rendered on the sign-up page at the moment the email address is collected and reads, in substance, as follows:

"We will from time to time send you product updates about ProductLog and similar services we offer (Bestandskundenwerbung under § 7 Abs. 3 UWG, processing grounded on Art. 6 (1)(f) GDPR). You may object to this use at any time, free of charge other than transmission costs at base rate, by clicking the unsubscribe link in any such email, by changing your preferences in the in-product preference panel, or by writing to [email protected]. Your objection will not affect transactional emails (billing receipts, security alerts, broadcast-delivery confirmations for broadcasts you sent, material changes to these Terms), which we will continue to send while your Account is active."

Every marketing email also carries a one-click unsubscribe link and a textual reminder of your right to object.

Cold marketing to non-customers. Where we send marketing emails to recipients who are not existing customers within the meaning of § 7 Abs. 3 UWG (for example, addresses obtained from a separate marketing-list opt-in form, a webinar registration, or a lead-magnet download), we send those emails only on the basis of a separate, specific, prior opt-in that satisfies § 7 Abs. 2 Nr. 2 UWG and Art. 7 GDPR. We do not currently operate such a list as part of the Account-creation flow; if and when we do, the opt-in will be collected through a stand-alone tick-box that is unticked by default and is not a precondition for any other transaction.

Broadcast email to your End-Subscribers is your responsibility. The broadcast-email pipeline operated through ProductLog sends notifications to your End-Subscribers under your controller-responsibility and your double-opt-in consent — not under JJ Online GmbH's controller-responsibility. You are responsible for the lawfulness of those messages under § 7 UWG and Art. 6 GDPR, and for honouring any objection or unsubscribe.

Opt-out at any time. You may opt out of all JJ Online marketing communications at any time, without affecting transactional ones — via the unsubscribe link in any marketing email, via the in-product preference panel, by exercising your right to object under Art. 21 GDPR by writing to [email protected], or by sending us a § 7 Abs. 3 UWG objection by any reasonable means. The objection is free of charge other than the transmission costs at base rate and does not require justification. Once you object, we will not further process your Personal Data for direct-marketing purposes.

Notices to us must be sent to [email protected] (general / contract / Imprint) or [email protected] (data-subject and privacy matters).

24. Changes to these Terms

Material changes — including changes to pricing, limitations of liability, data processing provisions, or your key rights — will be communicated to you by email and in-app notice at least 30 days before they take effect. During the notice period you may terminate without penalty and receive a pro-rata refund of prepaid fees for the unused Subscription period.

Non-material changes — such as clarifications, typographical corrections, or reformatting — may be made without separate notice and will be reflected by an updated Last updated: date at the top of this document.

25. Governing law

These Terms and any dispute or claim arising out of or in connection with them shall be governed by and construed in accordance with the laws of Germany, without regard to its conflict of law principles and excluding the United Nations Convention on Contracts for the International Sale of Goods (CISG). Nothing in this Section affects any mandatory consumer protection rights you may have under the laws of your country of residence.

26. Dispute resolution

26.1 Informal resolution. Before initiating any formal proceedings, both parties agree to make a genuine effort to resolve disputes informally. You should contact us at [email protected] with a written description of your complaint. We will respond within 30 days.

26.2 Formal proceedings. If informal resolution fails, disputes shall be subject to the exclusive jurisdiction of the competent courts of Berlin, Germany, except where jurisdiction is otherwise mandated by applicable consumer protection law.

26.3 Consumer arbitration declaration (§ 36 VSBG). We are neither obliged to nor willing to participate in dispute-resolution proceedings before a consumer arbitration body (Verbraucherschlichtungsstelle). German-language declaration as required for German consumers under § 36 VSBG: "Wir sind weder bereit noch verpflichtet, an Streitbeilegungsverfahren vor einer Verbraucherschlichtungsstelle teilzunehmen."

27. Miscellaneous

Entire agreement. These Terms, together with the Privacy Policy, Cookie Policy, Refund Policy, Disclaimer, and DPA incorporated by reference, constitute the entire agreement between you and the Company with respect to the Service.

Severability. If any provision of these Terms is found to be invalid or unenforceable, that provision shall be modified to the minimum extent necessary to make it enforceable, or severed if modification is not possible, and the remaining provisions shall continue in full force.

No waiver. Our failure or delay in exercising any right, remedy, or provision under these Terms shall not constitute a waiver of that right.

Assignment. You may not assign or transfer your rights or obligations under these Terms without our prior written consent. We may freely assign these Terms to any affiliate, successor entity, or acquirer of all or substantially all of our assets or business, upon notice to you.

Force majeure. We shall not be liable for any failure or delay in performing our obligations arising from circumstances beyond our reasonable control.

Language. These Terms are published in English. Where translated into any other language, the English version prevails in the event of any conflict, except for the following texts, where the German-language version is the binding operative version for German consumers as required by mandatory German law: (i) the Widerrufsbelehrung and Model Withdrawal Form (§ 14.1 / § 14.2; Anlage 1 zu Art. 246a § 1 Abs. 2 Satz 2 EGBGB and Anlage 2 zu Art. 246a § 1 Abs. 2 Satz 1 Nr. 1 EGBGB), (ii) the § 312k BGB Kündigungsbutton labels "Verträge hier kündigen" and "Jetzt kündigen" (§ 13.9), (iii) the § 36 VSBG declaration (§ 26.3), and (iv) the Impressum / § 5 DDG statutory disclosures. Where the English version of those specific texts diverges from the German binding version, the German version controls for the affected consumer.

28. Jurisdiction-specific provisions

28.1 European Economic Area (EEA)

If you are a Consumer in the EEA, mandatory consumer protection rights under EU law and the law of your country of residence are not waived or excluded by these Terms. Where we change material terms to your detriment and you object during the 30-day notice period in § 24, you may terminate without penalty and receive a refund of prepaid fees for the unused Subscription period.

28.2 United Kingdom

The United Kingdom is not a target market for ProductLog. We do not bill in GBP, we operate no .co.uk domain or subdirectory, we publish no UK landing pages, no UK case studies, no UK-resident customer testimonials, no UK-specific comparison pages, and no UK-geo-targeted paid acquisition. The Website is published in English because English is the controlling language of our documentation and product, not as a country signal pointing to the United Kingdom. On those facts, and applying the territorial-scope markers in EDPB Guidelines 3/2018 § 2.1 / § 2.2 (currency, top-level domain, language as country signal, mention of local customers, country-specific marketing, dedicated phone/address, delivery terms), we consider that we do not "offer goods or services" to Data Subjects in the United Kingdom within the meaning of Art. 3 (2)(a) UK GDPR, and we do not "monitor the behaviour" of UK Data Subjects within the meaning of Art. 3 (2)(b) UK GDPR. Accordingly, we have not appointed a UK Representative under Art. 27 UK GDPR; should Art. 3 (2) UK GDPR nonetheless be considered to apply to incidental UK signups, our processing satisfies the Art. 27 (2)(a) UK GDPR exemption as occasional and low-risk. See Privacy Policy § 15 for the full analysis. We will reassess and appoint a UK representative if we begin to target the United Kingdom market — for example by adding GBP pricing, a .co.uk domain or subdirectory, UK case studies or testimonials, UK-specific landing pages or comparison pages, UK-geo-targeted paid acquisition, or UK-language content production.

This § 28.2 does not waive or exclude any non-derogable consumer-protection right a UK-resident User may have under the mandatory law of the United Kingdom; where such a right applies notwithstanding the territorial-scope analysis above, that right is preserved.

Data-protection complaint route. Regardless of our territorial-scope position, a UK-resident User may at any time lodge a complaint with the Information Commissioner's Office (ICO) at https://ico.org.uk; we do not contest the ICO's competence to receive a complaint on the basis of § 28.2 alone.

Non-derogable consumer-jurisdiction protections. Notwithstanding § 25 and § 26, where a UK-domiciled Consumer is entitled to the non-derogable forum protections in section 15B of the Civil Jurisdiction and Judgments Act 1982 (as inserted by SI 2019/479 and as it forms part of the assimilated-law framework), those protections remain available: such a Consumer may bring proceedings against us in the UK part in which they are domiciled, and we will not bring proceedings against them other than in that UK part, except as section 15B itself permits.

28.3 United States

The United States is not a target market for ProductLog. We do not bill in USD as our primary currency (USD is offered only as an optional secondary-display currency at checkout for convenience — see § 13.4), we operate no .us domain or US-state subdirectory, we publish no US landing pages, no US case studies, no US-resident customer testimonials, no US-specific comparison pages, no US-geo-targeted paid acquisition, and no US-state-specific (e.g. California, Texas, Florida) marketing content. We do not appoint a US-state-privacy-law authorised agent and we do not maintain a CCPA / CPRA "Do Not Sell or Share My Personal Information" link, because, on the facts above, we do not "do business" in California within the meaning of Cal. Civ. Code § 1798.140 (d), do not "conduct business in" Virginia / Colorado / Connecticut / Utah / Texas / Oregon within the meaning of those States' respective consumer-privacy statutes, and do not direct activities at residents of those States. The Service is offered in English because English is the controlling language of our documentation and product, not as a country signal pointing to the United States. We will reassess and adopt the relevant US-state-privacy compliance posture if we begin to target the United States market — for example by adding USD as our primary billing currency, a .us domain or US-state subdirectory, US case studies or testimonials, US-state-specific landing pages or comparison pages, US-geo-targeted paid acquisition, US-state-specific marketing content, or by exceeding the personal-information thresholds in the relevant State statute through incidental signups.

This § 28.3 does not waive or exclude any non-derogable consumer-protection right a US-resident User may have under the mandatory law of their State of residence; where such a right applies notwithstanding the territorial-scope analysis above, that right is preserved. For the avoidance of doubt: there is no arbitration agreement, no class-action waiver, and no jury-trial waiver between us and any US-resident User. Disputes are resolved under § 25 (Governing Law) and § 26 (Dispute Resolution) like any other non-targeted-jurisdiction dispute. If a US-resident User wishes to invoke a non-derogable home-State forum protection, they may do so under the mandatory law of their State; we will not contest jurisdiction on the basis of § 26 alone where mandatory State law gives them a forum right that overrides § 26.

For US data-subject inquiries (right to know, right to delete, opt-out of sale / sharing where applicable), please write to [email protected]. We will respond on the facts even where we do not consider ourselves territorially in scope, because doing so is more efficient than litigating territorial scope on a per-request basis.

29. Contact us

For any questions, notices, or requests relating to these Terms:

JJ Online GmbH (operating ProductLog) Schönhauser Allee 163, 10435 Berlin, Germany Geschäftsführer (Managing Director): Andrius Gecius Court of Registration: Amtsgericht Berlin-Charlottenburg | HRB 235074 B USt-IdNr.: DE351060880 Phone: +49 151 12032902 Email — general / Imprint: [email protected] Email — privacy and data-subject requests: [email protected] Contact form: https://productlog.dev/contact

For the statutory § 5 DDG point of contact information including telephone, see the Imprint (English) / Impressum (German).

These Terms of Service are dated as shown in the Last updated: line at the top of this document.