Two things to know before the rest. We do not sell data. There is no marketing pixel on this site, no broker downstream, nobody renting your inbox. The second thing: we still touch some data, because every site does, and pretending otherwise would be a lie.
What we actually keep.
When you pass the age gate, we drop a small flag in your browser so the popup doesn't ambush you twice. When you accept or decline cookies, that choice is also held in your browser, not on our servers. Server-side, our hosting provider keeps standard request logs — IP address, page requested, timestamp, user-agent — for around fourteen days, after which they roll off automatically. We use these logs to find broken pages and the occasional bot, nothing else.
What we don't have.
We don't have your name, your email (unless you write to us — see below), your real-world address, your payment details, because no payments happen here. We don't run analytics scripts, no Google Analytics, no Meta Pixel, no heatmaps watching your cursor.
What about children.
korb is not built for anyone under eighteen, and the age gate is the first thing the site does. If a parent or guardian believes a minor has somehow managed to send us data, write to [email protected] and we will erase whatever we hold within seven days. We do not require proof; one honest email is enough.
Reaching us.
If you email us at [email protected], we'll keep that thread for as long as it takes to answer you, and we'll delete it after a month unless you ask us to keep going. To request a copy, correction, or deletion of anything we hold, write to the same address with the subject "data request" — we aim to reply within seven days. You can also complain to your local data-protection authority. We hope you won't have to.