Privacy policy

General information

This privacy policy informs you about the collection and processing of personal data in connection with the usage of this website.

Definitions

On this page, terms as defined in Art. 4 of the General Data Protection Regulation (GDPR) are used, e.g. “personal data” or “controller”.

Data controller

The data controller, as defined in Art. 4 Par. 7 GDPR, is the website operator, whose name and contact information can be found in the legal notice.

Important points

This website neither utilizes external advertising, nor social media buttons – rather plain HTML links are used (if at all).

Many resources used by this website are self-hosted – thus only few external services are involved in visits to this website. For (well-considered) exceptions see below.

The server running this website is hosted in a datacenter in Germany. I have concluded a contract for order processing with my provider.

Policy

Collection of data

During your visit to this website, you have the option to provide personal data. This can be, for example, data that you send by email or enter when posting a comment.

Other data is automatically recorded by the IT systems that are involved in the operation of this website. This is primarily technical and communication data (e.g. your IP address, web browser information, date and time of the page access).

Types of data collected

The following data types might be collected and / or processed while visiting the website:

  • communication data (e.g. IP address)
  • usage data (e.g. date and time, visited pages on this site, browser type and version)
  • personal details, if provided by you (e.g. name or alias)
  • contact details, if provided by you (e.g. address, email, telephone number)
  • content data, if communicated by you (e.g. comment texts)
  • possibly other metadata or data (e.g. diagnostic HTTP headers)

Purposes of processing

(according to Art. 13 Par. 1 Lit. c GDPR)

  • interruption-free, secure operation of the website
  • user-friendly design of the website
  • to handle contact requests
  • avoid spam and abuse
  • analysis of user behavior to improve the website
  • economic operation of the website
  • creation of statistics
  • contacting third parties in the event of legal complaints

Legal basis for processing

If you give consent to the processing of your personal data, Art. 6 Par. 1 Lit. a GDPR serves as the legal basis for data processing.

If your personal data is processed, because it is necessary to fulfil a contract or in the context of a contract-like relationship with you, Art. 6 Par. 1 Lit. b GDPR serves as the legal basis for data processing.

If your personal data is processed in order to fulfil a legal obligation, Art. 6 Par. 1 Lit. c GDPR serves as the legal basis for data processing.

If the processing of your personal information is necessary for protecting the vital interests of a natural person, Art. 6 Par. 1 Lit. d GDPR serves as the legal basis for data processing.

If the processing of personal information is necessary for operations, which are not covered by any of the abovementioned legal grounds, but are deemed permissible for the purposes of the legitimate interests pursued by the website operator, such as marketing, Art. 6 Par. 1 Lit. f GDPR serves as the legal basis for data processing.

Your rights

Your rights as a data subject are defined in Articles 15 – 22 GDPR and include:

  • the right of access (Art. 15 GDPR)
  • the right to rectification (Art. 16 GDPR)
  • the right to erasure / right to be forgotten (Art. 17 GDPR)
  • the right to restriction of data processing (Art. 18 GDPR)
  • the right to data portability (Art. 20 GDPR)
  • the right to object to data processing (Art. 21 GDPR)

To exercise these rights, please get in touch; for contact details see: legal notice. The same applies if you have any questions regarding data processing or when you want to withdraw your consent. You also have the right to lodge a complaint with a supervisory authority.

Children’s privacy

This website does not address anyone under the age of 13. No personally identifiable information is collected from anyone under that age. If you are a parent or guardian and you are aware that your child has provided his / her personal data, please contact me. If I become aware that personal data from anyone under the age of 13 has been collected without verification of parental consent, steps to remove that information from the server will be taken.

TLS encryption

This site uses TLS encryption to ensure the security of data processing and to protect the transmission of confidential content, such as login details or contact requests that you send to the website operator. You can recognize an encrypted connection by your browser’s address bar reading “https://” instead of “http://” and the lock symbol in the browser bar. If TLS encryption is activated, the data you send cannot be read by third parties. Anyhow, please be aware that no perfect encryption exists and a (small) residual risk always remains.

Hosting

This website is hosted by an external service provider (hoster). The personal data collected on this website is stored on the hoster’s servers. The hoster is used for the purpose of fulfilling the contract with potential and existing customers (Art. 6 Par. 1 Lit. b GDPR) and in the interest of a safe, fast and efficient operation of the website by a professional service provider (Art. 6 Par. 1 Lit. f GDPR).
The hoster will only process your data to the extent necessary to fulfill its performance obligations and to follow my instructions in relation to this data.
In order to guarantee data protection-compliant processing, I have concluded a contract for order processing with the hoster.

Server log-files

The server, on which this website is hosted, automatically collects and stores so-called server log-files, which contain information that your browser automatically transmits. These are: browser type and version, operating system, referrer URL, hostname of the accessing computer and request timestamp. This data is used mainly for troubleshooting and not merged with other data sources.

Contacting

When contacting me (e.g. via email, telephone or social media), the provided personal data is processed for handling the contact enquiry in accordance with Art. 6 Par. 1 Lit. b GDPR. Received information may be stored in a customer relationship management system (“CRM system”) or comparable applications.
I delete the messages, if they are no longer necessary. Statutory archiving obligations also apply and might be of higher priority than other commitments.

Contact forms

This website uses contact forms, which are embedded on some pages, to send messages to me. You will be asked for your name, your e-mail address, a subject, and a message text. You are free to provide an alias instead of your real name. The e-mail address is required to assign your request and to be able to reply to you. The information you specify in the subject and message text is completely up to you.

The data processing described above for the purpose of establishing contact is carried out in accordance with Art. 6 Par. 1 Lit. b (performance of a contract), Art. 6 Par. 1 Lit. f GDPR (legitimate interest) or Art. 6 Par. 1 Lit. a (consent of the data subject).

The received information may be stored in a customer relationship management system (“CRM system”) or comparable applications.
I delete the messages if they are no longer necessary. Statutory archiving obligations also apply and might be of higher priority than other commitments.

Web analytics

Matomo

This website uses Matomo (formerly Piwik), an open-source web analytics software. Matomo uses cookies, which are stored on your computer, to help the website analyze how visitors use the site. Information about your use of this website (including your IP address, anonymized prior to its storage) will be stored on a server in Germany. No information about the use of this site is given to third parties. You can disable cookies in your browser or you may opt-out in the cookie settings, which you can access via the cookie notification bar or the gear icon at the bottom right of the screen.

VG Wort / Skalierbares Zentrales Messverfahren

This website uses session cookies from VG Wort (Verwertungsgesellschaft Wort, Untere Weidenstraße 5, 81543 München, Germany) to measure access to texts in order to determine the probability of copying. Session cookies are small units of information that are temporarily stored in the web browser. These measurements are carried out by INFOnline GmbH (Brühler Str. 9, 53119 Bonn, Germany) using the Scalable Centralized Measuring System (Skalierbares Zentrales Messverfahren, SZM). This helps to determine the probability that individual texts are copied in order to compensate the legal claims of authors and publishers. I do not collect any personal data using such cookies.

Some parts of the website use functions (e.g. a tracking pixel) to report page views to VG Wort. This makes it possible for the author to participate in payoffs according to §53 of the German UrhG.

Data processing occurs on the basis of legitimate interest in determining the legal claims of authors and publishers pursuant to Art. 6 Par. 1 Lit. f GDPR.

Further information can be found in the data privacy statement of INFOnline: https://www.infonline.de/datenschutz/.

You can opt-out from data collection by VG Wort / INFOnline GmbH on this website: https://optout.ioam.de/ or by deactivating the storage of cookies in your web browser.

Plugins and other services

Akismet

This site uses the Akismet plugin from Automattic Inc., 60 29th Street #343, San Francisco, CA 94110, USA. With the help of this plugin, comments from real people are distinguished from spam comments. All comment information is sent to a server in the USA, where it is analyzed and stored for up to 90 days for comparison. If a comment has been classified as spam, the data might be stored beyond that time. This information includes the commenter’s IP address, user agent, referrer and site URL (along with other information directly provided by the commenter, such as their name, username, email address, and the comment itself). You are welcome to use a pseudonym or refrain from entering your name or email address. If you do not want any data to be sent to Akismet / Automattic Inc., please refrain from posting comments! You may object to the use of your data for the future by sending a mail to with the subject “Deletion of data stored by Akismet” stating / describing the stored data.

Automattic Inc. is certified under the “Privacy Shield“, a US-European data protection accord, which ensures compliance with the data protection level applicable in the EU.

You can find more information about how your data is processed by Akismet / Automattic Inc. here: https://akismet.com/privacy/.

Gravatar

If you post a comment and specify an email address, it is used to display a profile picture using the Gravatar service. This service is provided by Automattic Inc., 60 29th Street #343, San Francisco, CA 94110, USA. If you do not want any data to be sent to Gravatar / Automattic Inc., please refrain from posting comments!

Automattic Inc. is certified under the “Privacy Shield“, a US-European data protection accord, which ensures compliance with the data protection level applicable in the EU.

You can find more information about how your data is processed by Gravatar / Automattic Inc. here: https://automattic.com/privacy/.

Google web-fonts

This website uses web-fonts provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland for the uniform display of fonts. When you access a website, your browser loads the required web-fonts into its browser cache in order to display texts correctly. To do this, the browser you are using must connect to Google’s servers. Google thus becomes aware that your IP address accessed a page on this website. The use of Google web-fonts is in the interest of a uniform and appealing presentation of this website. This constitutes a legitimate interest as defined by Art. 6 Par. 1 Lit. f GDPR.

Google Ireland Limited, headquartered in Ireland, is certified under the “Privacy Shield“, a US-European data protection accord, which ensures compliance with the data protection level applicable in the EU.

If you explicitly disable web-fonts or your browser does not support this technology, a standard font is used by your computer.

More information about Google web-fonts can be found at https://developers.google.com/fonts/faq and in Google’s privacy policy at https://policies.google.com/privacy?hl=en.

Closing remarks

Changes to this privacy policy

This privacy policy may be updated from time to time. You are advised to review this page periodically for any changes; please check to the “Last update” information below. Changes to this privacy policy will take effect as soon as they are published here.

Security of your personal data

The security of your personal data is important to me – but remember that no method of transmission over the Internet, or method of electronic storage is (or will ever be) 100% secure. While I strive to use best-practice means and technologies to protect your personal data, I cannot guarantee its absolute security.

Contact & questions

If you have any questions about this privacy policy or information I might hold about you, please get in touch; for contact details see: legal notice.


Last update: 2020-03-20