[email protected]

// legal

Privacy Policy

1. Privacy at a glance

The following information provides a simple overview of what happens to your personal data when you visit this website. This site is designed to be data-minimal: it does not set any cookies and uses only a privacy-friendly, server-side, cookieless analytics service for aggregated reach measurement (see Section 4).

2. Data controller

Marvin Taron
c/o DAV Witten
Hauptstr. 19
58452 Witten
Germany
Email: [email protected]

3. Hosting

This website is hosted in Germany. Data processing takes place exclusively within the European Union. Fonts and libraries are served locally from the same server; no external font or CDN services are embedded.

When you access this website, your browser automatically transmits information that is stored in server log files:

  • IP address
  • Browser type and version
  • Operating system
  • Referrer URL
  • Time of request

This data is used exclusively for the technical operation and security of the website and is not combined with other data sources. Legal basis is Art. 6(1)(f) GDPR (legitimate interest in a reliable and secure presentation of the site).

Retention: Log files are automatically deleted after at most 14 days, unless a security-relevant event requires longer retention.

Should a hosting service provider be engaged, this is done on the basis of a data processing agreement pursuant to Art. 28 GDPR.

4. Reach measurement with Cloudflare Web Analytics

This site uses Cloudflare Web Analytics to gather aggregated, statistical insights about site usage. The service is provided by Cloudflare, Inc., 101 Townsend Street, San Francisco, CA 94107, USA.

Cloudflare Web Analytics is server-side only: it does not set cookies, does not store any data in your browser or on your device, and does not identify visitors via fingerprinting, IP address, or user agent. The collected data cannot be linked to an individual person.

For each page view, the following data is processed: requested URL, referrer URL, timestamp, browser type and version, operating system, an approximate region (derived from the truncated IP address, which is not stored), and page-load performance metrics.

Legal basis is Art. 6(1)(f) GDPR (legitimate interest in privacy-friendly, anonymous analysis of site usage). Since no information is stored on or retrieved from your device, consent under § 25 TDDDG is not required.

Transfer to third countries: Cloudflare, Inc. is based in the USA and is certified under the EU-U.S. Data Privacy Framework. Transfers are therefore covered by an adequacy decision of the European Commission under Art. 45 GDPR; additionally, Cloudflare relies on EU Standard Contractual Clauses under Art. 46(2)(c) GDPR.

Data processing agreement: A data processing agreement under Art. 28 GDPR is in place with Cloudflare (Cloudflare Data Processing Addendum).

Retention: Data collected via Cloudflare Web Analytics is stored in aggregated form for at most six months.

For further information on data protection at Cloudflare, see www.cloudflare.com/privacypolicy/.

5. Contact form

When you send me a message via the contact form, the following data is collected:

  • Name
  • Email address
  • Your message

This data is processed on my own server and is used exclusively to respond to your inquiry. It is not shared with third parties. Legal basis is Art. 6(1)(b) GDPR (pre-contractual measures) if your inquiry aims at entering into a contract, or Art. 6(1)(f) GDPR (legitimate interest in responding to inquiries) for purely informational requests.

Retention: Your data is deleted once your inquiry has been resolved and no further correspondence is expected, at the latest after 12 months, unless statutory retention obligations apply (e.g. § 257 HGB, § 147 AO).

6. Your rights

Under the GDPR you have the following rights regarding your personal data:

  • Right of access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to object (Art. 21 GDPR)
  • Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)

If you have given consent to data processing, you may withdraw it at any time with effect for the future; the lawfulness of processing prior to withdrawal remains unaffected. To exercise any of these rights, an informal message to the contact details in section 2 is sufficient.

7. Cookies

This website does not use cookies.

8. SSL encryption

This site uses SSL encryption for security reasons. You can recognize an encrypted connection by the address bar of your browser changing from "http://" to "https://" and by the lock icon in your browser bar.

9. Links to external services

The contact section contains plain hyperlinks (no embedded widgets or pixels) to the following third-party platforms:

  • GitHub (GitHub Inc., 88 Colin P Kelly Jr St, San Francisco, CA 94107, USA) — privacy statement
  • LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland) — privacy policy
  • Xing (New Work SE, Am Strandkai 1, 20457 Hamburg, Germany) — privacy policy

Only when you actively click such a link does a connection to the respective platform get established and data (including your IP address) is transmitted to its servers. This processing takes place under the sole responsibility of each platform operator and is subject to their own privacy policies.

10. Right to lodge a complaint

You have the right to lodge a complaint with a data protection supervisory authority regarding the processing of your personal data. The competent authority for the controller's place of residence (North Rhine-Westphalia) is:

Landesbeauftragte fuer Datenschutz und Informationsfreiheit Nordrhein-Westfalen
Kavalleriestrasse 2-4
40213 Duesseldorf
Germany
Phone: +49 211 38424-0
Email: [email protected]
Website: www.ldi.nrw.de

← back to home