Privacy Policy

1. Data Controller

The controller responsible for data processing on this website is:

2. Data Collection

We do not collect personal data from website visitors beyond what is technically necessary for website delivery.

No Visitor Tracking

We do not operate analytics, tracking, or advertising services. Our infrastructure uses metrics collection (VictoriaMetrics) for system health monitoring only, which contains no personal or visitor-identifiable information.

Traffic Routing via Cloudflare

All website traffic is routed through Cloudflare Zero Trust tunnels. When you visit this website, Cloudflare processes connection metadata including your IP address, request URLs, and HTTP headers to deliver the content and provide DDoS protection. This data is processed on Cloudflare's global network. We use only tunnel routing without Gateway HTTP logging or Access authentication. On our free plan, any network logs Cloudflare retains are deleted within 24 hours.

3. Hosting

This website runs on our own infrastructure in our company premises. We use the following service providers:

Cloudflare, Inc. (USA)

We use Cloudflare for DNS hosting and Zero Trust tunnels to securely route traffic to our infrastructure. Cloudflare processes visitor connection metadata (IP address, request headers) as part of this service. Cloudflare is certified under the EU-U.S. Data Privacy Framework.

Cloudflare Privacy Policy

On-Premise Infrastructure

The website application runs on our own Kubernetes cluster located in our company offices in Germany. We do not log visitor IP addresses or request data at the application level.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in secure and efficient website operation).

4. Your Rights

Under GDPR, you have the following rights regarding your personal data:

• Right of Access (Art. 15 GDPR) – You can request information about whether we process your personal data.
• Right to Rectification (Art. 16 GDPR) – You can request correction of inaccurate personal data.
• Right to Erasure (Art. 17 GDPR) – You can request deletion of your personal data under certain conditions.
• Right to Restriction (Art. 18 GDPR) – You can request restriction of processing under certain conditions.
• Right to Data Portability (Art. 20 GDPR) – You can request your data in a machine-readable format.
• Right to Object (Art. 21 GDPR) – You can object to processing based on legitimate interests.

You also have the right to lodge a complaint with a supervisory authority:

5. Legal Basis for Processing

We process personal data based on the following legal grounds:

• Art. 6(1)(a) GDPR – You have given consent for specific purposes.
• Art. 6(1)(b) GDPR – Processing is necessary to fulfill a contract or pre-contractual measures.
• Art. 6(1)(f) GDPR – Processing is necessary for our legitimate interests (e.g., website security).

6. Cookies

Cookies are small text files stored on your device. We use cookies sparingly and only when necessary.

Essential Cookies

We use session cookies required for basic website functionality. These are deleted when you close your browser. Legal basis: Art. 6(1)(f) GDPR.

Preference Cookies

We may store your display preferences (such as theme selection) in localStorage. This is not a cookie and contains no personal data.

Analytics

We do not use any analytics or tracking services. We do not collect any visitor statistics or behavioral data.

7. Contact Inquiries

When you contact us via email, we process the data you provide to respond to your inquiry. Legal basis: Art. 6(1)(b) GDPR (pre-contractual measures) or Art. 6(1)(f) GDPR (legitimate interest in answering inquiries).

Our email is hosted by Hetzner Online GmbH in Germany.

Contact data is deleted once your inquiry has been conclusively handled, unless we are legally required to retain it longer.

8. Changes to this Policy

We may update this privacy policy to reflect changes in our practices or legal requirements. The current version is always available on this page.

Last updated: March 2026