Privacy Policy
Introduction
We appreciate your interest in our website. The protection of your personal data is very important to us. Below, we provide you with detailed information about how we handle your data.
Data Controller
The responsible party within the meaning of data protection laws is:
Legal Basis
Below you will find an overview of the legal bases of the GDPR on which we process personal data:
- Consent (Art. 6 para. 1 sent. 1 lit. a) GDPR)
- Contract performance (Art. 6 para. 1 sent. 1 lit. b) GDPR)
- Legal obligation (Art. 6 para. 1 sent. 1 lit. c) GDPR)
- Legitimate interest (Art. 6 para. 1 sent. 1 lit. f) GDPR)
Security Measures
We take appropriate technical and organizational measures in accordance with legal requirements, taking into account the state of the art, implementation costs, and the nature, scope, circumstances, and purposes of processing, as well as the different probabilities of occurrence and the extent of the threat to the rights and freedoms of natural persons, to ensure a level of protection appropriate to the risk.
Measures include in particular:
- SSL/TLS encryption of data transmission
- Access control to our systems
- Regular backups of your data
- Regular security updates
Data Processing on the Website
Server Logs
When you visit our website, information is automatically sent to the server of our website. This information is temporarily stored in a so-called log file:
- IP address of the requesting computer
- Browser used and operating system
- Date and time of access
- Websites from which the user's system reached our website
The data is deleted after 7 days.
Cookies & Tracking
This website uses the following types of cookies:
- Technically necessary cookies for website functionality
- Analytics cookies to improve our offering (only with your consent)
- Marketing cookies for personalized content (only with your consent)
You can change your cookie settings at any time.
Contact Form
If you send us inquiries via the contact form, your details from the inquiry form, including the contact data you provided there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions.
Registration & Login
If you register on our website, the following data will be processed:
- Email address (required)
- Password (stored encrypted)
- Profile data (name, optional additional information)
The data is stored until your account is deleted.
External Services
Data transfer to third countries (outside the EU/EEA) only takes place insofar as this is necessary for the execution of your orders, legally required, or you have given us your consent.
| Name | Provider | Purpose | Storage Duration | Category |
|---|---|---|---|---|
| Session Cookies | Next.js Blueprint | Authentifizierung und Session-ManagementSession-ID, User-ID | 30 Tage | Essential |
| Language Preference | Next.js Blueprint | Speicherung der SpracheinstellungSprachcode | 1 Jahr | Essential |
| Theme Preference | Next.js Blueprint | Speicherung des Dark/Light ModeTheme-Einstellung | 1 Jahr | Essential |
| Vercel Analytics | Vercel Inc.USA (Privacy Shield) | Hosting und Performance-MonitoringIP-Adresse (anonymisiert), User-Agent, Referrer | 90 Tage | Analytics |
| Supabase | Supabase Inc.EU (Frankfurt) | Datenbank und AuthentifizierungE-Mail, Passwort (gehasht), Profildaten | Bis zur Löschung des Accounts | Essential |
| Resend | Resend Inc.USA | E-Mail-Versand (Transaktions-E-Mails)E-Mail-Adresse, Name | 30 Tage | Essential |
| Server-Logs | Next.js Blueprint | Sicherheit und FehlerdiagnoseIP-Adresse, Browser, Zugriffszeit, Referrer | 7 Tage | Essential |
| Google OAuth | Google LLCUSA | Social LoginE-Mail, Name, Profilbild | Bis zur Löschung des Accounts | External Services |
Hosting
Our website is hosted by:
Database
To store your data, we use:
Email Service
For email sending, we use:
Rights of Data Subjects
Right to Information
You have the right to request confirmation as to whether relevant data is being processed and to obtain information about this data as well as further information and a copy of the data in accordance with legal requirements.
Right to Rectification
You have the right to request the completion of data concerning you or the rectification of incorrect data concerning you in accordance with legal requirements.
Right to Erasure
You have the right to request that data concerning you be deleted immediately, or alternatively, in accordance with legal requirements, to request restriction of the processing of the data.
Right to Restriction of Processing
You have the right to request that data concerning you that you have provided to us be received in accordance with legal requirements and to request their transmission to other controllers.
Right to Object
You have the right to object at any time to the processing of personal data concerning you for reasons arising from your particular situation.
Right to Complain
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the requirements of the GDPR.
Changes to Privacy Policy
We reserve the right to adapt this privacy policy so that it always complies with current legal requirements or to implement changes to our services in the privacy policy. Your new visit will then be subject to the new privacy policy.