Privacy Policy

1. Data Protection at a Glance

General Information

The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data is any data by which you can be personally identified. Detailed information can be found in the full Privacy Policy below.

Data Collection on This Website

Who is responsible for data collection?
Data processing on this website is carried out by the website operator. Contact details can be found in the section “Controller Information” below.

How do we collect your data?
Some data is collected when you provide it to us (e.g., via a contact form).
Other data is collected automatically or with your consent when you visit the website. This mainly includes technical data (e.g., browser type, operating system, time of access).

What do we use your data for?

  • To ensure proper functioning of the website
  • To analyze user behavior

What rights do you have?
You have the right to:

  • Access your stored personal data (free of charge)
  • Request correction or deletion
  • Withdraw consent at any time
  • Request restriction of processing
  • File a complaint with a supervisory authority

Analytics and Third-Party Tools

Your browsing behavior may be statistically evaluated, primarily using analytics tools. Details are provided below.

2. Hosting

This website is hosted by:

Strato AG

Otto-Ostrowski-Straße 7
10249 Berlin, Germany

When you visit this website, log files including your IP address are collected.

Legal basis:

  • Art. 6(1)(f) GDPR (legitimate interest in reliable website operation)
  • Art. 6(1)(a) GDPR if consent is obtained

We have concluded a Data Processing Agreement (DPA) with this provider.

3. General Information and Mandatory Disclosures

Data Protection

We treat your personal data confidentially and in accordance with applicable data protection laws and this Privacy Policy.

Please note that data transmission over the Internet (e.g., email communication) may have security vulnerabilities.

Controller Information

The controller responsible for data processing:

Martin Schmitz IT Security Consulting
Auf dem Kamp 6
41352 Korschenbroich
Germany

Phone: +49 2182 5731 400
Email: martin@martinschmitz.it

Data Retention

Your data will be stored only as long as necessary for the respective purpose unless legal retention obligations apply.

Legal Bases for Processing

Processing is based on:

  • Consent (Art. 6(1)(a) GDPR)
  • Contract fulfillment (Art. 6(1)(b) GDPR)
  • Legal obligations (Art. 6(1)(c) GDPR)
  • Legitimate interests (Art. 6(1)(f) GDPR)

Data Transfers to Third Countries

We may use tools from companies outside the EU (e.g., the United States).
Please note that these countries may not offer an equivalent level of data protection.

Withdrawal of Consent

You may withdraw your consent at any time with future effect.

Right to Object (Art. 21 GDPR)

You may object to the processing of your personal data at any time, particularly for direct marketing purposes.

Right to Lodge a Complaint

You have the right to file a complaint with a supervisory authority.

Data Portability

You have the right to receive your data in a machine-readable format or have it transferred to another controller.

Right to Restrict Processing

You may request restriction of processing under certain conditions.

SSL/TLS Encryption

This website uses SSL/TLS encryption to protect data transmission.

Objection to Marketing Emails

We object to the use of our contact data for unsolicited advertising.

4. Data Collection on This Website

Cookies

This website uses cookies. Cookies are small data files stored on your device.

Types of cookies:

  • Necessary cookies (technical functionality)
  • Analytics cookies (usage tracking)
  • Third-party cookies

Legal basis:

  • Art. 6(1)(f) GDPR (legitimate interest)
  • Art. 6(1)(a) GDPR (consent, if applicable)

You can configure your browser to manage or disable cookies.

Server Log Files

The hosting provider automatically collects:

  • Browser type/version
  • Operating system
  • Referrer URL
  • Hostname
  • Time of request
  • IP address

This data is not merged with other sources.

Contact Form

Data submitted via the contact form is stored to process your request.

Legal basis:

  • Contract (Art. 6(1)(b) GDPR)
  • Legitimate interest (Art. 6(1)(f) GDPR)
  • Consent (Art. 6(1)(a) GDPR)

Contact via Email / Phone

If you contact us, your data is processed solely to handle your request.

5. Analytics and Advertising

WP Statistics

We use WP Statistics for anonymous website analytics.

Collected data includes:

  • IP address (anonymized)
  • Browser and origin data
  • User interactions

Data is stored exclusively on our own server.

Legal basis:
Art. 6(1)(f) GDPR (legitimate interest in analysis and optimization)

6. Newsletter

To subscribe, we require your email address and consent.

  • Data is used only for sending newsletters
  • You can unsubscribe at any time
  • Your email may be stored in a blacklist to prevent future mailings

7. Plugins and Tools

YouTube

We embed YouTube videos in enhanced privacy mode.

Vimeo

We use Vimeo with “Do Not Track” enabled.

Google Fonts

Fonts are hosted locally. No connection to Google servers is made.

Google reCAPTCHA

Used to prevent spam and automated abuse.

Legal bases for these tools:

  • Art. 6(1)(f) GDPR (legitimate interest)
  • Art. 6(1)(a) GDPR (if consent required)

Final Note for International Users

This Privacy Policy is designed to comply with the General Data Protection Regulation (GDPR) and German data protection laws.