Privacy

Privacy Policy

Personal data (hereinafter mostly referred to simply as “data”) is processed by me only to the extent necessary and for the purpose of providing a functional and user-friendly website, including its content and services.

According to Art. 4 No. 1 GDPR, “processing” means any operation or set of operations which is performed on personal data, whether or not by automated means.

With the following Privacy Policy, I inform you in particular about the type, scope, purpose, duration, and legal bases of the processing of personal data.

The Privacy Policy is structured as follows:
I. Information about me as the controller
II. Rights of data subjects
III. Information on data processing

I. Information about me as the controller

The controller responsible for this website within the meaning of data protection law is:

Vincent Tietz
Friedrichstr. 25c
01069 Dresden
Germany
Phone: 0351/4400071
Email: web@vincent-tietz.de

II. Rights of data subjects

Within the framework of the statutory provisions, you are in particular entitled to the following rights:

  • Access (Art. 15 GDPR)
  • Rectification (Art. 16 GDPR)
  • Erasure (Art. 17 GDPR)
  • Restriction of processing (Art. 18 GDPR)
  • Data portability (Art. 20 GDPR)
  • Objection to processing based on Art. 6 (1) (f) GDPR (Art. 21 GDPR)
  • Complaint to a supervisory authority (Art. 77 GDPR)

III. Information on data processing

1) Server log data

For technical reasons, connection data is processed when the website is accessed (e.g. browser type/version, operating system, referrer URL, pages visited, date/time, IP address).

Processing is carried out on the basis of Art. 6 (1) (f) GDPR (legitimate interest in security, stability, and technical provision of the website).

2) Contact requests (contact form / email)

If you contact me via contact form or email, I will process the information you provide in order to handle your request.

In particular, the following data may be processed:

  • Name, email address, subject, message
  • where applicable, selected recipient and “copy to sender” option
  • language and page context (e.g. locale, page path)
  • technical data for abuse protection (e.g. hashed IP, truncated user agent, timestamp, internal processing status)

Legal bases:

  • Art. 6 para. 1 lit. b GDPR (pre-contractual/contractual communication),
  • alternatively Art. 6 para. 1 lit. f GDPR (efficient processing, prevention of abuse and IT security).

Storage period:
The data will be deleted as soon as the request has been finally processed and there are no legal retention obligations to the contrary.

3) Sending emails in the context of contact requests

SMTP services are used for sending notification and response emails (own mail server or configured SMTP infrastructure).

For delivery purposes, in particular sender, recipient and content data are processed.
The legal basis is Art. 6 para. 1 lit. b GDPR or Art. 6 para. 1 lit. f GDPR.

4) Reach/usage analysis (server-side)

For technical and content optimization, page views may be logged server-side (e.g. requested path, referrer, truncated user agent, country, search reference, time).

The legal basis is Art. 6 para. 1 lit. f GDPR (legitimate interest in operation, error analysis and optimization of the service).

5) Recipients / Processing on behalf

Personal data will only be transmitted to the extent necessary for the provision of services (e.g. hosting, email infrastructure) or if there is a legal obligation.
If external service providers are used, this is done on the basis of a data processing agreement in accordance with Art. 28 GDPR, where required.