Privacy Policy

Last updated: April 2026

1. Responsible Party

The entity responsible for data processing on this website is:

[Name]
[Street Address]
[City, Postal Code]
[Country]

Contact E-Mail: [contact email]

2. Overview of Data Processing

We take the protection of your personal data very seriously. This website processes only a minimal amount of data that is technically necessary to provide the service. We do not use tracking, analytics, advertising, or social media plugins.

The following gives an overview of all data processing on this website:

• Server log files — automatically collected by our web server (see Section 3)
• DNS resolution — handled by Cloudflare in DNS-only mode (see Section 4)
• Search function — runs entirely in your browser, no data sent to our server (see Section 5)
• Fonts — self-hosted, no data sent to third parties (see Section 6)
• No cookies — this website does not set any cookies (see Section 7)

3. Server Log Files

When you visit this website, our web server (Nginx) and reverse proxy (Traefik) automatically collect and store the following information in server log files:

• IP address (anonymized where possible)
• Date and time of the request
• Requested URL
• HTTP status code
• Browser type and operating system (User-Agent)
• Referrer URL (the page you came from)

Purpose: These logs are collected for technical reasons — to ensure the security and stability of the server, and to diagnose errors. We do not analyze these logs for marketing or profiling purposes.

Storage duration: Server logs are automatically deleted after 14 days.

Legal basis: Art. 6(1)(f) GDPR — legitimate interest in maintaining the security and functionality of the website.

4. DNS Resolution (Cloudflare)

This website uses Cloudflare for DNS resolution only. Cloudflare operates in DNS-only mode (no proxy), meaning:

• Cloudflare only resolves the domain name to our server's IP address
• Your browser connects directly to our server — your data does not pass through Cloudflare
• Cloudflare does not see or process your HTTP requests
• No Cloudflare cookies are set

Legal basis: Art. 6(1)(f) GDPR — legitimate interest in making the website accessible via domain name resolution.

Cloudflare's privacy policy: https://www.cloudflare.com/privacypolicy/

5. Search Function (Pagefind)

This website offers a search function powered by Pagefind. Pagefind is a static search engine — the entire search index is built into the website and loaded into your browser. No search queries or results are sent to our server or any third party. All search happens locally on your device.

6. Fonts

All fonts used on this website (Cinzel, Merriweather, JetBrains Mono) are self-hosted on our own server. No requests are made to Google Fonts or any other third-party font provider. Your IP address is not transmitted to any external font service.

7. Cookies

This website does not use any cookies — neither tracking cookies, marketing cookies, nor third-party cookies. No cookie consent banner is required or displayed.

8. TLS/SSL Encryption

This website uses TLS encryption (HTTPS) via Let's Encrypt. All data transmitted between your browser and our server is encrypted. Let's Encrypt does not collect personal data beyond what is necessary for certificate issuance.

Let's Encrypt privacy policy: https://letsencrypt.org/privacy/

9. Third-Party Services

This website does not use any of the following:

• Analytics tools (Google Analytics, Matomo, etc.)
• Advertising networks
• Social media plugins or tracking pixels
• Content delivery networks (CDN)
• External API calls

10. Your Rights under GDPR

Under the General Data Protection Regulation (GDPR), you have the following rights:

• Right of access (Art. 15 GDPR) — You can request information about what personal data we process about you
• Right to rectification (Art. 16 GDPR) — You can request correction of inaccurate data
• Right to erasure (Art. 17 GDPR) — You can request deletion of your personal data
• Right to restriction (Art. 18 GDPR) — You can request restriction of processing
• Right to data portability (Art. 20 GDPR) — You can request your data in a portable format
• Right to object (Art. 21 GDPR) — You can object to processing based on legitimate interest
• Right to lodge a complaint (Art. 77 GDPR) — You can complain to a supervisory authority

To exercise any of these rights, please contact us at: [contact email]

11. Data Security

We take appropriate technical and organizational measures to protect your data against unauthorized access, alteration, disclosure, or destruction. These include:

• TLS encryption for all connections (HTTPS)
• Regular server security updates
• Minimal data collection principles
• No unnecessary data processing or sharing

12. Changes to This Policy

We may update this privacy policy from time to time. The current version is always available on this page. We recommend reviewing this policy periodically.