Fabian Meyer Software and Web Developer

Privacy Policy

I. Person Responsible for Data Processing

Responsible for data privacy for the purposes of the EU General Data Protection Regulation (GDPR) and other data protection laws is:

Fabian Meyer
Marxzeller Str. 15
76199 Karlsruhe
Germany
Email: mail@meyfa.net

For questions concerning the data protection on this website, please use the available contact form.

II. General Information

1. Extent

In general, we process personal data of our users only to the extent required for providing a functional website, as well as our contents and services. The data is only processed with the user's consent. An exception exists in those cases where obtaining consent prior to the data processing is factually impossible and where the processing is permitted by law.

2. Legal Basis

Where a person has given consent to the processing of his or her personal data, article 6 paragraph 1 letter a of the EU General Data Protection Regulation (GDPR) serves as the legal basis.

Where processing is necessary for the performance of a contract to which the affected person is party or where it is necessary in order to take steps at the request of the affected person prior to entering into a contract, article 6 paragraph 1 letter b GDPR serves as the legal basis.

Where the processing is necessary for compliance with a legal obligation to which we are subject, article 6 paragraph 1 letter c GDPR serves as the legal basis.

Where the processing is necessary in order to protect the vital interests of the affected person or any other natural person, article 6 paragraph 1 letter d GDPR serves as the legal basis.

Where the processing is necessary for the purposes of the legitimate interests pursued by the site operator or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the affected person, article 6 paragraph 1 letter f GDPR serves as the legal basis.

3. Data Deletion and Duration of Retention

In general, personal data is only retained until the purpose of its storage ceases to exist. Moreover, the data will be deleted or blocked as soon as a retention period set by the national or transnational governmental body ends, except when further storage is required to settle or fulfill a contract.

III. Website Delivery and Creation of Log Files

1. Nature and Extent of Data Processing

For every request made to view our website, data and information will be collected automatically from the requesting device. The following data is collected:

• The user's browser type and version
• The user's operating system type and version
• The user's IP address
• The date and time of access
• The addresses of the content that was requested from our website

The data is saved in our system's log files. The data is not saved in combination with any other personal data of the user, and we are unable to personally identify the user based on the above data.

2. Legal Basis

Article 6 paragraph 1 letter f GDPR serves as the legal basis for the temporary storage of data and log files.

3. Purpose of Data Collection

Temporarily saving the user's IP address is necessary for the delivery of website files to the user's device.

The data is stored inside system log files for the purposes of ensuring the website's functionality and availability. Additionally, we use the data for protection and optimization of our technical infrastructure. The data is not evaluated for marketing purposes.

4. Storage Duration

The data is deleted as soon as it has served its purpose. For the data that is collected for website delivery, this is the case when the respective session ends. For the data saved in log files, this is the case after a duration of, at most, seven days. Extended storage is possible; in this case, the entries will be anonymized by deletion or distortion of user IP addresses.

5. Objection and Data Removal

The collection of data for the delivery of the website and the storage of data in log files are absolutely necessary for the website's continued operation. Because of this, it is not possible for the user to object to the collection.

IV. Contact Form and Email Contact

1. Nature and Extent of Data Processing

Our website contains a contact form that can be used for contacting us electronically. When a visitor decides to make use of this option, the data entered into the form will be transmitted to us and stored. The following information is collected:

• The person's name
• The person's email address
• The message content

As part of the form submission process, we ask for your consent to the data collection and also refer to this Privacy Policy.

Alternatively, we may be contacted via email at the address provided earlier. In that case, the personal data that is sent as part of the email will be stored.

No data will be given to third parties in this context. The personal data will be used exclusively for handling the conversation.

2. Legal Basis

Article 6 paragraph 1 letter a GDPR serves as the legal basis for the processing of personal data with the user's consent.

Where data is processed as a result of the transmission of an email, article 6 paragraph 1 letter f GDPR serves as the legal basis. Additionally, where the email contact is made with the intention of entering into a contract, article 6 paragraph 1 letter b GDPR may serve as the legal basis.

3. Purpose of Data Collection

The processing of personal data that was entered into the contact form or sent via email is done for the sole purpose of handling the conversation.

4. Storage Duration

The data is deleted as soon as it has served its purpose. For the personal data collected via the provided contact form and for the data collected via email, this is the case when the respective conversation is concluded. A conversation is concluded when it is apparent from context that the subject matter is fully settled.

5. Objection and Data Removal

The user is at all times able to revoke the permission given to us for the processing of their personal data. When contacting us via email, the user can disallow storage of their personal data at any point. In such a case, the conversation cannot be continued. All personal data collected as part of the contact request will then be deleted.

V. Rights of the Data Subject

If your personal data is processed, the GDPR grants you, the data subject, the following rights towards the controller (us):

1. Right of Access

You can request from us a confirmation as to whether or not personal data concerning you is being processed.

Where that is the case, you can request access to the following information:

• the purposes of the processing;
• the categories of personal data concerned;
• the recipients or categories of recipients to whom the personal data have been or will be disclosed;
• where possible, the planned period for which the personal data will be stored, or, if not possible, the criteria used to determine that period;
• the existence of the right to request from us rectification or erasure of personal data or restriction of processing of personal data concerning the data subject or to object to such processing;
• the right to lodge a complaint with a supervisory authority;
• where the personal data are not collected from the data subject, any available information as to their source;
• the existence of automated decision-making, including profiling, referred to in Article 22 paragraph 1 and 4 GDPR and, at least in those cases, meaningful information about the logic involved, as well as the significance and the targeted consequences of such processing for the data subject.

You have the right to be informed about whether or not personal data concerning you is transferred to a third country or to an international organization. Where that is the case, you have the right to be informed of the appropriate safeguards pursuant to Article 46 GDPR relating to the transfer.

2. Right to Rectification

You have the right to have inaccurate data concerning you corrected. The rectification has to happen without undue delay.

3. Right to Restriction of Processing

You have the right to obtain from us restriction of processing where one of the following applies:

• you contest the accuracy of the personal data for a period enabling us to verify the accuracy of the personal data;
• the processing is unlawful and you oppose the erasure of your personal data and request the restriction of its use instead;
• we no longer need the personal data for the purposes of the processing, but they are required by you for the establishment, exercise or defense of legal claims; or
• you have objected to processing pursuant to article 21 paragraph 1 pending the verification whether our legitimate grounds override yours.

Where processing has been restricted under paragraph 1, such personal data shall, with the exception of storage, only be processed with your consent or for the establishment, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.

When the processing was restricted as described above, you shall be informed by us before the restriction of processing is lifted.

4. Right to Erasure

a) Erasure Obligation

You have the right to demand the erasure of personal data concerning you and we have the obligation to erase personal data without undue delay where one of the following grounds applies:

• the personal data is no longer necessary in relation to the purpose for which it was collected or otherwise processed;
• you withdraw consent on which the processing is based according to article 6 paragraph 1 letter a or article 9 paragraph 2 letter a GDPR, abd where there is no other legal ground for the processing;
• you object to the processing pursuant to article 21 paragraph 1 and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to article 21 paragraph 2;
• the personal data has been unlawfully processed;
• the personal data has to be erased for compliance with a legal obligation in Union or Member State law to which we are subject; or
• the personal data has been collected in relation to the offer of information society services referred to in article 8 paragraph 1 GDPR.

b) Information to Third Parties

Where we have made the personal data public and ares obliged pursuant to paragraph 1 to erase the personal data, we, taking account of available technology and the cost of implementation, shall take reasonable steps, including technical measures, to inform controllers which are processing the personal data that the data subject has requested the erasure by such controllers of any links to, or copy or replication of, those personal data.

c) Exceptions

The right to erasure does not exist to the extent that processing is necessary:

• for exercising the right of freedom of expression and information;
• for compliance with a legal obligation which requires processing by Union or Member State law to which we are subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in us;
• for reasons of public interest in the area of public health in accordance with article 9 paragraph 2 letters h and i as well as article 9 paragraph 3 GDPR;
• for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes in accordance with article 89 paragraph 1 in so far as the right referred to in paragraph 1 is likely to render impossible or seriously impair the achievement of the objectives of that processing; or
• for the establishment, exercise or defense of legal claims.

5. Right to Notification

We are obligated to communicate any rectification or erasure of personal data or restriction of processing to each recipient to whom the personal data has been disclosed, unless this proves impossible or involves disproportionate effort.

You have the right to be informed about those recipients.

6. Right to Object

You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on article 6 paragraph 1 letter e or f.

We will no longer process the personal data unless we demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defense of legal claims.

7. Right to Withdrawal of Consent

You have the right to withdraw your consent at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.

8. Right to Lodge a Complaint with a Supervisory Authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the GDPR.

The supervisory authority with which the complaint has been lodged shall inform the complainant on the progress and the outcome of the complaint including the possibility of a judicial remedy pursuant to article 78 GDPR.