Privacy Policy

1. Controller

The controller within the meaning of the General Data Protection Regulation is:

Eric Schmall

Quellweg 29

90427 Nürnberg

Germany

Further information about our company and contact options can be found in our Impressum.

2. General Information on Data Processing

In principle, we only process users' personal data insofar as this is necessary to provide a functional website and our content and services.

Personal data is regularly processed only after the user has given consent or if processing is permitted by legal regulations.

3. Hosting

Our website is operated by an external service provider (hosting provider).

As part of the hosting process, personal data generated when visiting the website (e.g. IP addresses, meta and communication data) is processed.

The legal basis is Art. 6 Para. 1 lit. f GDPR (legitimate interest in the secure and efficient provision of our online offer).

We have concluded a data processing agreement (DPA) with the hosting provider.

4. Collection of Server Log Files

When you access our website, information is automatically transmitted from the user's browser to our server and temporarily stored in so-called log files.

The following can be recorded:

IP address

Date and time of the request

Browser type and version

Operating system

Referrer URL

This data is not merged with other data sources.

The legal basis is Art. 6 Para. 1 lit. f GDPR (technical provision and security of the website).

Data is only stored for as long as is necessary to ensure the functionality of the website, usually for a maximum of 7 days.

5. Privacy-First Analytics (No Cookies)

We use Simple Analytics (Simple Analytics B.V., Willem Fenengastraat 16, 1096 BN Amsterdam, Netherlands) to understand how visitors interact with our website.

No Tracking & No Cookies

Simple Analytics does not use cookies, local storage, or any other tracking technologies. No "fingerprinting" is used to identify individual users.

Data Minimization

We do not collect or store any personal data (including IP addresses, which are discarded immediately after a session is initiated). All data is processed in an anonymous, aggregated form.

European Sovereignty

All data is processed and stored on European servers (Netherlands) by a 100% EU-owned company. This ensures that no data is subject to the US CLOUD Act or similar non-European jurisdictions.

No Consent Required

Because no personal data is collected and no cookies are placed on your device, this service does not require a cookie consent banner under the GDPR or TDDDG.

Legal Basis

Art. 6 (1) lit. f GDPR (Legitimate Interest in optimizing our web presence and security).

6. Contact Form

If you send us inquiries via the contact form, your details from the form, including the contact data you provided there, will be stored for the purpose of processing the inquiry and in case of follow-up questions.

Legal Basis

Art. 6 Para. 1 lit. b GDPR (pre-contractual measures), if your request aims at the conclusion of a contract

Art. 6 Para. 1 lit. f GDPR (legitimate interest in processing inquiries)

The data remains with us until the purpose for data storage no longer applies or you request deletion, provided there are no statutory retention obligations.

7. Cookies

Our website does not use cookies. We have intentionally chosen a privacy-first approach and do not use any tracking, advertising, or analytical cookies that would require your consent.

8. Web Fonts

To ensure a professional and consistent visual presentation of our services, this website uses web fonts. To uphold our commitment to European Data Sovereignty, all fonts used on WirSchwatzen are hosted locally on our own servers. No connection to external servers (such as Google APIs) is established, and no personal data (e.g., your IP address) is transmitted to third-party providers in the United States or elsewhere during the loading of these fonts.

9. Content Delivery Network (CDN) & Security

We use services provided by Cloudflare, Inc. (101 Townsend St, San Francisco, CA 94107, USA) to protect our website against attacks (e.g., DDoS) and to optimize loading speeds.

Data Processing

When using our website, your traffic is technically routed through Cloudflare's infrastructure. In the process, IP addresses and technical connection data may be transmitted to Cloudflare's servers. Since Cloudflare is a US provider, a transfer of data to the USA cannot be ruled out.

Legal Safeguards

We have concluded a Data Processing Agreement with Cloudflare based on the current Standard Contractual Clauses of the EU Commission to ensure an appropriate level of data protection.

Legal Basis

Art. 6 (1) lit. f GDPR (Legitimate interest in the security and stability of our website).

10. Data Processing in Our Systems

The data collected via the website is used exclusively for processing inquiries and for communication.

Data will only be passed on to third parties if this is necessary to fulfill the respective purpose or if there is a legal obligation.

Processing takes place within systems operated in the European Union.

11. Storage Period

Personal data is only stored for as long as is necessary to achieve the respective purposes or as required by statutory retention periods.

12. Your Rights

Within the scope of the applicable legal provisions, you have the following rights:

Right to information about your stored data (Art. 15 GDPR)

Right to rectification of incorrect data (Art. 16 GDPR)

Right to erasure (Art. 17 GDPR)

Right to restriction of processing (Art. 18 GDPR)

Right to data portability (Art. 20 GDPR)

Right to object to processing (Art. 21 GDPR)

13. Revocation of Your Consent

You can revoke your consent to the processing of personal data at any time with effect for the future.

14. Right to Complain to a Supervisory Authority

You have the right to complain to a data protection supervisory authority about the processing of your personal data.