Home CV Books Project City Get in touch

Privacy Policy

This privacy policy explains the nature, scope, and purpose of the processing of personal data (hereinafter referred to as "data") within this website. It is based on the General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG).

Controller

The party responsible for data processing on this website is:

Danny Stey
Paul-Kurz-Str. 21
84453 Mühldorf
Germany

hi@steylish.de
+49 173 65 28 134

The controller is the natural person who, alone or jointly with others, determines the purposes and means of the processing of personal data.

General Information

I take the protection of your personal data very seriously. I treat your personal data confidentially and in accordance with statutory data protection regulations and this privacy policy. As a rule, this website can be used without providing any personal data. Insofar as personal data (for example, your name, address, or email address) is collected, this is done, as far as possible, on a voluntary basis. Please note that data transmission over the internet (for example, when communicating by email) can have security gaps. A complete protection of data against access by third parties is not possible.

Hosting

This website is hosted on a virtual server (Droplet) operated by DigitalOcean, LLC, 105 Edgeview Drive, Suite 425, Broomfield, CO 80021, USA (hereinafter "the host"). The server is located in the host's data center in Frankfurt am Main, Germany (region "FRA1"), so that the data processed in connection with the operation of this website is stored within the European Union. When you visit this website, the host automatically collects and stores information that your browser transmits in so-called server log files (see "Server Log Files" below). The use of the host serves the purpose of providing this website reliably and securely. This constitutes a legitimate interest within the meaning of Art. 6 (1) (f) GDPR.

A data processing agreement (Auftragsverarbeitungsvertrag) in accordance with Art. 28 GDPR is in place with the host. It is incorporated by reference into the host's terms of service and ensures that the host processes the personal data of website visitors only in accordance with my instructions and in compliance with the GDPR.

Data Transfer to Third Countries

The data processed in connection with this website is stored on a server located in Frankfurt am Main, Germany, and therefore within the European Union. The host, however, is a company based in the USA, so access to the data from a third country (the USA) cannot be entirely ruled out.

For such cases, an appropriate level of data protection is ensured: DigitalOcean, LLC is certified under the EU-U.S. Data Privacy Framework, which the European Commission has recognized as providing an adequate level of protection pursuant to Art. 45 GDPR. In addition, the host's data processing agreement incorporates the standard contractual clauses adopted by the European Commission pursuant to Art. 46 (2) (c) GDPR, supplemented by further protective measures where appropriate.

Server Log Files

When you access this website, the hosting provider automatically collects and stores information in so-called server log files, which your browser transmits automatically. These are:

  • browser type and browser version
  • operating system used
  • referrer URL
  • host name of the accessing computer
  • time of the server request
  • IP address

This data is not merged with other data sources. The collection of this data is based on Art. 6 (1) (f) GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of the website — for this purpose, the server log files must be recorded. Log file data is stored only for as long as necessary for these purposes and is then deleted.

Contact by Email

If you contact me by email, the data you provide (your email address and the contents of your message, including any name or other details you choose to include) will be stored for the purpose of processing your enquiry and in case of follow-up questions. The legal basis for processing is Art. 6 (1) (b) GDPR where your enquiry relates to the performance of a contract or pre-contractual measures, and otherwise Art. 6 (1) (f) GDPR, based on my legitimate interest in handling enquiries directed to me. I do not pass this data on without your consent. The data will be deleted once your request has been dealt with and provided that there are no statutory retention obligations to the contrary.

Cookies and Tracking

This website does not use cookies that require consent, and it does not use any analytics, tracking, or advertising services. No usage profiles are created, and no visitor data is shared with third parties for these purposes.

SSL/TLS Encryption

For security reasons and to protect the transmission of confidential content, this website uses SSL/TLS encryption. You can recognize an encrypted connection by the "https://" prefix in your browser's address bar and the lock symbol.

Your Rights

Under the GDPR, you have the following rights with respect to your personal data:

  • the right to information about your stored data (Art. 15 GDPR)
  • the right to rectification of inaccurate data (Art. 16 GDPR)
  • the right to erasure (Art. 17 GDPR)
  • the right to restriction of processing (Art. 18 GDPR)
  • the right to data portability (Art. 20 GDPR)
  • the right to object to processing (Art. 21 GDPR)
  • the right to withdraw a given consent at any time, with effect for the future (Art. 7 (3) GDPR)

To exercise any of these rights, you can contact me at any time using the contact details listed above.

Right to Object

If data is processed on the basis of Art. 6 (1) (f) GDPR (legitimate interests), you have the right to object to this processing at any time on grounds relating to your particular situation. I will then no longer process the personal data concerned unless I can demonstrate compelling legitimate grounds for the processing which override your interests, rights, and freedoms, or the processing serves to assert, exercise, or defend legal claims.

Right to Lodge a Complaint

You have the right to lodge a complaint with a data protection supervisory authority. The authority responsible for me is:

Bayerisches Landesamt für Datenschutzaufsicht (BayLDA)
Promenade 18
91522 Ansbach
Germany

Changes to This Privacy Policy

I reserve the right to amend this privacy policy so that it always complies with current legal requirements or to reflect changes to my services in the privacy policy. The current version of the privacy policy always applies to your next visit.