Privacy policy
1. Controller: The controller for processing on this website is [Firmenname], [Anschrift]. Privacy contact: [Datenschutz-E-Mail].
2. Hosting and infrastructure: This website is self-hosted on servers operated by Hetzner Online GmbH (Germany/EU). Application (Payload CMS, Astro frontend), database (PostgreSQL), and optional object storage (Hetzner) remain under our control or with EU-based processors. Server log files (truncated or pseudonymised IP, timestamp, requested URL, user agent) are processed to ensure operation and defend against attacks; legal basis: legitimate interest (Art. 6(1)(f) GDPR).
3. Cookies and consent: By default, only strictly necessary cookies are set. Optional categories are enabled only after consent via the cookie banner: Necessary (core functions, consent storage, language), Social media (external embeds such as YouTube, Instagram, LinkedIn, OpenStreetMap/uMap, Vimeo, X/Twitter), Statistics (first-party audience measurement), Marketing (HTML ad snippets / house ads with external scripts). You may withdraw consent at any time – see section 10.
4. Cookie overview: cc_cookie | Stores your cookie consent and selected categories | 182 days | Necessary. locale | Remembers your preferred language | 30 days | Necessary. rcms_sid | Pseudonymous session ID for audience measurement | 30 minutes (SameSite=Lax) | Statistics (after consent only).
5. Consent logs (audit trail): Cookie decisions are logged pseudonymously via /api/consent/log: timestamp, consent type (accept all / necessary only / custom), consent revision, locale, hashed session ID, accepted categories, browser family, and page path. Retention: 24 months; older entries are deleted automatically. Legal basis where consent applies: Art. 6(1)(a) GDPR.
6. First-party analytics: With statistics consent, aggregated usage metrics are collected via our own infrastructure (no Google Analytics etc.). Events are sent to /api/analytics/collect – including page views, scroll depth, active reading time, internal search (no plaintext queries), newsletter sign-ups (hashed identifier only), media playback, and technical web vitals. No names, email addresses, or full IP addresses are stored; visitors are represented by a hashed pseudonymous identifier. Legal basis: consent (Art. 6(1)(a) GDPR).
7. External embeds (two-click): Third-party embeds load only after social media consent. HTML house ads load only after marketing consent. Personal data (e.g. IP address, device information) may be transferred to those providers; legal basis: consent (Art. 6(1)(a) GDPR).
8. Search (first-party): Site search uses our own infrastructure. When Meilisearch is enabled (self-hosted), queries are sent to our index; without Meilisearch, a fallback queries the Payload API. No search profiles are shared with external tracking services. Search terms are not stored in plaintext in analytics.
9. Newsletter: When you subscribe, we store only a hashed form of your email address in our database (newsletter_subscribers) – not plaintext. Sign-ups are rate-limited to prevent abuse (hashed client IP, configurable time window). Regardless of whether an address is already registered, you receive the same neutral confirmation response (no indication of existing registrations). Legal basis: consent (Art. 6(1)(a) GDPR); withdraw at any time via unsubscribe link or email to [Datenschutz-E-Mail].
10. Data subject rights: You have the right of access (Art. 15), rectification (Art. 16), erasure (Art. 17), restriction (Art. 18), portability (Art. 20), and objection (Art. 21 GDPR). You may withdraw consent (Art. 7(3) GDPR) at any time, e.g. via “Cookie settings” in the website footer – adjust categories or reset to “Necessary only”.
11. Right to lodge a complaint: You may complain to a supervisory authority, in particular in the EU member state of your residence, workplace, or the place of the alleged infringement. Competent authority: [Zuständige Aufsichtsbehörde eintragen].
12. Retention and deletion: Raw first-party analytics events are deleted after 90 days. Consent logs are deleted after 24 months. Newsletter data (hashed email) is retained until you withdraw consent or we discontinue the service. Server log files are rotated after standard operational periods.