Privacy Policy

Controller

The controller within the meaning of the General Data Protection Regulation (GDPR) and other data protection legislation is:

Managing Directors:

Sebastian Fastner, Sebastian Werner

Email:

info@sebastian-software.de

A data protection officer has not been appointed, as the legal requirements for this do not apply. For data protection inquiries, you can contact the email address listed above.

Overview of Data Processing

This website does not process personal data beyond what is technically necessary. No cookies are set, no tracking is used, and no analytics tools are employed. There is no contact form – contact is made exclusively via email.

Hosting and Content Delivery Network

This website is operated via the infrastructure of Bunny.net (BunnyWay d.o.o., Slovenia, EU). Bunny.net provides the following services:

• CDN (Content Delivery Network) for delivering static files (HTML, JavaScript, CSS)
• Edge Scripting for server-side logic at Bunny.net nodes
• Storage for static files and assets

Processed Data

Each page request processes the following categories of technical connection data: network identification data (IP address), time-related metadata (timestamp), usage data (requested URL), and technical metadata (browser type, operating system, and device information). This data is held by Bunny.net exclusively in working memory (RAM) in accordance with the contract and is automatically deleted after 20–30 seconds. No persistent storage takes place.

Legal Basis

Processing is based on Art. 6(1)(f) GDPR. Our legitimate interest lies in ensuring the availability, integrity and security of the website. This interest outweighs the data subjects' interest in non-processing, as connection data is processed exclusively transiently in working memory and automatically deleted after a few seconds. Insofar as information on the user's terminal device is accessed (e.g. through edge scripting), this is permissible without consent pursuant to Section 25(2)(2) TDDDG, as the access is strictly necessary to provide the service explicitly requested by the user.

Third-Country Data Transfer

Bunny.net is based in Slovenia (EU/EEA). However, in the course of CDN operations, data may temporarily be processed on servers outside the EEA. For these transfers to third countries, Bunny.net has entered into Standard Contractual Clauses (SCCs) pursuant to Art. 46(2)(c) GDPR. In addition, a Transfer Impact Assessment (TIA) was conducted in accordance with the recommendations of the European Data Protection Board (EDPB), confirming the effectiveness of the safeguards in place. Bunny.net contractually commits that connection data on CDN nodes is only processed transiently and not stored permanently. Furthermore, a data processing agreement pursuant to Art. 28 GDPR is in place, in which Bunny.net ensures that sub-processors implement adequate data protection measures in accordance with the GDPR.

Obligation to Provide Data

The transmission of your IP address is technically necessary to access this website. Without this data transmission, no connection to the server can be established and the website cannot be displayed. There is no legal or contractual obligation to provide any further personal data.

Further information can be found in the Bunny.net privacy policy and on the Bunny.net GDPR page.

Contact via Email

When you contact us by email, the data you provide (email address, name if applicable, and message content) will be processed to handle your inquiry. If your inquiry is aimed at concluding or performing a contract, the legal basis is Art. 6(1)(b) GDPR (pre-contractual or contractual measures). For general inquiries without a contractual context, the legal basis is Art. 6(1)(f) GDPR; our legitimate interest lies in the proper handling of incoming inquiries. This interest prevails, as processing is limited to what is necessary for responding and data is deleted upon completion. Your data will be deleted once the inquiry has been fully resolved. Where tax or commercial law retention obligations apply (§ 257 HGB, § 147 AO), the relevant data will be retained for up to 10 years.

Processors

We use the following processors pursuant to Art. 28 GDPR, with each of whom a data processing agreement is in place:

BunnyWay d.o.o. (Bunny.net), Slovenia

CDN, hosting and edge scripting for this website

External Links

This website contains links to third-party websites. When you click on these links, you will be redirected to the respective third-party site. The respective operators are responsible for data processing on these external sites. We recommend that you read the privacy policies of the linked sites.

Automated Decision-Making

No automated decision-making, including profiling, pursuant to Art. 22 GDPR takes place.

Your Rights

Under the GDPR, you have the following rights regarding your personal data:

• Right of access (Art. 15 GDPR)
• Right to rectification (Art. 16 GDPR)
• Right to erasure (Art. 17 GDPR)
• Right to restriction of processing (Art. 18 GDPR)
• Right to data portability (Art. 20 GDPR)
• Right to object (Art. 21 GDPR) – see separate section below

To exercise your rights, you may contact us at any time at: info@sebastian-software.de

Right to object (Art. 21 GDPR)

Where we process your personal data on the basis of legitimate interests pursuant to Art. 6(1)(f) GDPR, you have the right to object to such processing at any time pursuant to Art. 21 GDPR. If you object, we will no longer process your personal data for these purposes unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the establishment, exercise or defence of legal claims.

To exercise your right to object, you may contact us at any time at: info@sebastian-software.de

Right to Lodge a Complaint with a Supervisory Authority

You have the right to lodge a complaint with a data protection supervisory authority regarding the processing of your personal data. The supervisory authority responsible for us is: