1. Responsible in terms of data protection laws:

Christopher Lorenz
Taunusstraße 62, 35510 Butzbach

hallo[at]christopherlorenz.net
OpenPGP Key (external Link)

2. Data Protection

I treat your personal data confidentially and in accordance with the applicable data protection regulations, in particular the General Data Protection Regulation (GDPR) and the current version of the German Federal Data Protection Act (BDSG).

To ensure an appropriate level of protection, I have implemented suitable technical and organizational measures, taking into account the state of the art, implementation costs, and the nature, scope, context, and purposes of the processing.

3. Definitions

Below are the key terms as defined by the GDPR and BDSG:

3.1 Personal Data
Any information relating to an identified or identifiable natural person.

3.2 Processing
Any operation related to personal data, such as collection, recording, storage, transmission, or deletion.

3.3 Pseudonymization
Processing in a way that personal data can no longer be attributed to a specific individual without additional information.

3.4 Processor
Third parties who process personal data on behalf of the controller.

3.5 Recipient
Any natural or legal person to whom personal data is disclosed.

3.6 Third Party
Any natural or legal person other than the data subject, the controller, the processor, or persons authorized to process data under the direct authority of the controller or processor.

3.7 Consent
A freely given, informed, and unambiguous indication of the data subject’s agreement to the processing of their personal data.

4. Data Collection When Visiting This Website

4.1 Cookies
This website only uses a technically necessary session cookie, which is required for the website to function properly. This cookie contains a session ID and is automatically deleted when you close your browser. No additional cookies (e.g., tracking or third-party cookies) are set.

4.2 Server Log Files
When you visit this website, the following data is automatically collected by my hosting provider:

· IP address (anonymized)
· Date and time of the request
· Requested content (specific page)
· Access status/HTTP status code
· Amount of data transferred
· Referring website
· Operating system and browser information

The IP address is fully anonymized (replaced with 127.0.0.1). This data is not merged with other data sources. The legal basis is my legitimate interest under Art. 6 (1)(f) GDPR to ensure the technical functionality, stability, and security of the website.

A data processing agreement has been concluded with my hosting provider in accordance with Art. 28 GDPR.

4.3 Email Contact
If you contact me by email, the personal data you provide (e.g., name, email address) will be stored and processed. The processing is based on Art. 6 (1)(b) GDPR (for the performance of a contract or pre-contractual measures), your consent (Art. 6 (1)(a) GDPR), or my legitimate interest (Art. 6 (1)(f) GDPR).

You can revoke your consent at any time without formal requirements by sending me an email.

Your messages will be deleted once they are no longer needed for communication purposes. I review the necessity at the end of each year. Statutory retention periods remain unaffected (10 years for commercial law, 6 years for tax law).

4.4 Analytics Tools
I do not use any analytics tools (e.g., Google Analytics) or tracking services.

5. Data Subject Rights Under GDPR

You have the right to the following at any time:

5.1 Access (Art. 15 GDPR)
Information about your stored personal data, its origin, recipients, and the purpose of processing.

5.2 Rectification (Art. 16 GDPR)
Correction of inaccurate or incomplete data.

5.3 Erasure (Art. 17 GDPR)
Deletion of your personal data, unless legal retention obligations or other legitimate reasons prevent this.

5.4 Restriction of Processing (Art. 18 GDPR)
Restriction of processing under certain conditions.

5.5 Data Portability (Art. 20 GDPR)
Transfer of your personal data in a structured, commonly used, and machine-readable format to you or another controller.

5.6 Right to Object (Art. 21 GDPR)
You have the right to object at any time to the processing of your data, provided it is based on Art. 6 (1)(e) or (f) GDPR.

Revocation of Consent:
You may revoke any consent you have given at any time with future effect.

6. Right to Lodge a Complaint with a Supervisory Authority

Under Art. 77 GDPR, you have the right to lodge a complaint with a data protection supervisory authority. Usually, the authority responsible for your place of residence applies.

7. Contact for Data Protection Inquiries

If you have any questions about data protection, feel free to contact me at any time. Please note that I must verify your identity before responding to any data-related requests.

E-mail: hallo[at]christopherlorenz.net
OpenPGPKey (external Link)