Privacy Policy agtecher

1. Controller (Art. 4 No. 7 GDPR)

2. Data Protection Officer

No data protection officer has been appointed, as the legal requirements of Art. 37 GDPR are not met for this Website.

3. Purposes and Legal Bases for Processing

We process personal data for the following purposes:

a) Provision of the Website / Server Logs

• Data processed: IP address, date and time of request, URL accessed, referrer, browser type and version, operating system, HTTP status code.
• Purpose: Technical delivery of the Website, ensuring stability, troubleshooting, IT security.
• Legal basis: Art. 6 (1)(f) GDPR (legitimate interest in a secure and functional website).

b) Communication

• Data processed: E-mail address and any information you send us when contacting us.
• Purpose: Handling and responding to your enquiries.
• Legal basis: Art. 6 (1)(b) GDPR (contract initiation) or Art. 6 (1)(f) GDPR (legitimate interest in processing enquiries).

c) Consent-Based Services (§ 25 TDDDG + Art. 6 (1)(a) GDPR)

Certain third-party services store or read information on your device. These are activated only after you have given consent via our Consent Management Platform (CMP):

• Cloudflare Browser Insights (website performance analytics)
• Google Fonts API (web font delivery)
• Twitter Emoji (Twemoji) (emoji rendering)
• Mailmunch (newsletter sign-up and email marketing)

Your consent is logged and can be withdrawn at any time via the "Cookie Settings" link in the footer.

4. Third-Party Services in Detail

Cloudflare (Content Delivery Network & Security)

• Provider: Cloudflare, Inc., 101 Townsend St., San Francisco, CA 94107, USA
• Purpose: Performance optimisation, DDoS protection, security.
• Legal basis: Art. 6 (1)(f) GDPR (legitimate interest) or Art. 6 (1)(a) GDPR (if analytics features are activated).
• Third-country transfer: USA — safeguarded by EU Standard Contractual Clauses (SCCs).

Google Fonts API

• Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
• Purpose: Uniform display of fonts on the Website.
• Legal basis: Art. 6 (1)(a) GDPR in conjunction with § 25 (1) TDDDG (consent required).

Twitter Emoji (Twemoji)

• Provider: Twitter, Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA
• Purpose: Rendering emoji graphics on the Website.
• Legal basis: Art. 6 (1)(a) GDPR in conjunction with § 25 (1) TDDDG.

Mailmunch

• Provider: Mailmunch Inc., 3500 South DuPont Highway, Dover, DE 19901, USA
• Purpose: Newsletter subscriptions, email marketing automation.
• Legal basis: Art. 6 (1)(a) GDPR (newsletter opt-in), § 7 UWG (marketing consent).
• Third-country transfer: USA — safeguarded by SCCs.

5. Hosting

Our Website is hosted on servers provided by:

All data that is stored in the course of using this Website is processed on servers located in Germany. Hetzner acts as our processor under Art. 28 GDPR, based on a Data Processing Agreement (DPA). Processing is carried out exclusively within the European Union / European Economic Area.

6. Recipients of Data

We only transmit data to third parties if necessary for the purposes stated above, if you have given your consent, or if required by law.

7. Data Retention

• Server logs: Deleted after 14–30 days unless required for incident investigation.
• Newsletter data: Stored until you unsubscribe.
• Consent logs: Retained for up to 2 years for proof of compliance.

8. Your Rights under the GDPR (Art. 15–22 GDPR)

You have the right to:

• Access your personal data (Art. 15 GDPR)
• Rectify incorrect data (Art. 16 GDPR)
• Erase your data ("right to be forgotten", Art. 17 GDPR)
• Restrict processing (Art. 18 GDPR)
• Data portability (Art. 20 GDPR)
• Object to processing based on legitimate interests (Art. 21 GDPR)
• Withdraw your consent at any time (Art. 7 (3) GDPR)
• Lodge a complaint with a supervisory authority (Art. 77 GDPR), e.g.:
  Hamburg Commissioner for Data Protection and Freedom of Information, Ludwig-Erhard-Str 22, 20459 Hamburg, Germany

9. Security Measures

We use TLS encryption for all connections, role-based access control, regular updates, and secure hosting with DDoS protection.

10. Changes to This Privacy Policy

We may amend this Privacy Policy from time to time, particularly to comply with changes in law or to introduce new services. The current version is always available on this Website.