Legal

Privacy policy.

This website processes as little personal data as possible. No advertising cookies, no US trackers — for traffic measurement we use a self-hosted, anonymous analytics tool without cookies and without storing IP addresses. The legally binding version is the German one; this English translation is for convenience only.

Data controller

Daniel Piculjan, Pageartist, Leverkusen, Germany. Contact: info@pageartist.de · 0214 / 86097937. Full address in the legal notice.

Cookies and similar technologies

We only set strictly necessary cookies required to operate this website. No statistics, marketing, or tracking cookies are used. You can change your selection any time via .

Strictly necessary

These cookies are required for the website to function (e.g. language preference, contact-form spam protection) and cannot be disabled. Legal basis: GDPR Art. 6(1)(f) and § 25(2) no. 2 TDDDG.

Name Purpose Storage duration Provider
pa_lang Speichert die gewählte Sprache (DE/EN) für nginx-seitige Auto-Detection. 1 Jahr Pageartist (erstanbieter)
cf_clearance Cloudflare Turnstile — Bot-Schutz im Kontaktformular. Session Cloudflare
cc_consent Speichert die Cookie-Auswahl, damit der Banner nicht erneut erscheint. 6 Monate Pageartist (erstanbieter)

Hosting

The website is hosted in Germany (Hetzner Online GmbH, Gunzenhausen). Static files are served by the web server without database-backed profiling. The host processes only technically necessary server logs (IP address, timestamp, requested URL, user agent) on the basis of Art. 6 (1)(f) GDPR for the legitimate interest in stable operation and attack prevention. Logs are deleted after 14 days, are not analyzed for traffic measurement, and are not combined with other data.

Fonts

The Geist and Geist Mono fonts are served directly from our server in Germany. No connection is established to Google Fonts or any other external font service — your IP address is not transmitted to any third party when loading the fonts.

Traffic measurement (Umami)

We use Umami, an open-source, privacy-friendly analytics tool, to see how often pages are viewed and from which sources visitors arrive. Umami runs on our own server within the EU (analytics.adriahub.de) — the data does not leave our infrastructure. No data is transmitted to third parties, and in particular no data is transferred to the United States.

Umami operates without cookies and without persistent recognition: your IP address is used only briefly to identify a visitor's path within a single day (hashed with a daily-rotating salt) and is not stored in the database. Only aggregated metrics are collected, such as page viewed, approximate location (country, region and city — derived from the IP, which itself is not stored; accuracy is typically at the ISP-node level and does not reflect the actual location), browser, and screen resolution. Tracking across days or across websites is technically impossible.

Legal basis: Art. 6 (1)(f) GDPR — legitimate interest in privacy-friendly traffic measurement to improve the site. Because no personal profile is created and no cookies are set, no consent is required under the position of the German Data Protection Conference (DSK). We respect the Do-Not-Track signal of your browser — if enabled there, no measurement takes place. You can additionally block the tracker via browser extensions; the site remains fully functional.

Contact form

When you use our contact form, the following data is transmitted:

This data is processed on a server in Germany, sent to us by email and additionally stored locally on the same server so requests can be reliably tracked. The data is not shared with third parties. Legal basis: Art. 6 (1)(b) GDPR (pre-contractual measures) and/or (1)(a) (consent via the mandatory checkbox). Providing this data is voluntary; without it, however, we cannot process your request.

Storage period: until the request is resolved plus a reasonable follow-up period (typically 12 months). You can request deletion at any time by email.

Cloudflare Turnstile

We use Cloudflare Turnstile as spam protection on the contact form. Turnstile checks in the background whether the request comes from a human, without showing classic CAPTCHAs; for this it establishes a connection to challenges.cloudflare.com. Cloudflare processes limited technical browser data (user agent, IP address, telemetry for bot detection). Legal basis: Art. 6 (1)(f) GDPR — protection against automated abuse. Cloudflare is certified under the EU-US Data Privacy Framework.

SSL/TLS encryption

This website uses TLS (HTTPS) throughout. Content and form submissions are protected from being read by third parties.

Your rights

You have the right at any time to access (Art. 15 GDPR), rectification (Art. 16), erasure (Art. 17), restriction (Art. 18), data portability (Art. 20), and objection (Art. 21). You also have the right to file a complaint with the competent supervisory authority — in NRW: the State Commissioner for Data Protection and Freedom of Information of North Rhine-Westphalia, ldi.nrw.de.

Changes to this policy

We update this privacy policy whenever functionality or applicable law changes. Last updated: May 2026.