Privacy Policy
I am an ambassador of privacy rights. Thus I highly welcome that the European Union introduces extensive privacy regulations. Herewith I assure that as long as you are not getting in touch with me by email, you are surfing anonymously on my website.
Data Controller
The data controller responsible for data processing on this website is Manuel Christlieb. For full contact details, please refer to the legal notice.
Hosting
This website is hosted by Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, Germany. When you visit this website, Hetzner processes technical data such as your IP address, the requested page, date and time of access, browser type and operating system. This is necessary for delivering the website and ensuring its stable operation.
The use of Hetzner is based on Art. 6(1)(f) GDPR — my legitimate interest in providing a reliable and secure website.
SSL/TLS Encryption
This website uses SSL/TLS encryption (recognizable by "https://" in the address bar) to protect the transmission of data between your browser and my server. Encrypted connections prevent third parties from reading data in transit.
Cookies
This website uses non personal related cookies solely for technical and security reasons. Cookies are tiny text files stored on your device. The cookies I use do not process any personal data.
| Name | Value | Paths | Storage | Reason |
|---|---|---|---|---|
| XSRF-Token | random hash key | all | 1 day | security: prevents you against CSRF attacks |
| session | random hash key | all | 1 day | technical: if applicable it stores encrypted user information e.g. language preferences or access rights to restricted pages |
Log Files
My server collects log files from each user session for auditing and security purposes. Those information are provided by your web browser and usually include technical data such as type and version of your browser, operating system, referrer URL, time of request as well as personal data such as your IP address.
Before logging I anonymize your IP address by replacing the last three digits with an 'X'. This process makes the log files solely of technical nature without any possibility (at least to my knowledge) to trace the data back to a person.
The processing of log files is based on Art. 6(1)(f) GDPR — my legitimate interest in ensuring the security and stability of the website. Log files are automatically deleted after 14 days.
Code Syntax Highlighting (Torchlight)
Blog posts on this website may contain code blocks. To provide syntax highlighting, the code block content is sent to the Torchlight API (torchlight.dev) for processing. No personal data is transmitted — only the raw code content of the respective block.
The use of Torchlight is based on Art. 6(1)(f) GDPR — my legitimate interest in presenting code in a readable and visually highlighted format.
Media Storage (Hetzner Object Storage)
Images and media files displayed on this website may be stored on Hetzner Object Storage, a service provided by Hetzner Online GmbH. When you load a page containing such media, your browser connects to Hetzner's storage servers to retrieve the files, transmitting technical data such as your IP address.
The use of Hetzner Object Storage is based on Art. 6(1)(f) GDPR — my legitimate interest in efficient and reliable delivery of media content.
Getting in Touch
I welcome you to get in touch with me to discuss possible cooperation. This way I do collect personal data from you like your email address and any other personal data that you may reveal within the process of our communication.
I view those communication requests as steps prior entering into a contract (Art. 6(1)(b) GDPR). If you get in touch with me, I assume you accept this view. I will delete your personal data as soon as our contract ends or as soon as I realize that we are not going to enter into a contract.
Rights of the Data Subject
Under the GDPR, you have the following rights regarding your personal data:
- Right of access (Art. 15 GDPR) — You may request information about your processed data at any time.
- Right to rectification (Art. 16 GDPR) — You may request correction of inaccurate data.
- Right to erasure (Art. 17 GDPR) — You may request deletion of your data, subject to legal retention obligations.
- Right to restriction of processing (Art. 18 GDPR) — You may request that processing of your data be restricted.
- Right to data portability (Art. 20 GDPR) — You may request your data in a structured, machine-readable format.
- Right to object (Art. 21 GDPR) — You may object to the processing of your data based on legitimate interests.
To exercise any of these rights, please contact me via the details on the legal notice page.
Right to Lodge a Complaint
If you believe that the processing of your personal data violates the GDPR, you have the right to lodge a complaint with a supervisory authority (Art. 77 GDPR). The competent supervisory authority is:
Bayerisches Landesamt für Datenschutzaufsicht (BayLDA) Promenade 18 91522 Ansbach Germany www.lda.bayern.de