Privacy Policy

This privacy policy explains which personal data we process when operating this website, for what purposes, and what rights you have under the GDPR.

1. Data Controller

This website is hosted via Vercel (Vercel Inc.). To deliver and secure the website, personal data is processed (in particular connection data).
Processed data categories: IP address, date/time of access, requested page/URL, referrer, HTTP status, user agent (browser/OS), and potentially device/network data.
Purposes: technical delivery, stability, troubleshooting, and protection against abuse/attacks.
Legal basis: Art. 6(1)(f) GDPR (legitimate interest in operating a secure and performant website).

We use Vercel Web Analytics to measure and improve the use of our website.
In particular, page views and technical metadata (e.g., URL, referrer, device/browser information, timestamps) are processed; according to the provider, this is typically done without cookies.
Purpose: reach measurement and website optimization.
Legal basis: Art. 6(1)(f) GDPR; where consent is required in a specific case, processing is based on Art. 6(1)(a) GDPR.

If you contact us by email, we process your details (e.g., email address and message content) to handle your request.
Legal basis: Art. 6(1)(b) GDPR (pre-contractual/contractual communication) or Art. 6(1)(f) GDPR (general inquiries).
Retention: for as long as necessary to handle the request; afterwards according to statutory retention obligations or until the purpose no longer applies.

If you request contact and/or a demo via our contact form, we process the data you provide (in particular your email address) to handle your request and to take steps prior to entering into a (trial) contract relationship.
Technical implementation: the email address is transmitted server-side to HubSpot (Forms API); additional context data (e.g., visited page/URL) is transmitted.
Recipient: HubSpot (CRM platform) acting as a data processor.
Legal basis: Art. 6(1)(b) GDPR (pre-contractual steps / contractual communication).
Retention: until your request has been handled; thereafter in accordance with statutory retention obligations or until the purpose no longer applies.
Third-country transfers: depending on configuration, data may be transferred to third countries (e.g., the USA). Where required, we rely on appropriate safeguards (e.g., EU Standard Contractual Clauses) and/or an adequacy decision and implement additional measures where necessary.

We use technically necessary internationalization features (language/locale selection). A cookie may be set to store your language preference (e.g., "NEXT_LOCALE").
We do not set advertising/marketing cookies without required consent.

You have the right of access (Art. 15 GDPR), rectification (Art. 16 GDPR), erasure (Art. 17 GDPR), restriction (Art. 18 GDPR) and data portability (Art. 20 GDPR).
You may object to processing based on your particular situation (Art. 21 GDPR).
If processing is based on consent, you may withdraw consent at any time with effect for the future (Art. 7(3) GDPR).
You have the right to lodge a complaint with a supervisory authority (Art. 77 GDPR).

We implement technical and organizational measures to protect your data (e.g., TLS encryption during transmission).