Name and contact details of the data controller and the company data protection officer

This data protection information applies to data processing by:

Controller:

Chris Zielecki
Luruper Weg 24
2020257 Hamburg, Germany
Email: zielecki.com@zielecki.net
Phone: +49.15678.585800

  • Art. 6(1)(a) GDPR: Consent
  • Art. 6(1)(b) GDPR: Performance of a contract
  • Art. 6(1)(f) GDPR: Legitimate interests

Website Analytics and Newsletter Tracking

We use a cookie-free analytics system, operated by Tinybird, to understand and improve the use of our website. The following data is collected:

  • Number of page views and unique visitors
  • Geographical origin of visitors (at country level)
  • Referral sources (how you arrived at our website)
  • Real-time visitor numbers

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in analysing and improving our website)

Data processor: Tinybird / Ghost Foundation

💡
This analysis is conducted entirely without cookies and without storing any personal data.

Newsletter Analytics

If you have subscribed to our newsletter, we also collect:

  • Open rates: Whether and when you open our emails
  • Click behaviour: Which links you click on in our emails
  • Engagement metrics: Feedback such as "More of this" or "Less of this" ratings

Legal basis: Art. 6(1)(a) GDPR (your consent when subscribing to the newsletter)

Member Tracking

We track which content leads to new member sign-ups in order to optimise our content:

  • Number of sign-ups by post
  • Traffic sources that lead to memberships
  • Distinction between free and paid memberships

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in business optimisation)

Links to external websites are tagged with tracking parameters so that these websites can recognise that the traffic originated from our site.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in analysing our reach)

Your Rights

You have the right:

  • To request information about your personal data processed by us in accordance with Art. 15 GDPR. In particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of your data if it has not been collected by us, as well as the existence of automated decision-making, including profiling, and, if applicable, meaningful information about its details;
  • in accordance with Art. 16 GDPR, to demand the immediate correction of inaccurate or incomplete personal data stored by us;
  • in accordance with Article 17 of the Regulation, to request the erasure of your personal data stored by us, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise or defence of legal claims;
  • in accordance with Art. 18 GDPR, to request the restriction of the processing of your personal data, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure and we no longer require the data, but you need it for the assertion, exercise or defence of legal claims or you have objected to the processing in accordance with Art. 21 GDPR;
  • pursuant to Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transferred to another controller;
  • revoke your consent at any time in accordance with Art. 7 (3) GDPR. This has the consequence that we may no longer continue the data processing based on this consent in the future; and
  • complain to a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our registered office for this purpose.

Data Retention Period

Web analytics: Data is stored for a maximum of 26 months
Newsletter data: Until you unsubscribe from the newsletter
Member data: For as long as the member account exists

💡
Our policy is to only keep personal data until it is no longer needed for its intended purpose or where mandatory retention periods exist.

As our website analytics are completely cookie-free, no consent via a cookie banner is required.

Using the contact form

Data processing by Tally.so

We use the service Tally.so (Tally BVBA, Belgium) for our contact form. When you use our contact form, the data you enter is transmitted to and processed by Tally.so.

Data processed:

  • All information you enter in the form (e.g. name, email address, message)
  • Electronic identification data (e.g. IP address, browser information)

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in processing enquiries) or Art. 6(1)(a) GDPR (your consent for voluntary information)


Data Protection and Security

Data processing: Tally.so acts as a data processor on our behalf. We remain the controller for the data collected via the contact form.

Security measures:

  • Encryption of all form data both during transmission and in storage
  • Data stored in Europe (in compliance with GDPR)
  • Tally.so does not sell personal data or use it for marketing or advertising

Data Processing Agreement: We have a Data Processing Agreement (DPA) with Tally.so, which ensures that your data is processed in compliance with GDPR.

Data Transfer and Sub-processors

Tally.so may use sub-processors who are subject to the same data protection regulations. Data is only transferred to service providers who also operate in compliance with GDPR.

Storage Period and Deletion

  • Form data is stored for as long as is necessary to process your enquiry.
  • Deleted data is permanently removed from all backups within 90 days.
  • You can request the deletion or export of your form data at any time.

Your Rights

With regard to the data collected via the contact form, you have all the rights listed under "Your Rights". For enquiries regarding your form data, you can contact us directly.

Provider: Tally BVBA, Belgium (EU)
Privacy Policy: https://tally.so/help/privacy-policy

Upon conclusion of a contract

When concluding a contract, the following data will be collected from you:

  • Name
  • Residential address
  • Billing address, if applicable
  • Email address
  • Telephone number

The collection of data for the purpose of concluding a contract with us is carried out on a legal basis in accordance with Art. 6 Para. 1 S. 1 lit. b GDPR. This data is stored as long as it is necessary for the fulfilment of the contractual obligations or is legally required or, in the case of (ii), your consent to the storage of the data is revoked. In the case of (ii), the data collection is based on your voluntarily given consent in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR.

Transfer of data

We do not transfer your personal data to third parties for purposes other than those listed below.

We only pass on your personal data to third parties if:

  • you have given your express consent in accordance with Art. 6 para. 1 p. 1 lit. a GDPR,
  • the disclosure is necessary for the assertion, exercise or defence of legal claims in accordance with Art. 6 Para. 1 Sentence 1 lit. f GDPR and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data,
  • in the event that there is a legal obligation for disclosure in accordance with Art. 6 Para. 1 Sentence 1 lit. c GDOR, as well as
  • this is legally permissible and necessary for the processing of contractual relationships with you in accordance with Art. 6 Para. 1 Sentence 1 lit. b GDPR.
💡
We don't sell your data. Ever.
And we don't have "partners" to share your data with.

Essential Cookies

Our website uses technically necessary cookies that are required for the proper functioning of the site:

  • Member login cookies: Enable registered members to log in and be authenticated.
  • Session cookies: Ensure the technical functionality of the website.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in technical functionality)

💡
These cookies are essential for the operation of the website, cannot be disabled and don't need a "cookie-banner".

Data security

Technical Security Measures

We employ various security measures to protect your personal data:

  • SSL/TLS Encryption: All data transfers between your browser and our website are protected by SSL/TLS encryption (identifiable by the "https://" and the lock symbol).
  • Secure Data Transmission: Form data and login information are transmitted exclusively in encrypted form.
  • Up-to-date Security Standards: Regular updates and security patches will be installed by our hosting provider MagicPages.co.

Organisational Measures

Access Restrictions: Only authorised peresons have access to your data.

Data Breaches

In the unlikely event of a data breach, we will:

  • Inform the relevant supervisory authority within 72 hours.
  • Notify affected individuals without undue delay if there is a high risk.
  • Take appropriate measures to mitigate any damage.
💡
Despite all security measures, 100% security cannot be guaranteed for data transmission over the internet.

Up-to-dateness and amendment of this data protection declaration

This data protection declaration is based on the requirements of the General Data Protection Regulation applicable from May 2018, as well as the Federal Data Protection Act (new). It is updated on an ongoing basis. The current version is always available at https://www.zielecki.com/privacy-policy. Registered members will be notified of any material changes by email.