Privacy Policy

1. Data Protection at a Glance

General Information

The following notes provide a simple overview of what happens to your personal data when you visit this website. Personal data is any data that can be used to personally identify you. Detailed information on data protection can be found in our privacy policy listed below this text.

2. Data Collection on this Website

Who is responsible for data collection on this website?

Data processing on this website is carried out by the website operator. You can find their contact details in the legal notice (Impressum) of this website.

How do we collect your data?

Your data is collected on the one hand by you providing it to us. This can be data that you enter in an application form, for example.

Other data is collected automatically by our IT systems when you visit the website. This is mainly technical data (e.g. internet browser, operating system or time of page access).

3. Application Form

When using our application form, we collect the following data:

• Full Name
• Email Address
• Website/Portfolio URL (optional)
• Application Text and Project Descriptions

The legal basis for processing this data is Art. 6 para. 1 lit. b GDPR (contract initiation). The data is used exclusively to process your application and will be deleted after completion of the application process, unless there are legal retention obligations.

4. Hosting and Content Delivery Networks (CDN)

Vercel

We host our website with Vercel Inc., 340 S Lemon Ave #4133, Walnut, CA 91789, USA. Vercel automatically collects and stores information in server log files that your browser automatically transmits. These are: browser type and version, operating system used, referrer URL, hostname of the accessing computer, time of server request and IP address. Data processing is based on Art. 6 para. 1 lit. f GDPR (legitimate interest in secure and efficient provision of our web offering).

5. External Services

Supabase (Database)

We use Supabase Inc. to store your application data. Supabase processes the data on our behalf in accordance with Art. 28 GDPR.

Stripe (Payment Processing)

For payment processing, we use Stripe, Inc., 510 Townsend Street, San Francisco, CA 94103, USA. Stripe is PCI-DSS certified. During payment processing, your payment data is transmitted directly to Stripe and processed there. We do not store complete credit card data. The legal basis is Art. 6 para. 1 lit. b GDPR (contract fulfillment).

Resend (Email Delivery)

For sending emails (confirmations, notifications), we use Resend. Your email address and message content are transmitted to Resend. The legal basis is Art. 6 para. 1 lit. b GDPR (contract fulfillment) and Art. 6 para. 1 lit. f GDPR (legitimate interest in reliable email delivery).

6. Your Rights

You have the right at any time to:

• Obtain information about your data stored by us and its processing (Art. 15 GDPR)
• Request correction of incorrect data (Art. 16 GDPR)
• Request deletion of your data stored by us (Art. 17 GDPR)
• Request restriction of data processing (Art. 18 GDPR)
• Object to data processing (Art. 21 GDPR)
• Request data portability (Art. 20 GDPR)
• Revoke consent at any time (Art. 7 para. 3 GDPR)
• File a complaint with a supervisory authority (Art. 77 GDPR)

7. Data Security

We use the widespread SSL (Secure Socket Layer) procedure in connection with the highest encryption level supported by your browser when you visit our website. Whether an individual page of our website is encrypted is indicated by the closed key or lock symbol in your browser's address bar.

8. Contact for Privacy Questions

If you have questions about the collection, processing or use of your personal data, for information, correction, blocking or deletion of data, or to revoke consent, please contact: