Legal

Privacy Policy

Last updated: May 2026

We take the protection of your data seriously. This policy describes which data we process on paarsein.pages.dev, why, how long, and to whom.

1. Controller

Eva [last name] and Thomas Lenglacher
[Address]
[Postcode] [City], Austria
Email: t.lenglacher@outlook.com

2. Which data we process

When you use the contact form

  • Name (required)
  • Email address (required)
  • Phone number (optional)
  • Content of your message
  • Time of submission

This data goes to us as an email. It is not stored in a database.

On every visit (technically required)

  • IP address
  • Browser type and version
  • Operating system
  • Page accessed and time
  • Referrer URL (which site you come from)

These so-called server log files are processed by our hosting provider Cloudflare to enable technical delivery of the site and to defend against attacks.

3. Legal basis

  • Contact form: Art. 6(1)(b) GDPR (initiation of a contract) and (a) (consent through submission)
  • Server log files: Art. 6(1)(f) GDPR (legitimate interest in secure and stable operation)
  • Web fonts: Art. 6(1)(f) GDPR (legitimate interest in consistent presentation)

4. Recipients of your data

We do not pass on your data, except to the following technical service providers that process data on our behalf:

  • Cloudflare, Inc. (USA)
    Hosting of the website and operation of the worker for the contact form. Data transfer based on standard contractual clauses and the EU-US Data Privacy Framework.
  • Resend, Inc. (USA)
    Sending the contact form mail to us. Your input is passed through the Resend system to deliver the email to us.
  • Google Ireland Limited (Ireland)
    Provision of the fonts Lora and Inter via the Google Fonts CDN. When loading the fonts, your IP address is transmitted to Google. We plan to deliver the fonts directly from our server in the future to avoid this transmission.

5. Transfers to third countries

Cloudflare and Resend are based in the USA. We base the transfer on standard contractual clauses under Art. 46 GDPR. Both companies are self-certified participants of the EU-US Data Privacy Framework.

6. Storage period

  • Contact form requests: stay in our mailbox as long as necessary for processing the correspondence. We delete them at the latest 12 months after the last correspondence, unless legal retention obligations apply.
  • Cloudflare server log files: are deleted according to Cloudflare's standard policies (typically after a few days to weeks).

7. Cookies

We do not set our own cookies on this website. Cloudflare may set security cookies necessary for technical delivery and attack protection, which are required for the operation of the site.

8. Your rights

Under GDPR you have the following rights:

  • Access to the data we process about you (Art. 15)
  • Rectification of incorrect data (Art. 16)
  • Erasure of your data, where no legal retention obligations apply (Art. 17)
  • Restriction of processing (Art. 18)
  • Data portability (Art. 20)
  • Objection to processing (Art. 21)

Just write to us at t.lenglacher@outlook.com, then we'll take care of it.

9. Right of complaint

If you believe we are not handling your data correctly, you can complain to the Austrian Data Protection Authority:

Datenschutzbehörde
Barichgasse 40-42, 1030 Vienna, Austria
dsb.gv.at

10. Changes

We may adjust this policy if legal requirements or our services change. The current version is always available here.

German version