Privacy Policy

Privacy Policy

Who I am

The address of my website is: https://ewaldvorberg.de/homepage.

This website is operated by:
Ewald Vorberg
Rötebuckweg 9
D-79104 Freiburg im Breisgau
E-mail: info@ewaldvorberg.de
Phone: +4915152290476

Preamble

I run this website to share my photography with you – nothing else. I only collect your personal data if I have a legitimate interest in doing so.
I am not a fan of bureaucracy, but when it comes to data protection, it strikes mercilessly. It is not only a fertile field for law firms specialising in issuing cease-and-desist letters, but also an effective protection for hackers. I am not allowed to find out who is trying to crack my website – I only see that it happens every day. I have already been massively deceived once, and that was through an open door in a plug-in that was assigned to the GDPR (the General Data Protection Regulation – what a beautiful word).
I ask for your understanding that I have a legitimate interest in being able to identify and prevent hacker attacks.
The comments on my posts are almost without exception spam. Again, I ask for your understanding that I have a legitimate interest in being able to prevent this. To understand why I am doing this, please take a look at the spam counter at Akismet: https://akismet.com/. de/
I am only interested in your data if you want to write me a comment or a message. For this, too, I have to take special measures. Otherwise, the GDPR would require that I neither be able to read your message nor know who wanted to write to me.
I would be delighted if you were to visit my website to find out more about my photography and if you would like to write to me despite all the bureaucracy. 

What personal data I collect and why I collect it

I collect your personal data only when you write a comment, when you try to access a non-existent file from the internal directory of my website (404 error) or when you try to log in without authorisation.
I collect the data for comments because I have a legitimate interest in seeing what you write to me and who wrote it.
When you attempt to access non-existent data on my website, I collect your data because I have a legitimate interest in recognising and, if necessary, counteracting hacker attacks and in being able to correct errors on my website.

Comments

When you write comments on the website, I collect the data displayed in the comment form, as well as the visitor's IP address and the user agent string (which identifies the browser) to help detect spam. Before you can send me a comment or message, you must agree to your data being transferred to Akismet for checking for spam content. You can find the Akismet privacy policy here: https://akismet.com/de/datenschutz/.
An anonymised string (also known as a hash) can be created from your email address and passed to the Gravatar service to check whether you are using it. The Gravatar service's privacy policy can be found here: https://automattic.com/privacy/. After your comment has been approved, your profile picture will be visible to the public in the context of your comment.

Media

I do not collect any personal data when you upload media, especially since I do not even allow you to upload.

Contact forms

If you use my contact form, the same applies as when writing a comment, except that the content of your message will not be published and that you have not written to me.

Cookies

Did you notice? When you visited my website, there was no cookie warning – because there is none. Only when you write a comment or a message on my website can this be a consent to store your name, email address and website in cookies. The transmission only takes place if you have agreed to a cookie. This is a convenience function so that you do not have to re-enter all this data when you write another comment. These cookies are stored for one year, but you can delete them at any time.

Analytical services

I do not use any analytical service that stores or analyses personal data.

Embedded content from other websites

My website does not contain any content from other websites. If you click on an external link, the website you visit is outside my area of responsibility.

With whom I share your data

By writing a comment or a message, you agree to the transfer of your data to Akismet for the purpose of checking for spam content. You must explicitly agree to this before sending.

How long I store your data

If you write a comment, it will be stored indefinitely, including metadata. This way I can make it visible on my website and leave it there.
Stored data from WP 301 redirects are automatically deleted every 8 days.

What rights do you have to your data

If you have written comments, you can request an export of your personal data from me, including all data that you have provided to me. In addition, you can request the deletion of all personal data that I have stored about you. This does not include data that I am required to keep for administrative, legal or security reasons.
If you have tried to access non-existent pages, you can request an export of your personal data and its deletion from me within the storage period.

Where your data is sent

Webhosting

My website is hosted by:
STRATO AG
Otto-Ostrowski-Straße 7
10249 Berlin
Strato collects and stores personal data that is necessary for the operation of my website. Log data is collected and stored for visitors to my website: customer domain, anonymised client IP, request line, timestamp, status code, size of the response body, referer sent by the client, user agent sent by the client, remote user. Strato stores non-anonymised IP addresses for a maximum of seven days to detect attacks. After that, they are irrevocably anonymised. However, customers can view IP addresses exclusively and permanently anonymised. Strato supports  the legal basis of legitimate interests, Art. 6 para. 1 lit. f GDPR.
You can find Strato's privacy policy here: https://www.strato.de/datenschutz/

Akismet

Akismet collects information about visitors who leave comments or messages on websites that use the Akismet anti-spam service. Akismet collects  the IP address of the comment author, the user agent, the referrer and the URL of the website (supplemented by information provided directly by the author of the comment, e.g. name, user name, e-mail address and the comment itself).
The Akismet website can be found here: https://akismet.com/de/
You can find the data protection declaration of Akismet here: https://akismet.com/de/datenschutz/

Google Web Fonts

Google Web Fonts are a service provided by Google. By using this service, Google learns that this website has been accessed via your IP address. I have a legitimate interest in using this service to ensure that my website is displayed consistently.
Die Webseite von Google finden Sie hier:
Google Ireland Limited
Gordon House, Barrow Street
Dublin 4
Ireland
https://www.google.de/contact/impressum.html
The data protection declaration for Google services can be found here: https://policies.google.com/privacy?hl=de

WP 301 Redirects

WP 301 Redirects is a WordPress plugin that is used to analyse and redirect incorrect calls to my website. The plugin stores your IP address for such calls for a limited time only locally in my website area.
I claim the legitimate interest to use the data collected for this purpose, including your IP address, to identify hacker attacks and to correct any errors in the functioning of my website.
WP 301 Redirects is a plugin from WebFactoryLtd, based in Europe:
WebFactory Ltd
S. Batusica 5
10090 Zagreb
Croatia
https://www.webfactoryltd.com/about/

This company is therefore subject to European data protection regulations.
Information about the WP 301 Redirects plugin can be found here: https://wp301redirects.com

Contact details

See ‘Who I am’

How I protect your data

I will protect your data by only collecting it if I have a legitimate interest in doing so. The data collected is stored in a protected area that is only analysed by me and is not passed on to others. Unless it is required for comments, it will be deleted at regular intervals. 

What measures I offer in the event of data breaches

I am constantly educating myself about data protection. This is a central but bottomless concern for me, alongside photography.

From which third-party provider I receive data

I do not receive any data from a third party.

Which automated decision-making and/or profiling I carry out with user data

I do not carry out any automated decision-making or profiling with user data.

Postscriptum

Isn't that wonderful prose? Thanks to the bureaucrats.

Zurück nach Oben
Close Zoom