Niklas Schäffer Logo
  • About
  • Work
  • Showcase
  • Contact

Privacy Policy

Data Protection Declaration

Last updated: August 2025

1. Data Protection at a Glance

General Information

The following gives a simple overview of what happens to your personal information when you visit this website. Personal information is any data with which you could be personally identified. Detailed information on the subject of data protection can be found in our privacy policy found below.

Data Collection on this Website

Who is responsible for the data collection on this website?

The data collected on this website are processed by the website operator. The operator's contact details can be found in the website's required legal notice.

How do we collect your data?

Some data are collected when you provide it to us. This could, for example, be data you enter on a contact form. Other data are collected automatically by our IT systems when you visit the website. These data are primarily technical data such as the browser and operating system you are using or when you accessed the page. These data are collected automatically as soon as you access this website.

2. Hosting

This website is hosted externally. The personal data collected on this website are stored on the servers of the host(s). This may include, but is not limited to, IP addresses, contact requests, metadata and communications, contract data, contact details, names, web page accesses, and other data generated through a web site.

External hosting serves the purpose of contract fulfillment towards our potential and existing customers (Art. 6 para. 1 lit. b GDPR) and in the interest of secure, fast, and efficient provision of our online service by a professional provider (Art. 6 para. 1 lit. f GDPR).

3. General Information and Mandatory Information

Data Protection

The operators of this website take the protection of your personal data very seriously. We treat your personal data as confidential and in accordance with the statutory data protection regulations and this privacy policy.

If you use this website, various pieces of personal data will be collected. Personal information is any data with which you could be personally identified. This privacy policy explains what information we collect and what we use it for. It also explains how and for what purpose this happens.

Note on Data Transfer to the USA

Our website includes tools from companies domiciled in the USA. When these tools are active, your personal data can be transferred to the US servers of the respective companies. We must point out that the USA is not a safe third country in the sense of EU data protection law. For transfers to the USA, we rely on adequacy decisions, Standard Contractual Clauses (SCCs), or other appropriate safeguards as required under Articles 44-49 GDPR.

Legal Basis for Processing

We process your personal data based on the following legal grounds under Article 6 GDPR:

  • Legitimate Interest (Art. 6(1)(f) GDPR): For website functionality, security, and performance optimization
  • Consent (Art. 6(1)(a) GDPR): When you voluntarily contact us or subscribe to services
  • Contract Performance (Art. 6(1)(b) GDPR): For fulfilling contractual obligations

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. Server log files are typically retained for up to 90 days for security and performance analysis.

4. Data Collection on this Website

Server Log Files

The website provider automatically collects and stores information that your browser automatically transmits to us in "server log files". These are:

  • Browser type and browser version
  • Operating system used
  • Referrer URL
  • Host name of the accessing computer
  • Time of the server request
  • IP address

These data will not be combined with data from other sources. The basis for data processing is Art. 6 (1) (f) GDPR, which allows the processing of data to fulfill a contract or for measures preliminary to a contract.

Contact via Email

If you send us questions via email, we will collect the data provided in the email (your email address, name if provided, and message content) in order to answer your questions. We do not share this information without your permission.

5. Analytics and Advertising

This website does not currently use analytics tools or advertising services that collect personal data.

6. Plugins and Tools

Google Fonts

This site uses web fonts provided by Google for the uniform display of fonts. When you access a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly. For this purpose your browser has to establish a direct connection to Google servers. Google thus becomes aware that our web page was accessed via your IP address.

Font Awesome

This website uses Font Awesome for displaying icons. Font Awesome is provided by Fonticons, Inc. When you access this website, your browser loads the required icon fonts. This may result in a connection to Font Awesome's servers.

7. Your Rights Under GDPR

As a data subject under GDPR, you have the following rights:

  • Right of Access (Art. 15 GDPR): Request information about your personal data processed by us, including the purposes of processing, categories of data, and recipients
  • Right to Rectification (Art. 16 GDPR): Request correction of inaccurate or incomplete personal data
  • Right to Erasure (Art. 17 GDPR): Request deletion of your personal data under certain circumstances ("right to be forgotten")
  • Right to Restriction (Art. 18 GDPR): Request restriction of processing of your personal data in specific situations
  • Right to Object (Art. 21 GDPR): Object to processing of your personal data based on legitimate interests or for direct marketing purposes
  • Right to Data Portability (Art. 20 GDPR): Request your personal data in a structured, commonly used format for transfer to another controller
  • Right to Withdraw Consent: Where processing is based on consent, you can withdraw it at any time

How to Exercise Your Rights

To exercise any of these rights, please contact us at: me@nickey.dev. We will respond to your request within 30 days as required by GDPR.

Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority if you believe your data protection rights have been violated. You can contact your local data protection authority or the supervisory authority in the EU member state where you reside, work, or where the alleged infringement took place.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. This includes encryption in transit (HTTPS), secure hosting infrastructure, and regular security assessments. However, no method of transmission over the internet is 100% secure.

9. Changes to This Privacy Policy

We may update this privacy policy from time to time to reflect changes in our practices, applicable laws, or for other operational, legal, or regulatory reasons. We will notify you of any material changes by posting the updated policy on this website with a new "Last updated" date.

© 2025 Niklas Schäffer. All rights reserved.

Imprint Privacy Policy

Last updated: Aug 6, 2025, 03:15 PM GMT+2