Skip to main content
Simple Network

Privacy Policy

Information pursuant to Art. 13 and 14 GDPR

1. Controller

The controller responsible for data processing on this website is:

Kay-Uwe Ferver

Alter Landweg 77, 25795 Weddingstedt

Email: kontakt@simple-network.de

Phone: +49 174 7154883

2. Overview of data processing

This website is designed to be privacy-friendly by default. In particular:

  • No cookies are set by this website
  • No third-party tracking tools are used
  • Fonts are self-hosted (no Google Fonts)
  • Analytics are cookie-free and do not collect personal data
  • External services that set cookies require explicit consent via click-to-load

3. Hosting

This website is hosted on a dedicated server at Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, Germany. Hetzner is a German hosting provider that operates its data centres exclusively in Germany and Finland.

When you visit this website, the web server (Caddy) automatically logs the following data in server log files:

  • IP address of the requesting device
  • Date and time of access
  • URL of the requested page
  • HTTP status code
  • Browser type and version (user agent)
  • Referring URL

This data is necessary for the technical delivery of the website and to ensure system security. The legal basis is Art. 6 para. 1 lit. f GDPR (legitimate interest). Log files are automatically deleted after 14 days.

4. Language detection

To display the website in the appropriate language, your IP address is used to determine your approximate geographic location or the Accept-Language header of your browser is evaluated. German-speaking visitors are automatically redirected to the German version (/de/).

This data is not stored or persisted. No cookie is set for the language preference — the URL path is the sole source of truth. The legal basis is Art. 6 para. 1 lit. f GDPR (legitimate interest in providing content in the visitor's language).

5. Contact form

When you use the contact form, the following data is transmitted:

  • Name (optional)
  • Email address (required)
  • Message text

Your message is sent directly via SMTP (Strato AG, Berlin, Germany) to our email inbox. The data is not stored in a database on the server. A rate limit of 3 requests per IP address within 15 minutes is applied to prevent abuse.

The legal basis is Art. 6 para. 1 lit. b GDPR (pre-contractual measures) or Art. 6 para. 1 lit. f GDPR (legitimate interest in responding to enquiries). Your data will only be used to process your enquiry and will not be passed on to third parties.

6. Appointment booking

The appointment booking feature collects the following data:

  • Name
  • Email address
  • Phone number
  • Selected date and time

A 6-digit verification code is sent to your email address to confirm your identity. The code is valid for 10 minutes. After successful verification, the booking is stored in a local file on the server and a confirmation email is sent to you.

A rate limit of 3 verification codes per email address per hour is applied. The legal basis is Art. 6 para. 1 lit. b GDPR (pre-contractual measures). Booking data is retained for the purpose of the consultation and deleted afterwards upon request.

7. AI chat

The website may feature an AI-powered chat widget that uses a locally hosted language model (llama.cpp with GPT-OSS-20B). The chat runs entirely on our own server — no data is sent to third-party AI providers (no OpenAI, no Google, no Anthropic).

Chat messages are processed in memory and streamed back via Server-Sent Events (SSE). The chat history is stored in your browser's sessionStorage (not a cookie) and is cleared when you close the tab.

Anonymised chat logs (without IP addresses or user identifiers) may be retained for up to 30 days to improve the service, and are then automatically deleted. The legal basis is Art. 6 para. 1 lit. f GDPR (legitimate interest in improving the service).

8. Web analytics

This website uses Umami, a self-hosted, open-source analytics tool. Umami is designed to be privacy-friendly:

  • No cookies are set
  • No personal data is collected
  • No IP addresses are stored
  • No cross-site tracking
  • Fully GDPR-compliant without requiring consent

Only aggregated, anonymous metrics are collected (page views, visit duration, referrer). The data is stored exclusively on our own server. The legal basis is Art. 6 para. 1 lit. f GDPR (legitimate interest in understanding website usage).

9. Cookies

This website does not set any cookies. No cookie banner is required or shown.

Should future features require external services that set cookies (e.g. Google OAuth for chat callback requests), a click-to-load mechanism with explicit consent will be used. You will be informed before any cookie is set and must actively confirm.

10. SSL/TLS encryption

This website uses SSL/TLS encryption (HTTPS) via HTTP/3 (QUIC) for security reasons and to protect the transmission of personal data. You can recognise an encrypted connection by the lock icon in your browser's address bar.

11. Your rights

Under the GDPR, you have the following rights regarding your personal data:

  • Right of access (Art. 15 GDPR) — You may request information about your stored data
  • Right to rectification (Art. 16 GDPR) — You may request correction of inaccurate data
  • Right to erasure (Art. 17 GDPR) — You may request deletion of your data
  • Right to restriction (Art. 18 GDPR) — You may request restriction of processing
  • Right to data portability (Art. 20 GDPR) — You may request your data in a machine-readable format
  • Right to object (Art. 21 GDPR) — You may object to processing based on legitimate interests

To exercise any of these rights, please contact us at kontakt@simple-network.de.

12. Right to complain to a supervisory authority

If you believe that the processing of your personal data violates the GDPR, you have the right to lodge a complaint with a supervisory authority (Art. 77 GDPR). The responsible supervisory authority is:

Unabhängiges Landeszentrum für Datenschutz Schleswig-Holstein (ULD)

Holstenstraße 98, 24103 Kiel

Website: www.datenschutzzentrum.de