Note: This is an English convenience translation. The German version is the legally binding one.
Privacy Policy
1. Controller
KonSaaS UG (haftungsbeschränkt) i.G. (German limited-liability entrepreneurial company, in formation), Albert-Einstein-Straße 34, 63322 Rödermark, Germany. Represented by the Managing Director Christoph Konersmann. Email: info@konsaas.com.
A data protection officer is not legally required for the processing carried out via this website (§ 38 BDSG, German Federal Data Protection Act). For data protection enquiries, please contact info@konsaas.com.
2. Hosting and technical provision
This website is provided on infrastructure operated by KonSaaS UG (haftungsbeschränkt) i.G. within the European Union. We use:
- Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, Germany (server / cloud infrastructure),
- BunnyWay d.o.o. (bunny.net), Dunajska cesta 167, 1000 Ljubljana, Slovenia (content delivery network / edge delivery).
Both providers process personal data exclusively as processors on the basis of contracts pursuant to Art. 28 GDPR and exclusively on servers within the EU.
3. Server log files
This website is delivered statically. The origin server does not store any access logs (no access log containing IP addresses or request data). Technical access data is only generated at the upstream CDN / edge layer (Bunny); there, the IP address is anonymised at the point of collection (truncation of the last octet) and is not stored in any downstream logging or analytics systems. The technical raw access data at the edge layer is deleted after no more than 3 days. The processing is carried out to ensure secure and stable operation on the basis of Art. 6 (1) (f) GDPR (legitimate interest).
4. Contacting us
This website does not provide a contact form; any email link offered merely opens your email program and does not trigger any data processing via the website. If you contact us by email (info@konsaas.com) or by post, we process the information you provide (e.g. name, email address, content of your message) solely to handle your enquiry. The legal basis is Art. 6 (1) (f) GDPR (legitimate interest in responding to the enquiry) or Art. 6 (1) (b) GDPR, in so far as the enquiry is directed at the conclusion or performance of a contract. The data is deleted as soon as the enquiry has been conclusively dealt with and no statutory retention obligations prevent this. No transfer to third countries takes place.
5. Cookies and Reach Measurement
This website does not set any cookies. No marketing, advertising or cross-site tracking services and no external third-party services (e.g. font loaders, maps, social media plug-ins) are embedded. Local storage is used solely if you actively object to the reach measurement described below (opt-out); your objection decision is then stored purely locally in your browser and is not transmitted to us. Without such an opt-out, this website uses neither cookies nor local or session storage.
5.1 Reach Measurement with Matomo (Self-Hosted)
To statistically analyse the use of this website, we use the open-source web analytics service Matomo. Matomo is self-hosted by us on infrastructure within the European Union (server location Germany). No data is transferred to third parties or to a third country.
During use, technical access data is processed (including the pages visited, the time of access, the referrer URL, the browser type and operating system used, and the approximate geographic area at country level). Your IP address is heavily truncated before any storage (IPv4: only the first octet is stored, the remaining three octets are removed; IPv6: truncation to the /24 prefix) and is not stored in clear text, so that no reference to your person can be established.
The reach measurement itself is carried out cookielessly; Matomo does not store any information on your device for this purpose, so that consent pursuant to § 25 TDDDG is not required. The legal basis for the processing is our legitimate interest in the needs-based design and statistical analysis of our services (Art. 6 (1) (f) GDPR). Your browser's Do Not Track setting is respected; if it is enabled, no measurement takes place.
The collected raw data is deleted after no more than 6 months; beyond that, only anonymous, aggregated statistics are retained.
Objection (opt-out): You can object to the reach measurement at any time — either by enabling “Do Not Track” in your browser or via the toggle below. For this purpose, your objection decision is stored exclusively locally in your browser (local storage); no cookie is set and no information is transmitted to us. If you delete your browser data, you may need to set the objection again.
6. Your rights
You have the right of access (Art. 15), rectification (Art. 16), erasure (Art. 17), restriction of processing (Art. 18), data portability (Art. 20) and to object to processing (Art. 21 GDPR). To exercise these rights, please contact info@konsaas.com.
7. Right to lodge a complaint
You have the right to lodge a complaint with a data protection supervisory authority. The competent authority is: Der Hessische Beauftragte für Datenschutz und Informationsfreiheit (Hessian Commissioner for Data Protection and Freedom of Information), Postfach 3163, 65021 Wiesbaden, Germany.
8. No automated decision-making
No automated decision-making, including profiling within the meaning of Art. 22 GDPR, takes place.