1) Introduction and Data Controller

 

We are pleased that you are visiting our website tomsmdt.com and thank you for your interest in our portfolio. Protecting your personal data is very important to us.

 

Data controller:

Tom Schmidt

tomsmdt.com

Email: contact@tomsmdt.com

 

The data controller is the person who decides alone or jointly with others on the purposes and means of processing personal data.

 

⸻

 

2) Data Collection When Visiting Our Website

 

2.1 Server Log Files

 

When you visit our website for informational use only (i.e. without registering or otherwise transmitting information), your browser automatically sends certain data to our server. This data is stored in so-called server log files, which may include:

•the website visited

•date and time of access

•amount of data transmitted

•source (referring URL) you came from

•browser used

•operating system used

•IP address (may be anonymized)

 

This data is processed based on Art. 6(1)(f) GDPR to safeguard our legitimate interest in ensuring the stability, functionality and security of our website. The data will not be combined with other data or used to identify you. However, we may review server logs later if there are specific indications of unlawful use.

 

⸻

 

2.2 SSL/TLS Encryption

 

For security reasons and to protect the transmission of confidential content (such as contact requests you send us), our website uses SSL or TLS encryption. You can recognize an encrypted connection by the “https://” and the lock symbol in your browser’s address bar.

 

⸻

 

3) Hosting by IONOS

 

Our website is hosted by IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, Germany. As part of hosting, all data processed on this website is stored on IONOS servers.

 

This is done for the purpose of providing and securing the operation of our website, based on our legitimate interest under Art. 6(1)(f) GDPR. We have concluded a data processing agreement (DPA) with IONOS in accordance with Art. 28 GDPR to ensure data protection compliance.

 

⸻

 

4) Cookies and Consent Management

 

Our website uses cookies to make the site more user-friendly, efficient, and secure. Cookies are small text files stored on your device. Some cookies are deleted when you close your browser (session cookies), others remain stored (persistent cookies).

 

We use a cookie consent tool that allows you to select which categories of cookies you wish to allow. Cookies that are not strictly necessary will only be set if you have given your consent under Art. 6(1)(a) GDPR.

 

You can also configure your browser to notify you about cookies, allow them on a case-by-case basis, exclude acceptance for certain cases or generally, or activate automatic deletion when closing the browser. Disabling cookies may limit website functionality.

 

⸻

 

5) Contact Form and Email Contact

 

If you contact us (for example by using the contact form or sending us an email), we will process your personal data (such as name, email address, and your message) solely to handle and respond to your inquiry.

 

This is based on our legitimate interest in answering your request under Art. 6(1)(f) GDPR. If your contact is aimed at concluding a contract, processing is also based on Art. 6(1)(b) GDPR.

 

We will delete your data once your request has been fully processed, provided there are no statutory retention obligations.

 

⸻

 

6) Links to Social Media Profiles

 

Our website contains links to external social media profiles (such as Instagram, YouTube or Vimeo). These are purely external links. When you click on such a link, you are redirected to the respective platform, which is then responsible for processing your personal data. Please refer to the privacy policies of these platforms for more information.

 

⸻

 

7) Blog

 

We publish articles on our website as part of a blog. No comment function is offered, and we do not use additional tracking or profiling in connection with the blog content.

 

⸻

 

8) Newsletter

 

We may offer a newsletter subscription in the future to inform you about new work, projects or blog articles. If you sign up for such a newsletter, we will use your provided email address and possibly your name to send you information. This will only happen with your explicit consent under Art. 6(1)(a) GDPR.

 

You can unsubscribe at any time by clicking the unsubscribe link in the newsletter or by contacting us directly. After unsubscribing, your data will be deleted unless further storage is legally required.

 

⸻

 

9) Your Rights Under GDPR

 

You have the following rights concerning your personal data:

•Right of access (Art. 15 GDPR)

•Right to rectification (Art. 16 GDPR)

•Right to erasure (Art. 17 GDPR)

•Right to restriction of processing (Art. 18 GDPR)

•Right to data portability (Art. 20 GDPR)

•Right to withdraw consent (Art. 7(3) GDPR)

•Right to object to processing based on legitimate interests (Art. 21 GDPR)

•Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)

 

⸻

 

10) Duration of Data Storage

 

The period for which personal data is stored depends on the applicable legal basis, the processing purpose, and—if relevant—statutory retention requirements.

 

Data processed based on consent will be stored until you withdraw your consent. Data processed on the basis of our legitimate interest will be stored until you object, unless we have compelling reasons to continue processing. Beyond that, data will only be stored as long as it is necessary for the purposes for which it was collected.

 

⸻

 

11) Updates to This Privacy Policy

 

We may update this privacy policy from time to time to comply with legal requirements or to reflect changes in our services. The current version will always be available on this website.

 

⸻

 

If you have any questions about how we handle your data, feel free to contact us at contact@tomsmdt.com.