Privacy Policy

Introduction

Stefan Knoch ("I", "me", or "my") operates stefanknoch.com (the "Website"). This Privacy Policy explains how I collect, use, and protect your personal information when you visit my website or use my services.

I am committed to protecting your privacy and ensuring transparency about how your data is handled. This policy complies with the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA).

Information I Collect

Information You Provide Directly

• Contact Information: Name, email address, and message content when you submit the contact form
• Communication Records: Any correspondence you send to me via email or contact forms

Information Collected Automatically

• Analytics Data: Page views, time spent on pages, bounce rate, referring websites, and general location (city/country level) via Google Analytics
• Technical Information: Browser type, device type, screen resolution, and operating system for website optimization
• Performance Data: Website loading times and performance metrics via Vercel Analytics and Speed Insights

How I Use Your Information

• Business Communication: To respond to your inquiries and provide information about my services
• Website Improvement: To understand how visitors use the website and optimize user experience
• Performance Monitoring: To ensure the website loads quickly and functions properly across different devices
• Content Optimization: To understand which blog posts and content are most valuable to visitors
• Security: To protect against spam, abuse, and security threats

Cookies and Tracking Technologies

This website uses cookies and similar technologies to enhance your experience and gather analytics data. You can control cookie preferences through the cookie consent banner displayed on your first visit.

Types of Cookies Used

• Essential Cookies: Required for basic website functionality and remembering your cookie preferences
• Analytics Cookies: Google Analytics cookies (_ga, _ga_*) to understand website usage and improve content
• Performance Cookies: Vercel Analytics for monitoring website performance and user experience

Data Sharing and Third Parties

I do not sell, rent, or share your personal information with third parties for marketing purposes. However, I use the following trusted service providers:

• Google Analytics: For website analytics and understanding user behavior. Data is processed according to Google's Privacy Policy.
• Vercel: For website hosting, analytics, and performance monitoring. Data is processed according to Vercel's Privacy Policy.
• Email Services: Contact form submissions are processed through secure email services for business communication.

These services operate under their own privacy policies and data protection agreements. I ensure all service providers meet appropriate privacy and security standards.

Your Rights and Choices

Under GDPR and CCPA, you have the following rights regarding your personal data:

• Access: Request a copy of the personal data I hold about you
• Correction: Request correction of inaccurate or incomplete personal data
• Deletion: Request deletion of your personal data ("right to be forgotten")
• Portability: Request transfer of your data in a machine-readable format
• Opt-out: Withdraw consent for analytics tracking or marketing communications
• Restriction: Request restriction of processing under certain circumstances

To exercise these rights, please contact me using the information provided at the end of this policy. I will respond to your request within 30 days.

Cookie Management

You can manage your cookie preferences at any time:

• Cookie Banner: Use the cookie consent banner to accept or reject analytics cookies
• Browser Settings: Configure your browser to block or delete cookies
• Opt-out Tools: Use Google Analytics opt-out browser add-on to prevent tracking

Note: Disabling essential cookies may affect website functionality, but analytics cookies can be disabled without impacting your browsing experience.

Data Retention

I retain personal data only as long as necessary for the purposes outlined in this policy:

• Contact Form Data: Retained for 2 years for business communication purposes
• Analytics Data: Google Analytics retains data for 14 months (configurable)
• Website Logs: Server logs are retained for 30 days for security and performance purposes
• Cookie Data: Stored locally on your device until expiration or manual deletion

Data Security

I implement appropriate technical and organizational security measures to protect your personal data:

• HTTPS Encryption: All data transmission is encrypted using SSL/TLS
• Secure Hosting: Website hosted on Vercel with enterprise-grade security
• Access Controls: Limited access to personal data on a need-to-know basis
• Regular Updates: Security measures are regularly reviewed and updated

While I strive to protect your personal data, no internet transmission is 100% secure. I cannot guarantee absolute security but maintain industry-standard protections.

International Data Transfers

Your data may be processed in countries outside your residence, including the United States where some of our service providers are located. These transfers are protected by appropriate safeguards such as Standard Contractual Clauses or adequacy decisions by the European Commission.

Children's Privacy

This website is not intended for children under 16 years of age. I do not knowingly collect personal information from children under 16. If you believe I have collected information from a child under 16, please contact me immediately so I can delete such information.

Changes to This Policy

I may update this Privacy Policy periodically to reflect changes in my practices or legal requirements. When I make significant changes:

• The "Last updated" date at the top will be revised
• I may display a notice on the website
• For significant changes, I may re-prompt for cookie consent

I encourage you to review this policy periodically to stay informed about how I protect your privacy.

Legal Basis for Processing

Under GDPR, I process your personal data based on the following legal bases:

• Consent: For analytics cookies and optional communications
• Legitimate Interest: For website security, performance monitoring, and business communication
• Contract Performance: When responding to service inquiries and potential business relationships

Contact Information

If you have questions about this Privacy Policy, want to exercise your rights, or have privacy concerns, please contact me:

Supervisory Authority

If you are located in the European Economic Area and believe I have not addressed your privacy concerns adequately, you have the right to lodge a complaint with your local data protection supervisory authority.