Skip to content
Krafteq

Privacy Policy

Information on the processing of personal data in accordance with GDPR

Controller

The controller within the meaning of the General Data Protection Regulation (GDPR) and other applicable data protection laws is:

Krafteq GmbH
Marie-Curie-Str 8
51377 Leverkusen
Germany

Managing Director: Ivan Bianko
Email: info@krafteq.de
Phone: +49 2171 4014311
Website: krafteq.de

Data Protection Officer

The appointment of a data protection officer is not required by law for our company. If you have any questions regarding data protection, you can contact us directly at info@krafteq.de.

Your Rights as a Data Subject

As a data subject, you have the following rights under the GDPR:

  • Right of access (Art. 15 GDPR): You have the right to request information about your personal data processed by us, including the purpose of processing, categories of data, recipients, and planned retention period.
  • Right to rectification (Art. 16 GDPR): You have the right to request the immediate correction of inaccurate or completion of incomplete personal data stored by us.
  • Right to erasure (Art. 17 GDPR): You have the right to request the deletion of your personal data stored by us, unless processing is required for exercising the right of freedom of expression, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise, or defence of legal claims.
  • Right to restriction of processing (Art. 18 GDPR): You have the right to request the restriction of processing of your personal data, for example if you contest the accuracy of the data or the processing is unlawful.
  • Right to data portability (Art. 20 GDPR): You have the right to receive your personal data that you have provided to us in a structured, commonly used, and machine-readable format.
  • Right to object (Art. 21 GDPR): Where your personal data is processed on the basis of legitimate interests pursuant to Art. 6(1)(f) GDPR, you have the right to object to the processing where there are grounds relating to your particular situation.
  • Right to lodge a complaint (Art. 77 GDPR): You have the right to lodge a complaint with a data protection supervisory authority. The authority responsible for us is:

    State Commissioner for Data Protection and Freedom of Information North Rhine-Westphalia (Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen, LDI NRW)
    Kavalleriestr. 2-4, 40213 Düsseldorf
    www.ldi.nrw.de

Hosting and Server Log Files

When you access our blog, our hosting server automatically collects and stores information in server log files that your browser transmits to us. This includes:

  • IP address of the requesting device
  • Date and time of access
  • Name and URL of the requested file
  • Referrer URL (previously visited page)
  • Browser type and operating system
  • Hostname of the accessing device

This data is processed to ensure a smooth connection, to guarantee system security, and for administrative purposes.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest). Our legitimate interest lies in providing and securing our website.

Retention period: Server log files are automatically deleted after 14 days at the latest, unless further retention is required for security investigations.

Comments (Giscus / GitHub)

Our blog uses Giscus for the comment section. Giscus is a free, open-source commenting system that stores comments as GitHub Discussions in a public GitHub repository.

To post a comment, you must authenticate with your GitHub account. When you use the comment feature:

  • You interact directly with GitHub's services
  • GitHub processes your data according to their own privacy policy
  • Your comment, GitHub username, and avatar are publicly visible
  • We have no control over the data GitHub collects during authentication

Krafteq GmbH is not the data controller or processor for any personal data handled through the Giscus comment system. GitHub, Inc. (or GitHub B.V. for EU users) is the independent data controller for that data. Using the comment feature is entirely voluntary.

Two-click consent: The Giscus comment widget is not loaded automatically. It is only loaded after you explicitly click “Accept & load comments” at the bottom of a blog post. No data is transmitted to GitHub until you take this action.

Legal basis: Art. 6(1)(a) GDPR (consent) in conjunction with § 25(1) TDDDG. You can revoke your consent at any time by clearing the giscus-consent entry in your browser's local storage or by using your browser's privacy settings.

Note on third-country transfers: GitHub, Inc. is a US-based company. Data transfers to GitHub are covered by GitHub's compliance with applicable transfer mechanisms, including the EU–U.S. Data Privacy Framework.

Matomo (Web Analytics)

We use the self-hosted open-source web analytics software Matomo for statistical analysis of website usage.

Operator: Krafteq GmbH (self-hosted at analytics.krafteq.de)

No data is transmitted to third parties. All analytics data remains on our own servers within the European Union.

Cookieless basic analytics (no consent required)

Matomo is loaded automatically in cookieless mode when you visit our website. No cookies are set and no cross-session visitor recognition is performed. The following data is processed:

  • IP address (anonymised)
  • Date and time of access
  • Pages visited and time spent
  • Referrer URL (previously visited page)
  • Browser type and operating system
  • Screen resolution
  • Location data (derived from anonymised IP address)

Purpose: Analysis of website usage to improve our content and user experience.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest). Our legitimate interest lies in the statistical analysis of website usage for the needs-based design and optimisation of our website. Since no cookies are set and no personal re-identification takes place in cookieless mode, no consent is required under § 25 TDDDG.

Right to object: You can object to cookieless web analytics at any time by contacting us at info@krafteq.de.

Enhanced analytics with cookies (consent required)

Optionally, you can consent to the use of analytics cookies via our consent banner. In this case, Matomo additionally sets cookies for visitor recognition across multiple sessions, enabling more accurate usage statistics.

Legal basis: Art. 6(1)(a) GDPR (consent) in conjunction with § 25(1) TDDDG. Analytics cookies are only set after your active consent via our consent banner. You can withdraw your consent at any time via “Privacy settings” in the footer of our website.

Hosting: The Matomo instance is operated by us on our own infrastructure in the European Union (analytics.krafteq.de). No data is transmitted to third parties or to third countries.

Fonts (Self-hosted)

This website uses locally hosted fonts for consistent visual presentation. The fonts are hosted on our own server and delivered directly from there — no connection to external servers (such as Google Fonts) is established, and no data is transmitted to third parties.

Legal basis: No data protection legal basis is required, as no personal data is transmitted to third parties.

Cookies and Storage Technologies

Our website uses cookies and comparable storage technologies.

Technically necessary storage

We use your browser's local storage (localStorage) for the following technically necessary purposes:

  • Theme preference (theme): Stores your choice of light or dark mode. Contains no personal data and serves exclusively to improve usability.
  • Analytics consent (analytics-consent): Stores your decision regarding the use of analytics cookies and external services (Giscus). Possible values: "granted" or "denied". This entry is technically required to respect your consent decision and not load analytics cookies or external services without your approval. Cookieless basic analytics with Matomo is independent of this setting.
  • Comments consent (giscus-consent): Stores your decision regarding the loading of the Giscus comment widget. Value: "granted". This entry is technically required to remember that you have accepted the loading of comments via GitHub.

Legal basis: No consent is required for this storage, as it is technically necessary for functions you have explicitly requested (§ 25(2) TDDDG).

You can change your consent decision at any time via “Privacy settings” in the footer of our website.

Consent-dependent cookies

After giving your consent, the following additional cookies may be set:

  • Matomo (self-hosted): Sets cookies for enhanced statistical analysis of website usage (visitor recognition across multiple sessions, session assignment). Cookieless basic analytics runs without consent. Data remains on our own servers and is not transmitted to third parties.
  • Giscus / GitHub (third-party): After you consent to loading comments, the Giscus widget (hosted on giscus.app) may set its own cookies to manage the GitHub authentication session. These cookies are controlled by GitHub, not by Krafteq GmbH. For details, see GitHub's privacy policy.

Changes to This Privacy Policy

We reserve the right to update this privacy policy to reflect changes in the legal situation or changes to our data processing. The current version is always available on this page.

Last updated: March 2026