Privacy
Privacy Policy
How this static website handles personal data.
Diese Seite auf Deutsch lesen / Read this page in German
Scope
This privacy policy applies to the public website at https://halwick-labs.com and its static pages. It does not cover separate product applications, user accounts, or services that may be launched under their own privacy information.
Controller
The controller under the GDPR is the person or legal entity identified in the imprint for this website. You can contact the controller by email at hello@halwick-labs.com.
Accessing the website
When you visit this website, your browser sends technical request data that is needed to deliver the page. This can include your IP address, the requested URL, date and time of access, referrer URL, user agent, status code, and transferred data volume.
This data is processed to provide the website, keep it secure, prevent abuse, and troubleshoot delivery issues. The legal basis is Article 6(1)(f) GDPR: the legitimate interest in operating a secure, reliable, static website.
Hosting
This website is intended to be hosted as a static site on GitHub Pages, a service operated by GitHub. When the website is delivered, GitHub may process technical request data such as IP addresses and request metadata for service delivery, security, abuse prevention, and operational purposes.
GitHub publishes further information in its General Privacy Statement. GitHub may process data in the United States and other countries. GitHub describes its transfer safeguards, including the EU-U.S. Data Privacy Framework and standard contractual clauses, in that privacy statement.
Email contact
If you contact Halwick Labs by email, the information you send is processed to respond to your request. This can include your email address, name, message content, attachments, and technical email metadata.
The legal basis is Article 6(1)(f) GDPR for responding to inquiries and maintaining business communication. If your message concerns a contract or pre-contractual request, Article 6(1)(b) GDPR may also apply. If legal retention obligations apply, Article 6(1)(c) GDPR may apply.
Cookies and browser storage
This website does not intentionally set cookies, local storage, session storage, advertising identifiers, or comparable browser storage. It also does not use browser fingerprinting for analytics or advertising.
Under Section 25 of the German Telecommunications-Telemedia Data Protection Act (TTDSG), storing information on your device or accessing information already stored there requires your consent, unless it is strictly necessary to provide the service you explicitly requested. This website does not access or store any such information, so no consent banner is shown. If non-essential cookies, tracking, or similar technologies are added later, they must not be activated before consent handling compliant with the TTDSG and GDPR has been implemented and this policy has been updated.
Data security
This website is delivered exclusively over an encrypted HTTPS connection (TLS) to protect data in transit between your browser and the hosting provider. Technical and organizational measures are limited to what a static website requires, since no databases, user accounts, or server-side application logic are operated.
Fonts and third-party content
This website uses the typefaces Inter and Space Grotesk. Both are self-hosted: the font files are served from this domain as part of the website build. No fonts are loaded from Google Fonts, fonts.gstatic.com, Adobe Fonts, or any other third-party font service, and no other CDN-hosted libraries, maps, video players, social widgets, or analytics pixels are embedded.
Because fonts are self-hosted, loading this website does not transmit your IP address or any other browser data to a third-party font provider.
Analytics and advertising
This website does not use analytics tools, advertising pixels, conversion tracking, tag managers, A/B testing tools, remarketing, newsletters, or marketing automation.
Recipients
Personal data may be received by the hosting provider, email service providers involved in email delivery, network and telecommunications providers, and, where legally required, public authorities or legal advisers. No personal data from this website is sold.
Retention
Personal data is kept only for as long as needed for the relevant purpose. Email inquiries are kept for the time needed to respond and handle follow-up communication, and longer only if legal retention, documentation, or dispute-resolution obligations require it.
This static website does not run its own application server or custom server logs. Technical logs generated by the hosting provider are handled under the provider's own retention and security practices.
Your rights
Subject to the requirements of the GDPR, you may have the following rights regarding your personal data:
- access to your personal data;
- rectification of inaccurate or incomplete data;
- erasure of data;
- restriction of processing;
- data portability;
- objection to processing based on legitimate interests;
- withdrawal of consent, if processing is based on consent.
To exercise these rights, contact hello@halwick-labs.com. For security reasons, additional information may be requested to verify your identity before responding to a request.
Complaint to a supervisory authority
You also have the right to lodge a complaint with a data protection supervisory authority, in particular in the EU member state of your habitual residence, your place of work, or the place of the alleged infringement.
No automated decisions
This website does not use automated decision-making or profiling within the meaning of Article 22 GDPR.
Changes
This policy should be updated before any new contact forms, analytics, embedded third-party content, externally loaded fonts, cookies, product accounts, or application features are added.