The responsible party for this website is:
Fritz Kreller
Alte Hauptstraße 88, 01833 Wilschdorf
Email: fritz@kreller.net

We are not required to appoint a data protection officer.

Our website is hosted by ALL-INKL.COM (www.all-inkl.com), meaning that it is technically provided on the web servers of this hosting provider. The web host is a data processor contracted by us in accordance with Article 28 GDPR.

If we process your personal data, you as the "data subject" have the following rights:

You can request information about your personal data that we process in accordance with Article 15 GDPR.

You have the right to object for specific reasons under Article 21(1) GDPR. Further details on this are provided separately in section B of this document.

If the information we hold about you is incorrect, you can request correction under Article 16 GDPR. If your data is incomplete, you can request completion.

You can request the deletion of your personal data under the conditions of Article 17 GDPR.

In the cases outlined in Article 18 GDPR, you have the right to request a restriction ("blocking") of the processing of your personal data.

If you believe that the processing of your personal data violates data protection law, you have the right to lodge a complaint with a data protection supervisory authority of your choice under Article 77(1) GDPR.

If you have provided us with personal data under Article 20(1) GDPR, you have the right to receive the data in a structured, commonly used, and machine-readable format or have it transferred to a third party, provided that:

• The data processing is based on your consent or is necessary for the performance of a contract (Article 6(1)(a) or (b) GDPR), and
• The processing is carried out automatically.

However, data collected for the provision of the website and the storage of log files (see section 3.1) are essential for the operation of the website and are processed based on Article 6(1)(f) GDPR, meaning the conditions of Article 20(1) GDPR do not apply.

Whenever you access our website, our web hosting provider temporarily collects and stores certain information from your internet browser. This data may identify users and is therefore considered personal data.

• IP address of the user
• Date and time of website access
• Protocol used (e.g., HTTP)
• Request method ("GET" or "POST")
• Content of the request (requested file or page)
• Access status (successful transmission, errors, etc.)
• Data volume transferred (in bytes)
• Incoming and outgoing data traffic ("traffic")
• Process identification number ("Process ID")
• Response time of the web server
• Website from which the user accessed our site
• Browser used, operating system, interface, language settings, and browser version

This data is temporarily stored to enable the website to function properly. The IP address must be stored for the duration of the session.

Beyond the session, the IP address and other data listed above are stored in log files to:

• Ensure the functionality of the website
• Maintain the security of IT systems

Data processing for temporary storage and log file creation is based on Article 6(1)(f) GDPR (legitimate interest). The web host and we have a legitimate interest in ensuring a functional and secure website.

Our web hosting provider has technical access to the collected data as a data processor.

Log file data is deleted when it is no longer needed. For website provision, this is when the session ends. Log files are stored for up to 7 days, unless a security event requires longer retention.

If we provide an email address or a contact form, it is intended for users to contact us. Any personal data provided will be stored and processed for this purpose.

• Data processing is based on Article 6(1)(f) GDPR (legitimate interest).
• If the inquiry is related to a contract, Article 6(1)(b) GDPR also applies.

Our web hosting provider has technical access to this data.

Data is deleted when no longer needed for its original purpose. Communication is considered finished when the issue is fully resolved.

You are not required to provide this data. Communication with us is voluntary.

Cookies are text files stored on a user’s browser. Some cookies are essential for the website's functionality.

• Processed based on Article 6(1)(f) GDPR (legitimate interest)
• Used for core functions like forms and secure areas
• The website cannot function properly without them

Users can block or delete cookies in their browser settings. However, doing so may limit website functionality.

• Used for login forms and contact forms
• Prevents misuse (e.g., by spam bots)
• Automatically deleted when the browser is closed

We do not use any tracking or analytics tools.

Our website uses SSL/TLS encryption to secure data transmission. Encrypted connections can be recognized by:

• "https://" in the address bar
• A lock icon in the browser

Emails sent to us are not end-to-end encrypted. While transmission between email providers is encrypted, emails are stored unencrypted on mail servers.

Videos are not directly embedded but linked to external platforms. Data is only shared when the user clicks on the video.