Peter Bencsik

Data Protection Declaration (Privacy Policy)

Your privacy is critically important to me. This privacy policy outlines how I, as the data controller, collect, use, and protect your personal data when you visit my website, in full compliance with the EU General Data Protection Regulation (GDPR).

1. Data Controller

The party responsible for the collection, processing, and use of your personal data (the “data controller”) is:

Peter Bencsik [Your Street Address] [Your Postal Code], Vienna Austria Email: [Your Email Address]

2. What Data I Collect, Why, and the Legal Basis

a) Website Access Data (Server Log Files)

When you visit my website, my hosting provider automatically collects and stores information that your browser transmits in “server log files.” This data includes:

Browser type and version
Operating system used
Referrer URL (the page you came from)
Hostname of the accessing computer
Time of the server request
IP address (in anonymized form)

This data is not merged with other data sources. The processing is based on my legitimate interest (Art. 6(1)(f) GDPR) to ensure the security, stability, and proper technical operation of my website.

b) Cookies

This website uses cookies. Cookies are small text files stored on your device that help the website function.

Essential Cookies: These are necessary for the basic functionality of the website (e.g., remembering your cookie consent). The legal basis for these is my legitimate interest (Art. 6(1)(f) GDPR) in providing a functional website.
Analytical & Performance Cookies: These are used to understand how visitors interact with the website. These cookies are only set after you provide your explicit consent (Art. 6(1)(a) GDPR), typically via a cookie consent banner.

You can manage your cookie preferences at any time.

c) Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Ireland Ltd. (Google). Google Analytics uses cookies to analyze your use of the website.

The information generated (including your IP address, which is anonymized using anonymizeIp()) is usually transmitted to and stored by Google on servers in the United States.

I use Google Analytics exclusively with your consent (Art. 6(1)(a) GDPR). Data transfer to the USA, which does not have an EU-equivalent level of data protection, is based on Standard Contractual Clauses (SCCs) provided by the European Commission.

You can revoke your consent at any time by changing your cookie settings.

d) Sentry.io (Performance & Error Monitoring)

I use the Sentry.io service from Functional Software, Inc. (USA) to monitor the technical performance and stability of my website.

Sentry helps me identify and fix bugs or performance issues in real-time. To do this, it may collect data such as your browser type, device information, and details about an error that occurred. This processing is based on my legitimate interest (Art. 6(1)(f) GDPR) in maintaining a technically flawless and secure website.

Data transfer to the USA is also secured through Standard Contractual Clauses (SCCs).

I take your privacy seriously. I will not sell, rent, or trade your personal data with third parties.

I only share data with trusted third-party service providers (“data processors”) who act on my behalf to operate this website, as described above:

Google (Google Analytics): For website analytics (with your consent).
Sentry (Functional Software, Inc.): For error and performance monitoring (on the basis of legitimate interest).

These providers are contractually bound to process your data only for the specified purposes and to maintain a high level of data security.

4. Data Retention

I store your data only for as long as it is necessary for the purposes for which it was collected or as required by law (e.g., statutory retention periods).

Server Log Files: Typically stored for a short period (e.g., 7-14 days) for security analysis and then deleted.
Analytics Data: Stored in Google Analytics for a predefined period (e.g., 14 months) before being automatically deleted.

As a data subject in the EU, you have the following rights:

Right of Access (Art. 15): You can request a copy of the personal data I hold about you.
Right to Rectification (Art. 16): You can request that I correct any inaccurate or incomplete data.
Right to Erasure (Art. 17): You can request that I delete your personal data (“right to be forgotten”), subject to legal obligations.
Right to Restriction of Processing (Art. 18): You can request that I restrict the processing of your data.
Right to Data Portability (Art. 20): You can request to receive your data in a machine-readable format.
Right to Object (Art. 21): You can object to the processing of your data based on legitimate interest.
Right to Withdraw Consent: You can withdraw your consent for processing (like for Google Analytics) at any time, without affecting the lawfulness of processing based on consent before its withdrawal.

To exercise any of these rights, please contact me at the email address listed in Section 1.

6. Right to Lodge a Complaint

If you believe that the processing of your personal data violates data protection law, you have the right to lodge a complaint with a supervisory authority. As I am based in Austria, the responsible authority is:

Österreichische Datenschutzbehörde Barichgasse 40-42 1030 Vienna, Austria Website: https://www.dsb.gv.at

7. Data Security

I have implemented appropriate technical and organizational security measures to protect your data from accidental or intentional manipulation, loss, destruction, or unauthorized access.

8. Changes to This Privacy Policy

I reserve the right to adapt this privacy policy to reflect changes in my services or in legal requirements. The most current version will always be available on this page.