Privacy Policy

← Back to Home

This is necessary

We take your privacy seriously. This privacy policy explains how we collect, use, and protect your information when you visit our website in accordance with the General Data Protection Regulation (GDPR).

1. Data Controller (Verantwortlicher)

The data controller responsible for the processing of your personal data is:

Marius Roland Bartl
mrb-create
Aachener Street 11
80804 Munich
Germany
Email: mariusthenomad@gmail.com

2. Data Collection (Welche Daten erhoben werden)

We collect and process the following types of personal data:

  • IP Address: Your IP address is automatically collected when you visit our website for security and technical purposes
  • Cookies: We use cookies to enhance your browsing experience and remember your preferences (see our Cookie Policy)
  • Contact Information: Name and email address when you voluntarily contact us via email
  • Usage Data: Information about how you interact with our website, including pages visited, time spent, and referring websites
  • Device Information: Browser type, operating system, device type, and screen resolution
  • Tracking Data: Analytics data collected through third-party services to understand website performance

3. Purpose and Legal Basis (Zweck und Rechtsgrundlage)

We process your personal data for the following purposes and legal bases under GDPR:

  • Website Operation (Art. 6(1)(f) GDPR - Legitimate Interest): To provide, maintain, and secure our website
  • Communication (Art. 6(1)(b) GDPR - Contract Performance): To respond to your inquiries and provide support
  • Analytics (Art. 6(1)(f) GDPR - Legitimate Interest): To analyze website usage and improve user experience
  • Cookies (Art. 6(1)(a) GDPR - Consent): To enhance your browsing experience with your consent via our cookie banner
  • Legal Compliance (Art. 6(1)(c) GDPR): To comply with legal obligations

4. Data Transfer to Third Countries (Übermittlung in Drittländer)

Some of our service providers are located in or process data in third countries outside the European Union, particularly in the United States (USA).

Data transfers to the USA are based on:

  • Standard Contractual Clauses (SCCs): We use EU-approved standard contractual clauses to ensure adequate data protection
  • Data Processing Agreements: We have agreements with third-party providers ensuring GDPR-compliant data processing
  • Your Consent (Art. 49(1)(a) GDPR): In some cases, we rely on your explicit consent for data transfers

Third-party services that may transfer data internationally include analytics tools, hosting providers, and content delivery networks. You have the right to obtain information about the safeguards we use for international data transfers.

5. Storage Duration (Speicherdauer)

We store your personal data only for as long as necessary to fulfill the purposes outlined in this privacy policy:

  • IP Addresses and Log Files: 7 days for security purposes, then automatically deleted
  • Cookies: See our Cookie Policy for specific retention periods (typically 30 days to 1 year)
  • Contact Inquiries: Up to 3 years for customer service purposes, then deleted unless legally required to retain
  • Analytics Data: Anonymized after 14 months
  • Legal Obligations: Data required by law is retained for the legally mandated period (typically 6-10 years for business records)

After the retention period expires, your personal data will be securely deleted or anonymized.

6. Cookies and Consent Banner (Cookie-Information)

Our website uses cookies to enhance your browsing experience. When you first visit our website, a cookie consent banner appears allowing you to accept or decline cookies.

Types of cookies we use:

  • Essential Cookies (No consent required): Necessary for website functionality and security
  • Preference Cookies (Consent-based): Remember your cookie choices and preferences
  • Analytics Cookies (Consent-based): Help us understand how visitors use our website

For detailed information about our cookie usage, retention periods, and how to manage cookies, please see our Cookie Policy.

Managing Cookies: You can change your cookie preferences at any time through your browser settings or by clearing our site cookies and revisiting the page to see the consent banner again.

7. Your Rights (Rechte der Nutzer)

Under the GDPR, you have the following rights regarding your personal data:

  • Right of Access (Art. 15 GDPR): You have the right to request information about the personal data we process about you, including a copy of your data
  • Right to Rectification (Art. 16 GDPR): You can request correction of inaccurate or incomplete personal data
  • Right to Erasure (Art. 17 GDPR): You can request deletion of your personal data ("right to be forgotten") when it's no longer needed or unlawfully processed
  • Right to Restriction of Processing (Art. 18 GDPR): You can request to limit how we process your personal data in certain circumstances
  • Right to Data Portability (Art. 20 GDPR): You can receive your personal data in a structured, commonly used, and machine-readable format
  • Right to Object (Art. 21 GDPR): You can object to processing of your personal data based on legitimate interests or for direct marketing purposes
  • Right to Withdraw Consent (Art. 7(3) GDPR): You can withdraw your consent at any time where processing is based on consent
  • Right to Lodge a Complaint (Art. 77 GDPR): You have the right to file a complaint with a supervisory authority if you believe your data protection rights have been violated

How to exercise your rights: To exercise any of these rights, please contact us at mariusthenomad@gmail.com. We will respond to your request within one month.

Supervisory Authority: You can contact your local data protection authority. In Germany, the federal supervisory authority is:
Bundesbeauftragte für den Datenschutz und die Informationsfreiheit (BfDI)
Graurheindorfer Str. 153, 53117 Bonn, Germany

8. Data Sharing and Third Parties

We do not sell, trade, or rent your personal information to third parties. We may share information only in the following circumstances:

  • With your explicit consent: When you have given us permission to share your data
  • Legal obligations: When required by law, court order, or governmental authority
  • Service providers: With trusted third-party service providers who assist in website operations (hosting, analytics) under strict data processing agreements
  • Protection of rights: To protect our rights, property, or safety, and that of our users

9. Data Security

We implement appropriate technical and organizational security measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction:

  • SSL/TLS encryption for data transmission
  • Secure server infrastructure
  • Regular security updates and monitoring
  • Access controls and authentication
  • Data processing agreements with third parties

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your personal data, we cannot guarantee absolute security.

10. Third-Party Links and Services

Our website may contain links to third-party websites and social media platforms (Instagram, X/Twitter, TikTok). We are not responsible for the privacy practices or content of these external sites.

When you click on external links, you will leave our website and be directed to third-party sites that have their own privacy policies. We encourage you to review their privacy policies before providing any personal information.

Third-party services we may use include:

  • Web hosting providers
  • Analytics services
  • Social media platforms
  • Content delivery networks (CDN)

11. Children's Privacy

Our website is not intended for children under 16 years of age (in accordance with GDPR). We do not knowingly collect personal information from children under 16.

If we become aware that we have collected personal data from a child under 16 without parental consent, we will take steps to delete that information as quickly as possible. If you believe we have collected information from a child, please contact us immediately.

12. Automated Decision-Making and Profiling

We do not use automated decision-making or profiling that produces legal effects or similarly significantly affects you.

13. Changes to This Privacy Policy

We may update this privacy policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons.

When we make material changes, we will:

  • Update the "Last updated" date at the bottom of this page
  • Post the new privacy policy on this page
  • Notify you via email if the changes significantly affect your rights (where we have your email address)

We encourage you to review this privacy policy periodically to stay informed about how we protect your data.

14. Contact and Questions

If you have any questions about this privacy policy, our data processing practices, or wish to exercise your rights, please contact us:

Marius Roland Bartl
mrb-create
Aachener Street 11
80804 Munich
Germany
Email: mariusthenomad@gmail.com

We will respond to your inquiry within one month. In complex cases, we may extend this period by an additional two months, in which case we will inform you of the extension.

Last updated: October 2025

Imprint | Cookies