1. Controller

Jonas Kufner Business Consulting
Freelancer: Jonas Kufner
Murnauer Str. 266
81379 Munich
Germany

Email: info@kufner-solutions.com
Phone: +49 176 24893789

2. General Information on Data Processing

The protection of your personal data is important to us. We treat your personal data confidentially and in accordance with the legal data protection regulations as well as this privacy policy.

When visiting this website, personal data is processed. This includes, for example, the IP address automatically transmitted by your browser to the server, as well as other technical data (date, time, browser type, operating system, referrer URL).

3. Hosting & Server Log Files

This website is hosted via GitHub Pages. When pages are accessed, server log files are automatically created, containing information such as IP address, browser type, operating system, referrer URL, date, and time of access.

Legal basis: Art. 6 (1) lit. f GDPR (legitimate interest in technical security and stability).
The data will not be merged with other data sources.

4. Contact Form

If you send us inquiries via the contact form, the information you provide, including the contact details you enter, will be stored for the purpose of processing your inquiry and in case of follow-up questions.

We do not share this data without your consent.

We use Microsoft Forms, a service provided by Microsoft Corporation, within our Microsoft 365 environment (tenant) to collect and process your request.
The form is made available via a link on our website and leads to a secure form page under the domain forms.office.com.
The data you enter is processed and stored exclusively within our Microsoft 365 tenant.
Microsoft processes this data solely on our behalf and in compliance with the data protection laws of the European Union (EU), in particular according to the EU Standard Contractual Clauses and using data centers located within the EU.

Legal basis: Art. 6 (1) lit. b GDPR (performance of a contract or pre-contractual measures) or Art. 6 (1) lit. a GDPR (consent).
The data will be deleted as soon as it is no longer required for processing your request.

5. Web Analytics with GoatCounter

I use GoatCounter for simple website analytics. GoatCounter is a privacy-friendly web analytics service that operates without cookies and does not create personal profiles.

Provider: GoatCounter (hosted service under goatcounter.com or my own GoatCounter domain).

Purpose of processing:

  • Counting page views and collecting basic statistics (e.g., page path, referrer, approximate region/country, screen size, language, browser type).
  • Improving content, usability, and reach of my website.

What data is collected?

  • Accessed URL/page path and referrer, date/time, browser details (user agent), screen size, language, approximate region (derived from IP).
  • No cookies, no local storage.
  • To detect multiple requests within a short time, GoatCounter temporarily generates a session ID (from site ID, IP, and user agent) in memory only. This is replaced by a random ID. IP and user agent are not stored in the database.

Legal basis:
Processing is based on Art. 6 (1) lit. f GDPR (legitimate interest) in a simple, privacy-friendly measurement of website reach without cross-site tracking.
According to the provider, no consent or cookie banner is required, as no personal data is stored and no cookies are set.

Objection / Opt-out:

  • The browser signal “Do Not Track” (DNT) is respected; if DNT is enabled, no tracking request is made.
  • Additionally, content blockers/ad blockers can prevent tracking by blocking the service domains (e.g., gc.zgo.at or my GoatCounter subdomain).

Hosting / Self-hosting:
GoatCounter can be operated as a hosted service or self-hosted; this does not change the type of data processing described above (cookie-free, without personal storage).

Further information:
Details on privacy and technical implementation (pixel fallback, JavaScript integration) are available in the provider’s documentation.

6. Embedding of YouTube Videos

This website embeds videos from the YouTube platform (provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland).

To protect your personal data, YouTube videos are not activated automatically. When you access a page containing embedded videos, only a placeholder is displayed initially. A connection to YouTube’s servers is established only after you actively load the video by clicking on it.

When the video is loaded, the following data may in particular be transmitted to YouTube:

  • IP address

  • Information about the browser and end device used

  • Date and time of access

  • The previously visited page (referrer)

The videos are embedded via the so-called “youtube-nocookie.com” domain, which, according to YouTube, means that cookies are only set once the video is actively played. Nevertheless, it cannot be ruled out that Google processes personal data and transfers it to the United States.

YouTube videos are embedded exclusively on the basis of your voluntary consent pursuant to Art. 6(1)(a) GDPR, which you provide by actively clicking on the video placeholder.

Without your consent, no connection to YouTube is established.

You may withdraw your consent at any time by reloading the page and not activating the video again, or by deleting existing local storage data in your browser.

Further information

Further information on data processing by YouTube can be found in Google’s privacy policy: https://policies.google.com/privacy

7. Your Rights

According to the GDPR, you have the following rights:

  • Right of access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to object (Art. 21 GDPR)
  • Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)

Responsible data protection authority in Bavaria:
Bavarian State Office for Data Protection Supervision (BayLDA)
Promenade 18, 91522 Ansbach
https://www.lda.bayern.de

8. Changes to This Privacy Policy

We reserve the right to update this privacy policy to reflect changes in legal requirements or modifications to our services and data processing practices.

Last updated: December 2025