Go to homepage

Privacy Policy

1. Introduction and Controller

Thank you for your interest in our information portal "European Strategy". Protecting your personal data is very important to us. On our website, we deliberately refrain from using non-essential cookies and tracking tools that could compromise your privacy. Below, we provide detailed information on how we handle your data.

Controller pursuant to Art. 4(7) GDPR

European Strategy

Responsible for content pursuant to Section 18 (2) MStV: Fedor Dupont-Nivet and Moritz Maibaum.

c/o Online-Impressum.de #6453

Europaring 90

53757 Sankt Augustin

Email: [email protected]

Please refer to our legal notice for further details.

2. Hosting and Security

Hosting

Our website is hosted by an external service provider (host). Personal data collected on this website is stored on the host’s servers. This includes in particular IP addresses, meta and communication data, and website access data.

We use a secure cloud infrastructure and hosting provider based in Germany.

Legal basis: Use is based on our legitimate interest in the secure, fast, and efficient provision of our online services (Art. 6(1)(f) GDPR). We have concluded a data processing agreement (DPA) with the provider.

Security and Content Delivery Network (Cloudflare)

We use the service "Cloudflare." The provider is Cloudflare Inc., 101 Townsend St., San Francisco, CA 94107, USA.

Cloudflare provides a globally distributed content delivery network (CDN) with DNS services. Technically, information transfer between your browser and our website is routed through Cloudflare’s network. This enables us to ensure website security (e.g., defense against DDoS attacks via web application firewall) and reduce loading times. Cloudflare uses technically necessary cookies or similar technologies that are essential for the operation and security of the site.

Data transfer to the USA: Cloudflare is certified under the EU-US Data Privacy Framework. This means there is an adequacy decision by the European Commission confirming an adequate level of data protection.

Legal basis: Legitimate interest in the reliable and secure functionality of the website (Art. 6(1)(f) GDPR).

3. Web Analytics (Umami)

We use Umami on our website, a privacy-friendly web analytics service.

What is special: Umami does not use cookies and does not store personal data. IP addresses are not stored permanently, and no information is collected across different days or websites (no cross-site tracking). All collected data (e.g., page views, country of origin, device type) is aggregated and does not allow conclusions about individual persons.

The software is self-hosted by us on our own EU-based servers. No data is transferred to third parties or to the software manufacturer.

Legal basis: Processing is based on our legitimate interest in reach measurement and statistical analysis of our website to improve our services (Art. 6(1)(f) GDPR). Since no personal data is stored permanently and no privacy intrusion occurs through cookies, consent is not required.

4. Contact (Lark & Form)

If you send us inquiries by email or contact form, your details, including the contact data you provide there, will be stored by us for the purpose of processing the request and in case of follow-up questions.

Email and Collaboration Services (Lark)

To process emails and for internal organization, we use the "Lark Suite." The provider is Lark Technologies Pte. Ltd. (Singapore).

Processing may take place on servers in Japan or the USA. For Japan, there is an adequacy decision by the European Commission certifying a level of data protection comparable to the EU. To the extent data is transferred to third countries without an adequacy decision, this is done based on EU Commission Standard Contractual Clauses (SCCs) and supplementary security measures.

Legal basis: Processing of this data is based on Art. 6(1)(b) GDPR if your request is related to the fulfillment of a contract or is necessary for pre-contractual measures. In all other cases, processing is based on our legitimate interest in effectively handling inquiries addressed to us (Art. 6(1)(f) GDPR).

5. Newsletter (Resend)

If you would like to subscribe to the newsletter offered on the website, we require an email address from you as well as information that allows us to verify that you are the owner of the provided email address and that you agree to receive the newsletter (double opt-in procedure).

Use of Resend

For sending, we use the service Resend, operated by Resend, Inc., 2261 Market Street #4814, San Francisco, CA 94114, USA.

The data you enter is stored and processed on Resend’s servers in the USA to organize and analyze newsletter distribution.

Data transfer to the USA: Resend is certified under the EU-US Data Privacy Framework and is therefore committed to complying with European data protection standards.

Legal basis: Data processing is carried out exclusively on the basis of your consent (Art. 6(1)(a) GDPR). You may revoke this consent at any time, for example via the "unsubscribe" link in the newsletter.

6. Your Rights

You have the right at any time to receive free information about your stored personal data, its origin and recipients, and the purpose of data processing, as well as a right to correction or deletion of this data. If you have given consent to data processing, you may revoke this consent for the future at any time. You also have the right, under certain circumstances, to request restriction of processing of your personal data and the right to lodge a complaint with the competent supervisory authority.