Impressum

Angaben gemäß § 5 TMG

Kontakt

Richard Myers, Clemensstrasse 25, 80803 Munich, Germany

support@de-otio.org

Vertreten durch

Richard Myers

Privacy Policy

Effective Date: 2025-05

We at De Otio (“we”, “our”, or “us”) are committed to protecting your personal data in compliance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”). This privacy policy explains how we collect, use, and protect your personal data when you visit our website, sign up for our newsletter, or interact with our services.

Controller Information

Controller: Richard Myers, Clemensstrasse 25, 80803 Munich, Germany

Email: datenschutz@de-otio.org

Data We Collect

We may collect and process the following types of personal data:

  • Contact Information: Name, email address, company name (if applicable)
  • Newsletter Preferences: Consent to receive marketing emails
  • Usage Data: IP address, browser type, pages visited, time and date of visit, time spent on pages (via Matomo)
Purpose Legal Basis
Sending newsletters Art. 6(1)(a) GDPR – Consent
Website analytics (Matomo) Art. 6(1)(f) GDPR – Legitimate interests
Server hosting and operations Art. 6(1)(f) GDPR – Legitimate interests

Newsletter Subscription and Salesforce

If you provide consent to receive our newsletter:

  • Your data (name, email address) will be securely stored in Salesforce Marketing Cloud, operated by Salesforce Inc.
  • We use this service to send newsletters, track engagement (opens, clicks), and manage subscriptions.
  • You can revoke your consent at any time by clicking the “unsubscribe” link in our emails or contacting us directly.

Salesforce complies with the GDPR and operates under Binding Corporate Rules (BCRs) and Standard Contractual Clauses (SCCs) where applicable.

Web Analytics with Matomo

We use Matomo (self-hosted) for privacy-friendly web analytics. Key privacy features include:

  • Self-hosted on servers located in Germany (AWS data center)
  • IP addresses are anonymized
  • No cookies are used unless explicitly consented
  • No data is shared with third parties

Hosting and Data Location

Our website is hosted on Amazon Web Services (AWS) in Germany (Frankfurt region). AWS is GDPR-compliant and provides robust security and data protection practices. All data is stored and processed within the EU.

Your Rights Under the GDPR

You have the following rights:

  • Access to your data (Art. 15)
  • Rectification of inaccurate data (Art. 16)
  • Erasure (“Right to be forgotten”) (Art. 17)
  • Restriction of processing (Art. 18)
  • Data portability (Art. 20)
  • Objection to data processing (Art. 21)
  • Withdrawal of consent (Art. 7(3))

To exercise your rights, contact us at: datenschutz@de-otio.org

Data Retention

We retain your data:

  • For newsletter purposes: until you unsubscribe or withdraw consent.
  • For analytics: anonymized data retained indefinitely.
  • Server logs: retained for security purposes for up to 12 months.

Data Security

We implement industry-standard technical and organizational measures to protect your personal data, including:

  • TLS encryption (HTTPS)
  • Secure data storage
  • Access controls and authentication
  • Regular data backups

Changes to This Policy

We may update this privacy policy from time to time to reflect changes in technology, legislation, or our services. You will be informed of significant changes by notice on our website.

Supervisory Authority

If you believe your data is being processed unlawfully, you have the right to lodge a complaint with a supervisory authority. The relevant authority for our company is: https://www.datenschutz-bayern.de/

Contact

For any questions or concerns regarding your data, contact us at: Email: datenschutz@de-otio.org