Privacy Policy
This policy outlines our commitment to your privacy and details how UnAnalog GmbH protects your personal data.
1. Overview
This privacy policy explains how UnAnalog GmbH ("we", "us", "our") collects, uses, and protects your personal data when you visit our website.
We are committed to processing your data in strict accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws. Our approach is minimal: we only collect what is absolutely necessary.
2. Controller
UnAnalog GmbH
Marburger Straße 16
10789 Berlin, Germany
Email: hello@unanalog.com
3. Data We Collect
3.1 Analytics (Plausible)
We use Plausible Analytics, an open-source, privacy-friendly alternative to Google Analytics. Plausible is designed to be cookieless and GDPR compliant by default. The analytics script is loaded from Plausible's servers (plausible.io), which means your browser establishes a connection to their EU-based infrastructure (Falkenstein, Germany).
- Transient IP processing: Your IP address is processed transiently to count unique visitors but is never stored, logged, or made accessible to us.
- No Cookies: No cookies are used for analytics.
- No Cross-Site Tracking: You are not tracked across other websites.
For more details, please refer to the Plausible Privacy Policy.
Legal basis: Legitimate interest (Art. 6(1)(f) GDPR) in optimizing our website experience.
3.2 Hosting & Infrastructure
Our static website is securely hosted by:
IONOS SE
Elgendorfer Str. 57
56410 Montabaur, Germany
The provider temporarily processes your IP address to deliver the website to your browser. This is technically necessary for any website visit. IP addresses are anonymized in access logs, which are retained for a maximum of 8 weeks.
Legal basis: Legitimate interest (Art. 6(1)(f) GDPR) in the secure provision of the website.
3.3 External Services
If you choose to contact us via external platforms, data is processed by those providers. Both services may transfer data to the United States under the EU-US Data Privacy Framework.
- Calendly: For scheduling meetings. Privacy Policy
- LinkedIn: For professional networking. Privacy Policy
Legal basis: Consent (Art. 6(1)(a) GDPR) — by voluntarily choosing to use these services.
3.4 Data Processors
We use carefully selected processors within the EU who process data only on our behalf under Art. 28 GDPR:
- IONOS SE — Website hosting (Germany)
- Plausible Analytics — Privacy-focused analytics (EU)
3.5 Legal Basis Summary
| Processing Activity | Legal Basis |
|---|---|
| Website hosting & delivery | Art. 6(1)(f) GDPR — legitimate interest |
| Plausible analytics | Art. 6(1)(f) GDPR — legitimate interest |
| Language preference storage | Technically necessary |
| External services (Calendly, LinkedIn) | Art. 6(1)(a) GDPR — consent |
4. Cookies & Local Storage
This website is cookie-free regarding tracking or advertising.
- No marketing tracking — we do not track you for advertising purposes
- No cross-site profiling — your behavior is not shared with third parties
- No consent banner required — because we don't use tracking cookies
We use a single technical item in your browser's localStorage to save your language
preference (English or German). Additionally, sessionStorage is used transiently during
language switching to coordinate a smooth page transition; this data is automatically cleared when you
close the browser tab. None of this data is transmitted to our servers.
Legal basis: Technically necessary for bilingual website functionality.
5. Data Retention
We minimize data retention in line with our privacy-first approach:
- IP addresses: Processed transiently during page delivery, not stored.
- Server logs: Our hosting provider (IONOS) anonymizes IP addresses in access logs and retains them for a maximum of 8 weeks.
- Analytics: Plausible retains only aggregated, non-personal statistics. No individual user data is ever stored.
- Language preference: Stored in your browser's localStorage until you clear it. Never transmitted to us.
- External services: Calendly and LinkedIn retain data according to their own privacy policies.
6. Your Rights
Under the GDPR, you maintain full control over your data:
- Access: Request details on any data we hold about you.
- Rectification: Correct any inaccurate data.
- Erasure: Request deletion of your data ("Right to be forgotten").
- Restriction: Limit how we process your data.
- Portability: Receive your data in a standardized format.
- Objection: Object to processing based on legitimate interests.
- Complaint: Lodge a complaint with a supervisory authority.
To exercise these rights, please contact us at the address listed in Section 2.
You also have the right to lodge a complaint with the competent data protection authority. Our supervisory authority is:
Berliner Beauftragte für Datenschutz und Informationsfreiheit
Friedrichstr. 219
10969 Berlin, Germany
www.datenschutz-berlin.de
7. Data Security
We employ state-of-the-art security measures to protect your information:
- HTTPS/TLS Encryption: All data in transit is encrypted.
- Static Architecture: Our site significantly reduces attack surfaces by avoiding databases and server-side processing.
- EU Hosting: All data remains within the European Union (Germany).
8. Updates
We may update this policy to reflect changes in our practices or legal requirements. The latest version will always be available at this URL.
9. Contact
For any privacy-related inquiries, please contact us at the address listed in Section 2.