Privacy Policy

This site (“Pipelines & Tangents”) is a personal, non-commercial blog. This policy explains what personal data is processed when you visit, on what legal basis, and what rights you have under the EU General Data Protection Regulation (GDPR / DSGVO).

Controller

The controller responsible for data processing on this site is:

Gunnar Leymann
Email: pipelinesandtangents@online.de

Hosting (server log files)

This site is hosted on Microsoft Azure Static Web Apps (Microsoft). When you access the site, the hosting infrastructure automatically processes technical information that your browser transmits, in particular:

  • your IP address,
  • date and time of the request,
  • the page or file requested,
  • the referring URL,
  • your browser type and operating system (user agent).

This data is processed to deliver the website reliably and securely and to defend against attacks. Legal basis: Art. 6(1)(f) GDPR (legitimate interest in a secure, functional website). Microsoft acts as a processor under a data processing agreement (Art. 28 GDPR). Processing may involve transfers to third countries, safeguarded by EU Standard Contractual Clauses and Microsoft’s EU Data Boundary commitments.

Contact form

If you use the contact form, the data you enter — your name, your email address, the subject, and your message — is processed so that I can receive and respond to your enquiry.

The form is handled by Web3Forms (web3forms.com), a third-party form-delivery service. When you submit the form, the entered data is transmitted to Web3Forms’ servers and forwarded to me by email. This may involve processing on servers outside the EU/EEA. Legal basis: Art. 6(1)(a) GDPR (your consent, given via the checkbox when you submit) together with Art. 6(1)(b) and (f) GDPR (handling your enquiry). You can withdraw your consent at any time with effect for the future.

[Verify Web3Forms’ provider details, data location, and whether a data processing agreement (Art. 28 GDPR) / Standard Contractual Clauses are in place, and add them here. If GDPR-compliant processing cannot be ensured, consider the self-hosted Azure Function option for the form instead.]

Enquiry data is kept until your request has been dealt with and any follow-up questions are resolved, then deleted unless statutory retention periods apply.

Theme preference (local storage)

If you use the light/dark theme toggle, your choice is stored locally in your browser via localStorage so the site can remember it on your next visit. This information is set only when you actively use the toggle, never leaves your device, and is not accessible to me. Because it is strictly necessary for the feature you requested, no consent banner is required for it.

Fonts

Web fonts are self-hosted: the font files are bundled with the site and served from this domain. No connection to Google Fonts or any other third party is made when fonts load, so no data is transmitted to a font provider.

Cookies and tracking

This site sets no tracking cookies and uses no analytics or advertising. (Google Tag Manager is present in the codebase but disabled.) The only client-side storage used is the theme preference described above.