English

Legal Notice and Privacy Policy

Private personal website by Christian Kling. This page covers both the Legal Notice (Impressum) and the Privacy Policy (GDPR). No trackers, no ad profiling, no third-party analytics.

Last updated: 2026-05-05

Privacy Policy

Only technically necessary data or data you submit voluntarily is processed. No trackers, no ad profiling, no third-party analytics.

1. Data Controller

Controller under the GDPR: Christian Kling

Status: Private individual

Contact: soulwax@cock.li

2. Scope of Processing

This privacy policy applies to all websites listed on https://bluesix.dev and to this website itself (https://legal.bluesix.dev).

Only data necessary for technical operation is processed, plus data you actively send by email.

Special categories of personal data under Art. 9 GDPR are processed only if you actively provide them and an applicable legal basis exists.

3. Legal Bases under GDPR

Art. 6(1)(f) GDPR for secure and stable website operation (legitimate interests).

Art. 6(1)(b) GDPR for handling specific requests when pre-contractual or contractual steps are relevant.

Art. 6(1)(a) GDPR and, where applicable, Art. 9(2)(a) GDPR when you voluntarily submit data based on consent.

4. Hosting, CDN, and Server Logs

The content is delivered statically. Delivery may use the CDN network of Vercel Inc., 440 N Barranca Ave #4133, Covina, CA 91723, USA, as a processor within the meaning of Art. 28 GDPR.

Transfers to the United States rely, for certified recipients, on the European Commission adequacy decision for the EU-US Data Privacy Framework (Decision 2023/1795). Standard contractual clauses under Art. 46(2)(c) GDPR apply as a fallback.

When the site is accessed, technically necessary connection data is processed (IP address, time, requested resource, HTTP status, user agent) to ensure security and stability. The website operator does not persist this data beyond the immediate request lifecycle; any platform logs of the processor are governed by its data processing agreement.

5. Contact by Email

If you contact the controller by email, your information is processed to handle the request and possible follow-up questions.

Please send sensitive data only when necessary.

6. No Trackers, No Third-Party Analytics

No cross-site trackers are used.

No marketing cookies are set.

No behavioral profiles are created.

No third-party analytics scripts are loaded.

This website does not load external font providers or other third-party scripts.

7. Transport Encryption

This website uses TLS/SSL encryption. You can recognize an encrypted connection by "https://" in your browser address bar.

8. Data Security (Art. 32 GDPR)

Appropriate technical and organizational measures are used to provide a level of protection appropriate to the risk. Specific security details are not published publicly.

9. Retention and Deletion

Personal data is stored only as long as necessary for the relevant purposes or as required by statutory retention obligations.

After that, data is deleted or anonymized in a privacy-compliant way.

10. Your GDPR Rights

You have the following rights:

Access (Art. 15 GDPR)
Rectification (Art. 16 GDPR)
Erasure (Art. 17 GDPR)
Restriction of processing (Art. 18 GDPR)
Data portability (Art. 20 GDPR)
Objection to processing based on Art. 6(1)(f) GDPR (Art. 21 GDPR)
Withdrawal of consent with effect for the future (Art. 7(3) GDPR)

11. Supervisory Complaint and Applicable Law

You may lodge a complaint with a data protection supervisory authority, especially in the EU member state of your habitual residence, workplace, or the place of the alleged infringement (Art. 77 GDPR).

German data protection law (GDPR, BDSG) and other applicable laws of the Federal Republic of Germany apply.

12. Additional Transparency Information under Art. 13 GDPR

No data protection officer has been appointed because there is no legal obligation to appoint one for this private, low-risk website.

Providing personal data is not a statutory or contractual requirement. If technically necessary connection data is not transmitted, the website cannot be delivered; if contact details or message content are not provided, an email inquiry cannot be answered.

No automated decision-making within the meaning of Art. 22 GDPR and no profiling take place.

Recipients or categories of recipients are the hosting/CDN provider Vercel and its subprocessors for delivery and security, plus email services involved in transport and delivery when you contact the controller by email.

13. Changes to this Privacy Policy

This privacy policy may be adjusted if technical, legal, or organizational circumstances change.

The version published on this page with the date shown above is authoritative.

14. No Legal Advice

This website does not provide legal advice for individual cases.