Privacy Policy

1. Controller

The controller responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is:

Lucrecia Karina Abasto
c/o Online-Impressum.de #5803
Europaring 90
53757 Sankt Augustin
Germany
Email: privacy[at]read4g.com

2. General Information on Data Processing

The protection of personal data is taken very seriously. Personal data is processed only to the extent necessary to provide a functional website and its content.

This website is currently operated for non-commercial, informational, and educational purposes.

Personal data is processed only where a legal basis exists under Article 6 GDPR.

3. Access to the Website and Server Log Files

When accessing this website, the hosting provider automatically collects and stores information in server log files. This data may include:

• IP address
• Date and time of access
• Requested page or file
• Browser type and version
• Operating system
• Referrer URL

The processing is carried out on the basis of Article 6(1)(f) GDPR (legitimate interest) to ensure technical stability, security, and proper operation of the website.

The data is not combined with other data sources and is not used to identify individual users.

4. Hosting (IONOS)

This website is hosted on a virtual private server (VPS) provided by IONOS SE.

Personal data processed on this website is stored on IONOS servers located within the European Union. Processing is carried out solely for the purpose of providing and securing the website.

The legal basis for this processing is Article 6(1)(f) GDPR.

5. Content Delivery Network and Security (Cloudflare)

This website uses Cloudflare, a content delivery network (CDN) and security service, to protect against attacks and improve performance.

Cloudflare acts as a processor and may process technical connection data such as IP addresses. Data may be transferred to servers outside the European Union.

Cloudflare relies on appropriate safeguards pursuant to Article 46 GDPR, including standard contractual clauses.

The legal basis for this processing is Article 6(1)(f) GDPR (legitimate interest in secure and reliable website operation).

6. Cookies

This website uses only technically necessary cookies.

These cookies are required for the basic functionality and security of the website. They do not store personally identifiable information and are not used for tracking or marketing purposes.

The use of technically necessary cookies is based on Article 6(1)(f) GDPR.

A cookie consent banner is not required for this type of cookie.

7. User Accounts and Authentication (Supabase)

Users may create a user account and sign in to the application.

For this purpose, the following personal data is processed:

• Email address
• Encrypted password
• Technical authentication metadata (e.g., user ID, login timestamps)

Authentication and user management are provided by Supabase Inc. (https://supabase.com/), which acts as a data processor on behalf of the controller.

The authentication data is stored and processed on Supabase infrastructure. Depending on the configuration of Supabase, data may be processed within or outside the European Union. Supabase applies appropriate safeguards pursuant to Article 46 GDPR, including standard contractual clauses.

Passwords are never stored in plain text and are handled exclusively by Supabase using industry-standard encryption and security practices.

The legal basis for processing is:

• Article 6(1)(b) GDPR – performance of a contract (provision of user accounts), and
• Article 6(1)(f) GDPR – legitimate interest in secure authentication and abuse prevention.

Users may request deletion of their account and associated data at any time by contacting the controller.

8. Feedback Form

Users may submit feedback via a feedback form on the website.

The following data may be processed:

• Feedback message content
• Email address (optional, only if the user chooses to provide it for follow-up contact)
• Technical metadata (e.g., timestamp, IP address where technically required for security)

Providing an email address is voluntary. If no email address is provided, the feedback will be processed anonymously where technically possible.

The data is used exclusively for:

• Improving the quality and functionality of the service
• Responding to feedback inquiries if contact details are provided

The legal basis for processing is:

• Article 6(1)(a) GDPR – consent (when an email address is voluntarily provided), and/or
• Article 6(1)(f) GDPR – legitimate interest in improving the service and handling feedback.

Feedback data is deleted once it is no longer required for the stated purposes, unless statutory retention obligations apply.

9. Contact via Email

If you contact the website operator via email, the transmitted personal data will be processed exclusively for the purpose of handling your inquiry.

The legal basis is Article 6(1)(b) GDPR (pre-contractual communication) or Article 6(1)(f) GDPR (legitimate interest in responding to inquiries).

The data will be deleted once the inquiry has been fully processed, unless statutory retention obligations apply.

10. Use of AI Services (OpenAI)

This website uses AI-based services provided by OpenAI to generate or process textual content.

When using these features:

• User input may be transmitted to OpenAI
• Inputs should not contain sensitive personal data
• Data processing may take place outside the European Union

OpenAI applies appropriate safeguards pursuant to Article 46 GDPR, including standard contractual clauses.

The legal basis for this processing is Article 6(1)(f) GDPR (legitimate interest in providing an interactive educational service).

Users are advised not to enter personal or sensitive information into AI input fields.

11. Fonts and External Resources

Google Fonts

This website uses fonts provided by Google Fonts. When pages are loaded, font files may be requested from Google servers, which may involve the transmission of the user’s IP address.

The use of Google Fonts is based on Article 6(1)(f) GDPR (legitimate interest in consistent and visually appealing presentation).

Lucide Icons

Icons and visual assets from lucide.dev may be loaded to ensure proper display. Technical connection data may be processed in this context.

12. Rights of Data Subjects

You have the right to:

• Access your personal data (Art. 15 GDPR)
• Rectification of inaccurate data (Art. 16 GDPR)
• Erasure of your data (Art. 17 GDPR)
• Restriction of processing (Art. 18 GDPR)
• Data portability (Art. 20 GDPR)
• Object to processing (Art. 21 GDPR)

You also have the right to lodge a complaint with a supervisory authority. The competent authority is the data protection authority of your German federal state of residence.

13. Changes to This Privacy Policy

This privacy policy may be updated to reflect legal or technical changes. The current version is always available on this website.