Status: April 2026 · This privacy policy will be reviewed by a lawyer before publication. It reflects the actual technical state of the website. Fields in square brackets need to be completed before going live.
1. Controller
Controller within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws is: Jürgen Ryannel [Street and number] [ZIP City] Germany Email: hello@juergenryannel.com Phone: [phone] A data protection officer is not legally required.
2. General information on data processing
We process personal data of our users only insofar as this is necessary to provide a functional website and our content and services. The processing of personal data of our users takes place regularly only with the user's consent or where processing is permitted by law. Where obtaining the consent of the data subject is not possible and processing is permitted by law, the relevant legal basis is referenced in the following sections.
3. Provision of the website and server logs
Each time you access our website our hosting provider automatically collects information that your browser transmits to our server, in a so-called log file. The following data is processed: · IP address (truncated/anonymized) · Date and time of the request · Time zone difference to Greenwich Mean Time (GMT) · Content of the request (specific page) · HTTP status code · Amount of data transferred · Website from which the request originates (referrer) · Browser, operating system and its surface, language and version of the browser software Legal basis: Art. 6 (1) lit. f GDPR (legitimate interest in stable, secure operation of the website and detection of attacks). Retention period: Maximum 14 days. After that, the data is deleted or anonymized. Hosting provider: Cloudflare Pages (Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA). Cloudflare is certified under the EU-U.S. Data Privacy Framework and provides Standard Contractual Clauses (SCCs). Processing takes place in EU data centers where possible.
4. Appointment booking via Cal.com
On the contact page and the home page a booking calendar from Cal.com (Cal.com, Inc., 2261 Market Street #4667, San Francisco, CA 94114, USA) is embedded, through which you can book a free intro call. For privacy reasons the calendar is not loaded automatically. Only after an active click on the "Load calendar" button is a connection to Cal.com's servers established, and Cal.com receives information about your visit (in particular IP address, browser information). If you book an appointment via the calendar, you transmit the following data directly to Cal.com: name, email address, optional notes about the purpose of the appointment. Legal basis: Art. 6 (1) lit. a GDPR (consent via active click on the load button) and Art. 6 (1) lit. b GDPR (performance of pre-contractual measures). A data processing agreement (DPA) per Art. 28 GDPR exists with Cal.com. Cal.com transfers data partially to the USA. Standard Contractual Clauses are in place and Cal.com is listed under the EU-U.S. Data Privacy Framework. Retention: Booking data is stored until the matter is concluded and beyond for the duration of statutory retention periods. Further information: https://cal.com/privacy
5. Contact via email
If you contact us by email, your information (email address, name, message content) is stored solely for the purpose of handling your inquiry. Legal basis: Art. 6 (1) lit. b GDPR (pre-contractual measures / performance of contract) or Art. 6 (1) lit. f GDPR (legitimate interest in effective handling). Retention: Data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the event of a resulting engagement, statutory retention periods apply (in particular 6 or 10 years per German Commercial Code / Tax Code).
6. Cookies and tracking
This website does not set tracking cookies and does not use web analytics without your prior consent. Only technically necessary cookies are used, where required at all (currently: none). Should analysis or marketing tools be used in the future, consent will be obtained in advance via a banner per § 25 (1) TDDDG and documented here.
7. Fonts (self-hosted)
This website uses the fonts "Inter" and "Geist". Both fonts are served locally from our own web server. No connection is made to external font services (e.g. Google Fonts). No font-related data is therefore transmitted to third parties.
8. External links
The website contains links to external third-party websites, in particular to LinkedIn, GitHub, Valiro (https://valiro.ai), and Tavora (https://tavora.ai). When you follow such a link, the privacy policy of the respective third-party provider applies. Please inform yourself separately there.
9. Data security
The website is delivered exclusively over an encrypted connection (HTTPS / TLS). We also take appropriate technical and organizational measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction, or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.
10. Your rights as a data subject
Insofar as your personal data is processed, you are a data subject within the meaning of the GDPR and are entitled to the following rights vis-à-vis the controller: · Right of access (Art. 15 GDPR) · Right to rectification (Art. 16 GDPR) · Right to erasure (Art. 17 GDPR) · Right to restriction of processing (Art. 18 GDPR) · Right to data portability (Art. 20 GDPR) · Right to object (Art. 21 GDPR) · Right to withdraw consent given (Art. 7 (3) GDPR) — withdrawal takes effect for the future To exercise your rights, an informal message to hello@juergenryannel.com suffices.
11. Right to lodge a complaint with a supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement, if you consider that the processing of personal data relating to you infringes the GDPR. The supervisory authority responsible for me is: [Competent state data protection authority — to be added once the place of business is determined]
12. Transfers to third countries
Personal data is transferred to third countries (outside the EEA) only to the providers listed under No. 3 (hosting) and No. 4 (Cal.com). Both providers are certified under the EU-U.S. Data Privacy Framework; Standard Contractual Clauses per Art. 46 (2) lit. c GDPR are also in place.
13. Automated decision-making
Automated decision-making within the meaning of Art. 22 GDPR, including profiling, does not take place on this website.
14. Currency and changes to this privacy policy
This privacy policy is currently valid and dated April 2026. Due to the further development of the website or because of changed legal or regulatory requirements, it may become necessary to amend this privacy policy. The current privacy policy can be accessed on this page at any time.
15. Contact for privacy requests
If you have questions about the collection, processing, or use of your personal data, about access, rectification, blocking, or deletion of data, and the withdrawal of consent given, please contact: Jürgen Ryannel Email: hello@juergenryannel.com
Let's talk for 30 minutes.
I listen, ask questions, and tell you honestly whether and how I can help.