Skip to content

Privacy Policy

1. Privacy at a Glance

General Information

The following notes provide a simple overview of what happens to your personal data when you visit this website. Personal data is any data that can be used to identify you personally. For detailed information on data protection, please refer to this privacy policy.

This privacy policy applies to the website www.congplan.app. Separate notices may apply to the CongPlan web app (my.congplan.app) and the documentation (docs.congplan.app).

2. Controller

The controller within the meaning of the General Data Protection Regulation (GDPR) is:

Sascha Henning
Dresdner Landstr. 11
01744 Dippoldiswalde
Germany

Email: kontakt@congplan.app

The controller decides, alone or jointly with others, on the purposes and means of the processing of personal data (e.g. names, email addresses, etc.).

3. Hosting (Cloudflare)

This website is hosted and delivered via the network of Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA (Cloudflare Workers / Cloudflare edge). When you visit our website, technical access data (see “Server Log Files”) is processed by Cloudflare, among other things to deliver the content securely and with good performance and to defend against attacks.

The use of Cloudflare is based on Art. 6 (1) (f) GDPR. We have a legitimate interest in presenting our website as reliably, securely, and quickly as possible.

Where personal data is transferred to a third country (USA), this is done on the basis of appropriate safeguards, in particular the EU Standard Contractual Clauses and – where applicable – a certification under the EU-US Data Privacy Framework. We have concluded a data processing agreement (DPA) with Cloudflare in accordance with Art. 28 GDPR.

For more information, please see Cloudflare’s privacy policy: https://www.cloudflare.com/privacypolicy/

4. Server Log Files

When you access this website, the hosting / edge provider automatically collects information transmitted by your browser (“server log files”). These include in particular:

  • browser type and browser version
  • operating system used
  • referrer URL (the previously visited page)
  • date and time of the server request
  • requested file or URL
  • amount of data transferred and HTTP status code
  • (truncated or full) IP address

This data is not merged with other data sources. Processing is based on Art. 6 (1) (f) GDPR. The website operator has a legitimate interest in the technically error-free presentation, security, and optimization of its website; for this purpose, server log files must be collected. The data is deleted as soon as it is no longer required for the purpose for which it was collected.

5. Analytics: Umami Analytics

This website uses Umami Analytics, a privacy-friendly web analytics tool. Umami works cookie-free and does not store any cookies or comparable identifiers on your device. No cross-device profiles are created and no data is shared with third parties for advertising purposes.

Umami is hosted on the controller’s own, self-operated infrastructure (insights.congplan.app); the analytics data is not transmitted to an external analytics provider. The data collected – in aggregated, anonymized form – includes in particular the pages visited, referrers, approximate region of origin, and browser and device type. IP addresses are not stored in an identifiable form.

The legal basis is Art. 6 (1) (f) GDPR. The legitimate interest lies in the statistical analysis of usage behavior in order to improve the service. As no cookies or comparable access to terminal devices take place, consent under § 25 TDDDG is not required.

6. Contact

If you contact us by email (e.g. at kontakt@congplan.app), your details, including the contact data you provide, will be stored by us for the purpose of processing your enquiry and in case of follow-up questions.

This data is processed on the basis of Art. 6 (1) (b) GDPR, provided your enquiry is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective handling of the enquiries addressed to us (Art. 6 (1) (f) GDPR).

The data you send us will remain with us until you request its deletion or the purpose for storing it no longer applies. Mandatory statutory provisions – in particular retention periods – remain unaffected.

Providing your contact data is neither legally nor contractually required. Without this information, however, we may not be able to process your enquiry, or not in full.

7. SSL / TLS Encryption

For security reasons and to protect the transmission of confidential content, this website uses SSL / TLS encryption. You can recognize an encrypted connection by the fact that the browser’s address bar changes from “http://” to “https://” and by the lock symbol in your browser bar. When SSL / TLS encryption is enabled, the data you transmit to us cannot be read by third parties.

8. Your Rights as a Data Subject

Within the scope of the applicable statutory provisions, you have the following rights at any time:

  • Access to the personal data we have stored about you (Art. 15 GDPR)
  • Rectification of incorrect data (Art. 16 GDPR)
  • Erasure of the data we have stored about you (Art. 17 GDPR)
  • Restriction of data processing (Art. 18 GDPR)
  • Data portability (Art. 20 GDPR)
  • Objection to the processing (Art. 21 GDPR)
  • Withdrawal of consent given, with effect for the future (Art. 7 (3) GDPR)

To exercise your rights, an informal notification to kontakt@congplan.app is sufficient.

Right to Object

Where data processing is based on Art. 6 (1) (f) GDPR, you have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you.

Right to Lodge a Complaint with a Supervisory Authority

In the event of breaches of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, place of work, or place of the alleged infringement. This right to complain is without prejudice to any other administrative or judicial remedy.

9. Changes to This Privacy Policy

We reserve the right to adapt this privacy policy so that it always complies with current legal requirements or to implement changes to our services. The current version then applies to your next visit.