1. Controller

The controller within the meaning of the General Data Protection Regulation (GDPR) is:

SynthHead Electronics e.K.
Proprietor: Eric Hoheisel
Keltenburgstr. 10
71034 Boeblingen
Germany

Phone: +49 176 22357453
Email: webmaster@synthhead.de
Website: www.synthhead.de

2. General Information on Data Processing

Personal data are any data with which you can be personally identified.
Examples include:

• Your name
• Your email address
• Your IP address
• Website usage data

The following information provides an overview of what happens to your personal data when you visit this website and other online services offered by us.

3. Hosting of the Website and Documentation Platform

This website and the associated wiki documentation platform are hosted by the following provider (hosting):

dogado GmbH
Antonio-Segni-Straße 11
44263 Dortmund
Germany

Data Storage for Server Operation

When you access the website, information is automatically collected by the hosting provider and stored in so-called server log files. These log files contain the visitor's IP address and therefore personal data.

The following data are collected there:

• Website visited
• Time of access
• Amount of data sent in bytes
• Source/reference from which you reached the page
• Browser used
• Operating system used
• IP address used

These data are processed to ensure the stable operation of the website, to guarantee system security, and to analyze technical errors. These data are not merged with other data sources. The legal basis is our legitimate interest according to Art. 6 (1) (f) GDPR.

A Data Processing Agreement (DPA) according to Art. 28 GDPR has been concluded with the hosting provider.

Storage Duration

The IP address stored in the server log files is anonymized after 24 hours. Deletion then takes place after 7 days at the latest.

4. Cookies

Our websites use so-called cookies. Cookies are small text files that your browser creates automatically and that are stored on your end device.

Technically Necessary Cookies

We exclusively use technically necessary cookies. These are required to ensure the basic functions of the website (such as session management in the wiki or security functions). Without these cookies, the website cannot function fully.

• Legal Basis: The use of these cookies is based on our legitimate interest in the technically error-free provision of our services in accordance with Art. 6 (1) (f) GDPR and Section 25 (2) TDDDG.

No Cookies Requiring Consent

We do not use optional cookies for analysis, statistics, or marketing purposes. Therefore, no interaction with a cookie banner is required when visiting our website.

5. Content Management System (Grav CMS)

We use the content management system Grav CMS to manage and present our content. This system is used for the technical provision and correct display of our website.

Data Processing

As part of the use of our website, technical data such as your IP address, browser information, and the time of the page view are processed. This processing is technically necessary to transmit the requested content securely and in an optimized manner to your device.

Cookies

Grav CMS uses technically necessary session cookies (e.g., to control language output or for session management). These cookies do not contain personal profiles and are deleted after you close your browser. Consent is not required for these purely functional cookies in accordance with Section 25 (2) TDDDG.

Legal Basis

Processing is carried out on the basis of our legitimate interest in the secure and technically error-free provision of our online services in accordance with Art. 6 (1) (f) GDPR.

Admin Area

The administration area of the CMS is password-protected and is available exclusively to the website operator. No registration or data collection of website visitors takes place within this area.

6. Documentation Platform (DokuWiki)

In addition to our main presence, we operate an instance of the "DokuWiki" software at the subdomain wiki.synthhead.de to provide documentation.

Data Processing and Purpose

When using the wiki, the server log files mentioned in the "Hosting" section are collected. Furthermore, the following data are processed:

• Contributions and Changes: The creation and editing of content, as well as access to the version history (traceability of changes), is strictly reserved for the administrator. Public inspection of editing metadata for non-registered visitors does not take place.

• Registration and Login: The login area is password-protected and only available to the operator. If accounts are created for third parties in individual cases, we store the data provided during registration (username, email address) and the time of login.

Cookies

DokuWiki uses technically necessary cookies (e.g., for session control or security functions), which are deleted at the end of the session or after logging out. Consent is not required in accordance with Section 25 (2) TDDDG.

Legal Basis

Processing is carried out on the basis of our legitimate interest in the secure provision of the documentation and the integrity of the wiki system in accordance with Art. 6 (1) (f) GDPR.

6. Contact via Email

If you contact us by email, your details will be stored by us for the purpose of processing the inquiry and in the event of follow-up questions (Art. 6 (1) (f) GDPR). As soon as the substantive necessity for storage no longer exists and any applicable statutory retention periods have expired, your email data will be deleted.

8. Social Media

Our website contains links to our profiles on social networks. These are not embedded social media plugins, but static links. By clicking these links, you leave our website. Data processing on the respective platforms is carried out by the operators of the networks.

Joint Controllership

For the processing of personal data when visiting our social media presences, we are partially jointly responsible with the respective platform operator (Art. 26 GDPR). We have only limited influence on the data processing by the providers. As far as possible, we use the providers' settings in a data protection-compliant manner.

Facebook and Instagram

We operate profiles on Facebook and Instagram.

Provider is Meta Platforms Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland.

• Purpose & Legal Basis: We operate these profiles to communicate with customers and interested parties and to provide information about our activities. The legal basis is our legitimate interest in contemporary public relations in accordance with Art. 6 (1) (f) GDPR.

• Insights Data: Meta provides us with "Insights" for our pages (statistical data on usage). This data is anonymized for us. You can find the joint controllership agreement with Meta here: Page Insights Addendum.

• Data Transfer: Please note that user data may also be transferred to the USA. Meta relies on the EU-U.S. Data Privacy Framework or standard contractual clauses.

Further information on data processing can be found in Meta's privacy policies:

• Facebook Privacy Policy
• Instagram Privacy Policy

9. Data Security

SSL or TLS Encryption

For security reasons and to protect the transmission of confidential content, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from 'http://' to 'https://' and by the lock symbol in your browser bar.

If SSL or TLS encryption is activated, the data you transmit to us (e.g., when using the wiki or making inquiries) cannot be read by third parties.

10. Rights of the Data Subject and Right of Complaint

Rights of the Data Subject

As a data subject, you have the following rights regarding your personal data within the framework of the legal provisions:

• Right of Access (Art. 15 GDPR) to your data stored by us, as well as its origin, recipients, and the purpose of data processing.
• Right to Rectification (Art. 16 GDPR) of inaccurate or incomplete data.
• Right to Erasure (Art. 17 GDPR), provided that storage is not required to fulfill a legal obligation or for the establishment, exercise, or defense of legal claims.
• Right to Restriction of Processing (Art. 18 GDPR) if the accuracy of the data is contested or the processing is unlawful.
• Right to Data Portability (Art. 20 GDPR) to receive your data in a structured format.
• Right to Object (Art. 21 GDPR) to processing, provided that it is based on our legitimate interest.
• Withdrawal of Consent (Art. 7 Para. 3 GDPR) of a consent previously granted to us.

Right to Lodge a Complaint with a Supervisory Authority

You also have the right to lodge a complaint with a data protection supervisory authority regarding the processing of your personal data by us (Art. 77 GDPR). The authority responsible for us is:

Der Landesbeauftragte für den Datenschutz und die Informationsfreiheit Baden-Württemberg
Lautenschlagerstraße 20
70173 Stuttgart, Germany
Website: www.baden-wuerttemberg.datenschutz.de

11. Changes to this Privacy Policy

In the event that other user-related data than those mentioned so far must be collected for this purpose, we reserve the right to supplement the information on this page.