derbân Özlem Dilek
Cengiz
DE TR EN
Legal

Privacy Policy

The German version of this privacy policy is the legally binding reference. This English translation is provided for transparency so you can give informed consent. In case of any conflict or interpretation question, the German wording prevails.

1) Introduction and contact details of the controller

1.1  The following sections explain how personal data is processed when you use the derban.de website. Personal data is any data that can be used to personally identify you.

1.2  Controller within the meaning of the General Data Protection Regulation (GDPR) is.

Özlem Dilek Cengiz
c/o flexdienst - #20140
Kurt-Schumacher-Straße 76
67663 Kaiserslautern
Germany
Phone. +49 531 12877453
E-mail.  contact@lahsunia.com

2) Data collected when visiting the website

2.1  When you use the website purely for informational purposes, i.e. when you do not register or otherwise transmit information, only the data that your browser transmits to the server is collected (so-called „server log files"). This data is technically required to deliver the website to you.

  • IP address (anonymised after processing)
  • Date and time of the request
  • Requested URL and HTTP status code
  • Amount of data transferred in bytes
  • Referrer from which the page was accessed
  • Browser and operating system used (user agent)

Processing takes place in accordance with Art. 6 (1) lit. f GDPR on the basis of the legitimate interest in a stable and secure operation of the website. This data is not passed on or used for any other purpose. The server logs are automatically deleted after a maximum of 14 days.

2.2  For security reasons and to protect the transmission of personal data and other confidential content, this website uses SSL or TLS encryption. You can recognise an encrypted connection by the string „https://" and the lock symbol in your browser bar.

3) Hosting

A service provider is commissioned to host this website, providing its services exclusively on servers within Germany. All data collected on the website is processed on these servers. No data transfer takes place to third countries outside the European Union.

A data processing agreement under Art. 28 GDPR has been concluded with the hosting provider, ensuring the protection of visitor data and prohibiting unauthorised disclosure to third parties.

4) What this website does not collect

derban.de is a purely static collection of texts. No cookies are set, and no analytics or tracking tools are used. There are no third-party scripts, no newsletter sign-up, no comment function, and no embedded content from external platforms such as YouTube, Instagram or Twitter. The Montserrat font used on the site is loaded exclusively from the own server, not via Google Fonts or a comparable external service.

5) Contact

You can voluntarily leave a message via the contact form or by e-mail. The data transmitted are. Name, e-mail address and the content of your message. This information is used exclusively to respond to your inquiry.

The legal basis is Art. 6 (1) lit. a GDPR (consent given by submitting the form) and, if the contact aims at concluding a contract, additionally Art. 6 (1) lit. b GDPR.

Your message is delivered to the controller by e-mail and is not stored in any database. It remains in the mailbox until it is no longer required to process your inquiry, but no longer than twelve months after the last correspondence.

The form transmission is encrypted via HTTPS. To prevent automated spam submissions, a hidden honeypot field and an IP-based rate limit (a maximum of five requests within five minutes per IP) are in use. The IP address is only held in memory briefly and not logged.

You may withdraw your consent at any time and request the deletion of your data. An informal e-mail to the address above is sufficient.

6) Rights of data subjects

6.1  Applicable data protection law grants you the following rights with regard to the processing of your personal data by the controller.

  • Right of access in accordance with Art. 15 GDPR
  • Right to rectification in accordance with Art. 16 GDPR
  • Right to erasure in accordance with Art. 17 GDPR
  • Right to restriction of processing in accordance with Art. 18 GDPR
  • Right to data portability in accordance with Art. 20 GDPR
  • Right to withdraw consent given in accordance with Art. 7 (3) GDPR
  • Right to lodge a complaint with a supervisory authority in accordance with Art. 77 GDPR

6.2 Right to object.  Insofar as personal data is processed on the basis of overriding legitimate interests pursuant to Art. 6 (1) lit. f GDPR within the context of a balancing of interests, you have the right at any time, on grounds relating to your particular situation, to object to this processing with effect for the future. If you exercise your right to object, the processing of the data concerned will be terminated, unless compelling legitimate grounds for the processing can be demonstrated that override your interests, fundamental rights and fundamental freedoms.

7) Duration of storage

Personal data is only stored for as long as it is required for the respective processing purpose.

  • Server log files: a maximum of 14 days
  • Messages from the contact form: a maximum of twelve months after the last correspondence
  • In the case of explicit consent: until withdrawal

Where statutory retention periods prevent earlier deletion, the data concerned will be deleted routinely after these periods have expired.

As of. May 2026

← Back to home