Privacy notice
Status: 2 June 2026 · v1 · Privacy notice under GDPR
1. Definitions
your-server — managed hosting service operated by Oliver Richter, sole proprietorship, Kemnitzer Straße 14 (Hofgebäude), 02747 Herrnhut, OT Berthelsdorf, Germany. VAT-ID: DE221581095. Privacy e-mail: datenschutz@your-server.info.
Customer / Administrator — business or self-employed person using our hosting services to run their own website or application.
Data subject — any identified or identifiable natural person within the meaning of Art. 4 GDPR whose data is processed when visiting your-server.info or through our hosting services.
A data protection officer has not been appointed as in our assessment no corresponding obligation arises under Art. 37 GDPR. Privacy enquiries please send to datenschutz@your-server.info.
2. Controller within the meaning of GDPR
Controller for the processing of personal data in the context of website visits, account management, billing and support is Oliver Richter (full provider details see imprint).
Where the administrator processes personal data of third parties (e.g. website visitors, newsletter subscribers, customer data) via the your-server infrastructure, the administrator is the controller and your-server is the processor within the meaning of Art. 28 GDPR. See data-processing agreement.
3. Processing on website visit
When you visit your-server.info, our web server automatically collects technical information:
- IP address (truncated after 7 days)
- Date and time of the request
- Requested URL and HTTP status code
- Referrer
- Browser identifier (User-Agent)
Legal basis: Art. 6 (1) (f) GDPR (legitimate interest in operating a functional, secure web service). Retention: maximum 7 days, then automatic deletion.
5. Fonts
This website loads fonts from Google Fonts (Google Ireland Limited). Your IP address is transmitted to Google in the process. Legal basis: Art. 6 (1) (f) GDPR. On request we self-host the fonts.
6. Processing for hosting customers
When you use our hosting or migration services, we process personal data on your behalf (Art. 28 GDPR). We sign a data-processing agreement with you before the service begins.
- Content of the customer website (texts, images, documents)
- Database content (e.g. WordPress users, comments, orders)
- Access logs of the customer website
- E-mail correspondence, where you entrust data to us
7. Sub-processors
- Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, Germany — data centre, server hosting (location Nuremberg, DE). ISO 27001 certified.
- Internet Security Research Group (Let's Encrypt), San Francisco, USA — SSL certificates. Standard contractual clauses.
- Google Ireland Limited, Gordon House, Dublin 4, Ireland — solely for font delivery (Google Fonts).
8. Contacting us
When you contact us by e-mail, we process the transmitted data (name, e-mail address, message) solely to respond to your enquiry. Legal basis: Art. 6 (1) (b) GDPR (pre-contractual measures) or (f) (legitimate interest in answering).
9. Retention
We store personal data only as long as required for the respective purposes or where statutory retention obligations exist. Contract data is generally retained for 10 years after contract end (tax retention obligation). Server logs are deleted after 7 days.
10. Data security
Transport encryption (TLS 1.3) for all connections. Backups stored encrypted. Access to customer systems via SSH keys only. Container isolation (Docker). CrowdSec for real-time defence. Detailed TOM are an appendix to the data-processing agreement.
11. Your rights
- Information (Art. 15 GDPR)
- Rectification (Art. 16 GDPR)
- Erasure (Art. 17 GDPR)
- Restriction of processing (Art. 18 GDPR)
- Data portability (Art. 20 GDPR)
- Objection (Art. 21 GDPR)
- Complaint to the supervisory authority (Art. 77 GDPR) — competent: Sächsischer Datenschutzbeauftragter, Devrientstraße 5, 01067 Dresden, Germany
12. Updates
We reserve the right to adjust this notice to current legal requirements. For your next visit, the then-current version applies.
Status: 2 June 2026 · v1