Last updated: July 07, 2026
I take the protection of your personal data very seriously. This Privacy Policy explains what personal data is processed when you visit my website www.disaster-und-recovery.de, how it is used, and what rights you have under the European General Data Protection Regulation (GDPR).
This is a personal, non-commercial blog. The views expressed here are my own and not those of my employer.
1. Controller
The controller responsible for data processing on this website is:
Lukas Klostermann
48159, Münster, Germany (Full address on request)
Email: it.l.klostermann@gmail.com
2. Data Processed When You Visit
a) Server log files (hosting provider). When you access this website, my hosting provider (Strato AG) automatically processes technical data that your browser transmits:
- IP address of your device
- Date and time of access
- URL of the requested page
- Referrer URL (previously visited page)
- Browser type and version
- Operating system
This processing is technically necessary to deliver the website and to ensure its security and stability. Legal basis: Art. 6(1)(f) GDPR (legitimate interest in a secure, functioning website).
b) Reach measurement (WP Statistics). I use the self-hosted analytics tool WP Statistics to understand, in aggregate, how the site is used. It is configured to work without cookies and to store anonymised IP addresses, so no data is transmitted to third parties and individual visitors are not identified. Legal basis: Art. 6(1)(f) GDPR (legitimate interest in statistical analysis).
3. Purposes and Legal Bases
Your personal data is processed for the following purposes:
- Operating and displaying the website — Art. 6(1)(b) and 6(1)(f) GDPR
- Ensuring system security and stability — Art. 6(1)(f) GDPR (legitimate interest)
- Anonymous reach measurement — Art. 6(1)(f) GDPR (legitimate interest)
- Any optional service that requires consent (e.g. a newsletter) — Art. 6(1)(a) GDPR
4. Hosting
This website is hosted by Strato AG, Otto-Ostrowski-Straße 7, 10249 Berlin, Germany. Strato processes personal data solely on my behalf and in accordance with a data processing agreement pursuant to Art. 28 GDPR.
5. SSL/TLS Encryption
This site uses SSL/TLS encryption (recognisable by “https://” and the padlock icon in your browser) to protect the transmission of data between your browser and the server.
6. Cookies
This website does not set tracking or marketing cookies. Only technically necessary cookies may be used to operate the site. Should optional services that use cookies be added in the future, they will only be activated with your prior consent (Art. 6(1)(a) GDPR), which you may withdraw at any time with effect for the future.
7. Web Fonts (self-hosted)
This website uses the “Fraunces” and “Inter” fonts. These fonts are hosted locally on my own server. No connection to Google servers is established, and no data (such as your IP address) is transmitted to Google when fonts are loaded.
8. Comments and Ratings
Comment and rating functions are disabled on this website. No personal data is collected through comments or ratings.
9. External Links and Social Media
This website contains links to external sites and to my profiles on platforms such as LinkedIn, GitHub, X, and Bluesky. When you follow such a link, the respective provider’s privacy policy applies. I have no influence over the data processing carried out by these third parties and assume no responsibility for their content or practices.
10. Data Sharing
Your personal data is not transferred to third parties, except to the hosting provider named above (as processor), where required by law, or where you have given explicit consent.
11. Data Retention
Server log files are generally stored for approximately 30 days and then automatically deleted, unless longer retention is required for security reasons. Data processed on the basis of consent is retained until you withdraw that consent.
12. Your Rights
Under the GDPR you have the right to:
- Access your data (Art. 15)
- Rectification (Art. 16)
- Erasure (Art. 17)
- Restriction of processing (Art. 18)
- Data portability (Art. 20)
- Object to processing (Art. 21)
- Withdraw consent at any time (Art. 7(3))
- Lodge a complaint with a supervisory authority (Art. 77)
The supervisory authority responsible for me is the State Commissioner for Data Protection and Freedom of Information of North Rhine-Westphalia (LDI NRW), Kavalleriestraße 2–4, 40213 Düsseldorf, Germany.
13. Changes to This Privacy Policy
I may update this Privacy Policy to reflect changes to the website or to legal requirements. The current version is always available on this page; the date at the top indicates the last update.
14. Contact
For any questions about this Privacy Policy or the processing of your personal data, please contact:
Lukas Klostermann
it.l.klostermann@gmail.com
Website: https://disaster-und-recovery.de
