Privacy Policy

This Privacy Policy explains how personal data is processed in connection with this website and the registration workflow (e.g., newsletter/updates and, where applicable, portal/community features). No third-party tracking or ad network technologies are used.

1. Controller

Dipl.-Ing. (FH) Herbert Laner, MBA, MIB
Willibald-Hauthaler-Str. 6
5020 Salzburg, Austria
Email: office@laner.biz

2. Data processed

• Website/Server data: in particular IP address, date/time, requested URL, status codes, user agent, referrer (where provided), error/security events.
• Registration data: in particular email address; any additional data you provide (required and optional fields).
• Consent/verification (double opt-in) evidence: sign-up/confirmation timestamps and technical metadata (e.g., IP/user agent).
• First-party attribution: referral/campaign identifiers (e.g., URL parameters); first-party only, no third-party tracking.

3. Purposes and legal bases

• Provision and security of the service (operation, troubleshooting, abuse/attack detection): Art. 6(1)(f) GDPR (legitimate interest in a secure and functional service).
• Registration and feature delivery (verification, necessary transactional emails, registration management): Art. 6(1)(b) GDPR (contract/steps prior to entering a contract) and Art. 6(1)(f) GDPR (security/abuse prevention).
• Newsletter/marketing updates (only with explicit consent, typically double opt-in): Art. 6(1)(a) GDPR (consent). You can withdraw consent at any time (e.g., via unsubscribe link or by email).

4. Cookies / sessions

Only strictly necessary cookies/sessions are used for core functionality and security. Legal basis: Art. 6(1)(f) GDPR.

5. Recipients

Hosting: IONOS SE (processor under Art. 28 GDPR).
Email delivery: via the hosting/SMTP infrastructure; limited to what is necessary to deliver messages (in particular the email address and the content of the respective message).

No disclosure for advertising purposes takes place. Further recipients receive data only where legally required or where necessary to establish, exercise, or defend legal claims.

6. International transfers

Transfers outside the EU/EEA are not intended. If an individual transfer becomes necessary, it will be carried out only in accordance with GDPR requirements.

7. Retention

• Unconfirmed registrations: deleted as part of regular clean-ups, generally no later than 60 days.
• Active registrations: retained as long as necessary for the purpose; thereafter deleted or anonymized unless legal obligations require otherwise.
• Consent/DOI evidence: retained as long as necessary for documentation, compliance, and abuse prevention.
• Technical logs/security data: limited retention; depending on category up to 180 days, longer only where necessary (e.g., security analysis or legal claims).
• Backups: deletion may be delayed and data may remain until overwritten on a defined schedule.

8. Your rights

You have rights under the GDPR, including access, rectification, erasure, restriction, data portability, and the right to object to processing based on legitimate interests (Art. 6(1)(f) GDPR). Where processing is based on consent, you may withdraw consent at any time.
Contact: office@laner.biz

You also have the right to lodge a complaint with a supervisory authority. For Austria: Austrian Data Protection Authority, Barichgasse 40-42, 1030 Vienna.

9. No automated decision-making

Automated decision-making, including profiling within the meaning of Art. 22 GDPR, does not take place.

10. Effective date

Effective date: 14 Jan 2026