Privacy Policy

Last Updated: June 2026
Website: https://daniel-ir.eu
Hosting Platform: Squarespace

1. General Information & Data Protection

As the operator of this personal website, I act as the "Data Controller" under the General Data Protection Regulation (GDPR).

Because this website is a personal portfolio that does not engage in large-scale data monitoring or process sensitive categories of information, no Data Protection Officer (DPO) is legally required or appointed. Any inquiries regarding your data privacy can be sent directly to the contact email listed on my Legal Notice page.

2. Types of Personal Data Collected

When you visit or interact with this website, data is collected in two ways: voluntarily when provided by you, and automatically by our hosting infrastructure.

A. Data Provided Voluntarily (Contact Form)

If you choose to use the contact form on this website, the following data is collected to facilitate communication:

• Full Name / Name alias
• Email Address
• The content of your written message

B. Data Collected Automatically (Device & Infrastructure Logs)

When accessing the website, your browser automatically transmits technical connection details required to load the page. This data includes:

• IP Address (truncated/anonymized where applicable)
• Device Type (e.g., Mobile, Desktop, Tablet)
• Operating System (e.g., Windows, macOS, iOS, Android)
• Browser Type and Version (e.g., Chrome, Safari, Firefox)
• Referral URL (the website you arrived from)
• Date, time, and duration of the visit

3. Purpose of Data Processing

The technical and personal data processed on this website is used strictly for the following purposes:

1. Technical Functionality: Ensuring the website loads securely, displays correctly on your screen size, and remains optimized.
2. Website Analytics & Performance: Monitoring general traffic patterns, popular portfolio items, and visitor numbers to understand audience reach.
3. Security & Fraud Prevention: Analyzing server logs to protect the website infrastructure against unauthorized access, spam, malicious bots, and cyberattacks.
4. Communication: Responding directly to inquiries, questions, or messages submitted through the contact form.

4. Third-Party Services & Technologies Used

To keep this website online and functional, we partner with specialized technical service providers ("Data Processors"). These third parties process technical data on our behalf:

A. Squarespace (Website Hosting & Infrastructure)

• Provider: Squarespace Ireland Limited, Leorg House, Ship Street Great, Dublin 8, Ireland.
• Purpose: Cloud Hosting and Website Building Infrastructure.
• Privacy Policy: https://www.squarespace.com/privacy

B. Squarespace Analytics (Traffic Monitoring)

• Provider: Squarespace Ireland Limited.
• Purpose: Web Traffic Tracking and Performance Optimization.
• Details: Processes usage behavior, clicks, page paths, and general geographic location data to compile traffic logs for the site owner.

C. Google Fonts (Typography Delivery)

• Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
• Purpose: Web Font Delivery System.
• Details: To display typography uniformly, your browser downloads fonts directly from Google's servers. This process requires your browser to share your IP address and the page URL with Google.
• Privacy Policy: https://policies.google.com/privacy

D. Adobe Fonts / Typekit (Typography Delivery)

• Provider: Adobe Systems Software Ireland Limited, 4-6 Riverwalk, Citywest Business Campus, Dublin 24, Ireland.
• Purpose: Web Font Delivery System.
• Privacy Policy: https://www.adobe.com/privacy/policy.html

E. Usercentrics (Consent Management)

• Provider: Usercentrics GmbH, Sendlinger Str. 7, 80331 Munich, Germany.
• Purpose: Legal Consent Log and Cookie Banner Administration.
• Privacy Policy: https://usercentrics.com/privacy-policy/

5. International Data Transfers (Outside the EEA)

The third-party providers utilized by this website (specifically Squarespace, Google, and Adobe) are headquartered or operate infrastructure within the United States. Consequently, technical data (such as your IP address) is transferred to and processed on servers located outside the European Economic Area (EEA).

To ensure an adequate level of data security, these providers rely on standard contractual clauses approved by the European Commission and maintain active certification under the EU-U.S. Data Privacy Framework (DPF).

6. Consent & Cookie Management

This website utilizes a Consent Management Platform (Cookie Banner). By default, all non-essential and analytics cookies are restricted. They will only deploy onto your browser if you explicitly provide consent by clicking "Accept" on the banner interface. You have the right to change or withdraw your choice at any time by clearing your browser cookies.

7. Data Security Measures

To safeguard your information, this website employs robust, industry-standard technical security practices handled via our hosting infrastructure:

• SSL/TLS Encryption (HTTPS): All communication between your device and our servers is strictly encrypted, preventing interception by unauthorized parties.
• Server Level Security: Enterprise firewalls and data separation guard against server intrusions.
• Restricted Access: Access to backend analytics and incoming contact form entries is restricted entirely to the data controller via secure, authenticated credentials.

8. Your Rights Under the GDPR

As an EU citizen or visitor, you possess full rights regarding your personal data under the General Data Protection Regulation. You have the right to:

• Access: Request clear information on what personal data is held about you.
• Rectification: Demand corrections to inaccurate or incomplete data.
• Erasure ("Right to be Forgotten"): Request the permanent deletion of your personal records (such as past contact form messages).
• Restriction: Request that your data processing be temporarily paused.
• Data Portability: Request a copy of your data in a clean, readable digital format.
• Objection: Object to processing based on legitimate interests.
• Lodge a Complaint: You maintain the right to register a formal complaint regarding data handling with a qualified national Data Protection Authority (DPA) within your EU home member state.