# emil.cx Privacy Policy Last updated: December 2024 ## Data Controller Emil Lienemann CVR: 46041313 Amerikavej 19B, 3. 306 1756 København V Denmark For data protection inquiries, contact: privacy@emillienemann.me ## Legal Framework This privacy policy complies with: - EU General Data Protection Regulation (GDPR) - Regulation (EU) 2016/679 - Danish Data Protection Act (Databeskyttelsesloven) ## What Personal Data We Collect ### Categories of Personal Data - **Technical data**: IP address, browser type, device type, operating system - **Usage data**: Pages visited, links clicked, files downloaded, time spent on pages - **Analytics data**: Geographic location (country/region level), referral source ### How We Collect Your Data Data is collected when you: - Visit the website (automatically collected technical and usage data) - Interact with website elements (clicks, downloads) We use Google Analytics to gather analytics data. Google Analytics may set cookies on your device to collect this information. ## Legal Basis for Processing (GDPR Article 6) We process your personal data based on: - **Legitimate interests** (Article 6(1)(f)): Website analytics and improvement, ensuring website security - **Consent** (Article 6(1)(a)): Where cookies or tracking technologies require consent under applicable law ## Purpose of Data Processing We collect and process your data to: - Analyze website traffic and user behavior - Improve website functionality and user experience - Ensure website security and prevent abuse - Generate aggregated, anonymized statistics ## Data Recipients Your data may be shared with: - **Google LLC** (Google Analytics) - for analytics processing - **Vercel Inc.** - website hosting provider These recipients are either located in the EU/EEA or have appropriate safeguards in place (such as Standard Contractual Clauses) for international data transfers. ## International Data Transfers Data may be transferred to and processed in countries outside the EU/EEA, including the United States. Such transfers are protected by: - Standard Contractual Clauses (SCCs) approved by the European Commission - EU-U.S. Data Privacy Framework (where applicable) ## Data Retention - **IP address data**: Retained for 30 days, then deleted or anonymized - **Analytics data**: Aggregated, anonymized data may be retained indefinitely - **Server logs**: Retained for up to 90 days for security purposes ## Your Rights Under GDPR and Danish Law You have the following rights regarding your personal data: ### Right of Access (Indsigtsret) You can request confirmation of whether we process your personal data and obtain a copy of that data. ### Right to Rectification (Berigtigelse) You can request correction of inaccurate personal data or completion of incomplete data. ### Right to Erasure (Sletning / Ret til at blive glemt) You can request deletion of your personal data under certain circumstances, such as when the data is no longer necessary for its original purpose. ### Right to Data Portability (Dataportabilitet) You can request to receive your personal data in a structured, commonly used, machine-readable format. ### Right to Restriction of Processing (Begrænsning af behandling) You can request that we limit the processing of your personal data under certain circumstances. ### Right to Object (Indsigelse) You can object to processing of your personal data based on legitimate interests, including profiling. ### Right to Withdraw Consent Where processing is based on consent, you can withdraw your consent at any time without affecting the lawfulness of processing before withdrawal. ### How to Exercise Your Rights To exercise any of these rights, contact us at: privacy@emillienemann.me We will respond to your request within 30 days. If we need more time, we will inform you of the reason and extension period. Please note: Given our minimal data collection practices, we may not have any personal data directly linked to you, in which case we will inform you accordingly. ## Supervisory Authority You have the right to lodge a complaint with a supervisory authority. In Denmark, the relevant authority is: Datatilsynet (Danish Data Protection Agency) Carl Jacobsens Vej 35 2500 Valby Denmark Website: www.datatilsynet.dk Email: dt@datatilsynet.dk ## Security Measures We implement appropriate technical and organizational measures to protect your personal data, including: - Encrypted data transmission (HTTPS/TLS) - Secure hosting infrastructure - Access controls and authentication - Regular security assessments ## Cookies and Tracking Technologies This website may use cookies and similar tracking technologies. For detailed information about the cookies we use and how to manage your preferences, please refer to your browser settings. ## Children's Privacy This website is not directed at children under 16 years of age. We do not knowingly collect personal data from children. ## Changes to This Privacy Policy We may update this privacy policy to reflect changes in our practices or legal requirements. We encourage you to review this page periodically. Material changes will be indicated by updating the "Last updated" date. ## Contact Us For questions about this privacy policy or to exercise your data protection rights: Emil Lienemann Amerikavej 19B, 3. 306 1756 København V Denmark CVR: 46041313 Email: privacy@emillienemann.me