Privacy Policy

Effective date: April 23, 2026

This policy explains how Slyxaronphul.world processes personal data in accordance with Regulation (EU) 2016/679 (GDPR), the German Federal Data Protection Act (BDSG), and applicable German digital-services rules.

1. Data Controller

Website: Slyxaronphul.world

Email: talk@slyxaronphul.world

Address: Hessestr. 10, 90443 Nuernberg, Germany

Phone: 0178/1481792

2. Categories of Personal Data

  • Contact data submitted through the contact form (name, email, message).
  • Technical and log data (IP address, date/time, requested page, user-agent, referrer, status codes).
  • Consent preferences for cookies and similar technologies.
  • Communication history when users contact the controller.

3. Purposes and Legal Bases (Art. 6 GDPR)

  • Website operation and security: legitimate interests under Art. 6(1)(f) GDPR.
  • Responding to inquiries: Art. 6(1)(b) GDPR (pre-contractual communication) or Art. 6(1)(f) GDPR.
  • Analytics/marketing cookies and related technologies: consent under Art. 6(1)(a) GDPR together with Section 25(1) TDDDG.
  • Strictly necessary storage/access operations: Section 25(2) TDDDG.
  • Legal compliance: Art. 6(1)(c) GDPR.

4. Recipients and Processors

Data may be processed by hosting, technical maintenance, email, and analytics providers acting as processors under Art. 28 GDPR. Processing agreements are implemented where required. Personal data is not sold.

4a. Server Location

Primary website hosting and routine storage for this website are located in the European Union (EU). If a provider processes data outside the EU/EEA, transfer safeguards under Chapter V GDPR are applied.

5. International Data Transfers

If a provider processes data outside the EEA, transfers are protected through an adequacy decision, Standard Contractual Clauses (SCCs), or another lawful safeguard under Chapter V GDPR.

6. Storage Periods

  • Contact form requests: generally up to 12 months after final correspondence, unless a longer retention period is required by law.
  • Server/security logs: generally 14 to 60 days unless a security incident requires longer retention.
  • Consent records: stored for up to 3 years to demonstrate compliance, unless deletion is requested earlier and retention is not legally required.

7. Data Subject Rights

Under Arts. 12-22 GDPR, users may request access, rectification, erasure, restriction, portability, and objection. Users may withdraw consent at any time with effect for future processing (Art. 7(3) GDPR). Users may also lodge a complaint with a supervisory authority.

8. Competent Supervisory Authority (Germany)

For Bavaria, a relevant authority is: Bayerisches Landesamt fuer Datenschutzaufsicht (BayLDA), Promenade 18, 91522 Ansbach, Germany, https://www.lda.bayern.de.

9. Automated Decision-Making

No automated decision-making within the meaning of Art. 22 GDPR is carried out through this website.

10. Data Security

Appropriate technical and organizational measures are applied, including access controls, role-based restrictions, and integrity checks proportionate to processing risks.

11. Policy Updates

This policy may be updated to reflect legal or operational changes. The latest version is published on this page with the effective date.