Privacy Policy

We take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations (in particular GDPR) as well as this privacy policy.

Controller responsible for data processing:

Spike Murphy Müller
Schulterblatt 130
20357 Hamburg
Germany

Phone: +49 (0)40 60572429
Email: conformationlab@gmail.com

For questions regarding data protection you can contact the data protection controller directly.
You can also use our contact form.

Collection and storage of personal data

Hosting

This website is hosted using GitHub Pages, a service provided by GitHub, Inc., 88 Colin P. Kelly Jr. Street, San Francisco, CA 94107, USA.

When you access this website, GitHub may collect technical information including IP address, browser type, operating system, referring pages, and the time of the request in server log files.

The processing of this data is based on our legitimate interest in the reliable provision and security of the website (Art. 6(1)(f) GDPR).

Further information can be found in GitHub’s privacy policy:
https://docs.github.com/en/site-policy/privacy-policies/github-privacy-statement

International data transfers

GitHub may process data on servers located in the United States or other countries outside the European Union.

Where such transfers occur, they are carried out in accordance with applicable data protection laws and appropriate safeguards such as Standard Contractual Clauses under Art. 46 GDPR.

When visiting the website

When you access this website, the hosting provider (GitHub Pages) automatically collects technical information in server log files including:

• IP address of the requesting device
• Date and time of access
• Name and URL of the retrieved file
• Browser type/version and operating system
• Referrer URL (previously visited page)

This data is processed solely to ensure a stable and secure operation of the website (e.g., for troubleshooting, preventing misuse, or maintaining system security).
Legal basis: Art. 6(1)(f) GDPR (legitimate interest in ensuring stability and security).

Contact form

If you contact us via the contact form, the information you provide (name, email address, and message) will be transmitted to the service FormSubmit (formsubmit.co) and forwarded to us via email.

The data you submit will be used solely to process your inquiry and will not be used for marketing purposes.

The processing of this data is based on Art. 6(1)(b) GDPR if the request relates to a contract or pre-contractual measures, or Art. 6(1)(f) GDPR based on our legitimate interest in responding to inquiries.

Cookies

This website itself does not use tracking cookies or analytics tools. However, the hosting provider GitHub may use technically necessary cookies or similar technologies required for security and service operation.

Login and Authentication

At present, there is no local login on our server. In the future, authentication may be provided exclusively via external providers such as ORCID or Auth0.
When using these services, your login data is processed directly by the chosen provider. We do not receive your password.
Depending on the service, we may receive your name, email address, and/or ORCID iD, strictly for the purpose of identifying you within the application.
Legal basis: Art. 6(1)(b) GDPR (processing necessary for contract performance) and Art. 6(1)(f) GDPR (legitimate interest in secure authentication).

ORCID Privacy Policy
Auth0 Privacy Policy

Legal basis of processing

Processing is based on Art. 6(1)(f) GDPR (legitimate interest in access control) and Art. 6(1)(b) GDPR (performance of a contract or pre-contractual measures, when login/authentication is used).

Security

We use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, loss, destruction, or unauthorized access.

Duration of storage

Server log data is stored by the hosting provider for a limited period in accordance with their internal policies.

Your rights

You have the right to:

• Right of access (Art. 15 GDPR)
• Right to rectification (Art. 16 GDPR)
• Right to erasure (Art. 17 GDPR)
• Right to restriction of processing (Art. 18 GDPR)
• Right to data portability (Art. 20 GDPR)
• Right to object to processing (Art. 21 GDPR)

You also have the right to lodge a complaint with a data protection supervisory authority (Art. 77 GDPR).

Supervisory authority

The competent supervisory authority is:

Der Hamburgische Beauftragte für Datenschutz und Informationsfreiheit
Ludwig-Erhard-Str. 22
20459 Hamburg
Germany

https://datenschutz-hamburg.de