← Back to Home

Legal

Löwentech GmbH i.G. — Privacy Policy

As of 26 April 2026

§ 1 Privacy at a Glance

This Privacy Policy informs you pursuant to Art. 13 GDPR about which personal data we process when you use this website, on what legal basis this is done, and what rights you have.

In brief:

  • Your hosting provider stores server log files for up to 14 days.
  • Contact enquiries are processed exclusively to handle your request.
  • Fonts are served locally — no connection to Google Fonts at runtime.
  • Our own Local Storage entries are used for technical functions such as language selection, cookie consent and privacy notice preferences.
  • Google Analytics 4 and Google Ads Conversion Tracking, including related cookies and browser storage technologies, are only activated after your explicit consent via the cookie banner.
  • No analytics or advertising cookies or comparable browser storage technologies are set or accessed without consent.

§ 2 Data Controller

The controller responsible for the processing of personal data on this website is:

Löwentech GmbH i.G. (in Gründung / in formation)

Urbanstraße 84

10967 Berlin

Germany

Email: [email protected]

Website: www.lowentech.dev

Note on formation status: Until registration in the Commercial Register, the company acts as Löwentech GmbH i.G. This Privacy Policy will be updated after registration, where necessary.

A Data Protection Officer has not been appointed because the statutory requirements of Art. 37 GDPR are not met.

§ 3 Your Rights as a Data Subject

You have the following rights with regard to personal data concerning you:

  • Right of access pursuant to Art. 15 GDPR
  • Right to rectification pursuant to Art. 16 GDPR
  • Right to erasure pursuant to Art. 17 GDPR
  • Right to restriction of processing pursuant to Art. 18 GDPR
  • Right to notification pursuant to Art. 19 GDPR
  • Right to data portability pursuant to Art. 20 GDPR
  • Right to object pursuant to Art. 21 GDPR (see separate notice in § 14)
  • Right to lodge a complaint with a supervisory authority pursuant to Art. 77 GDPR (see § 16)

Where you have given us consent to the processing of personal data, you may withdraw that consent at any time with effect for the future. The lawfulness of processing carried out prior to withdrawal remains unaffected.

To exercise your rights, please contact: [email protected]. We will respond to your request promptly and at the latest within one month of receipt pursuant to Art. 12(3) GDPR. No automated decision-making including profiling within the meaning of Art. 22 GDPR takes place.

§ 4 Hosting

This website is hosted by Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, Germany. The servers are located in Germany.

In connection with hosting, in particular the connection and log data described in § 5 (server log files) are processed by Hetzner. The purpose of processing is the secure and stable operation of this website. The legal basis is Art. 6(1)(f) GDPR (legitimate interest). A data processing agreement pursuant to Art. 28 GDPR has been concluded with Hetzner.

For content delivery and security we additionally use the content delivery network and security services of Cloudflare, Inc., 101 Townsend Street, San Francisco, CA 94107, USA. Cloudflare processes in particular visitors' IP addresses as well as connection and log data for the purpose of mitigating attacks, accelerating delivery, and protecting against automated email-address harvesters (Email Address Obfuscation; for this purpose a small client-side JavaScript is loaded which decrypts email addresses displayed on the website only within the browser). The legal basis is Art. 6(1)(f) GDPR (legitimate interest in security, availability and spam protection). A data processing agreement pursuant to Art. 28 GDPR has been concluded with Cloudflare. Where personal data are transferred to the USA, such transfers are safeguarded by the EU Standard Contractual Clauses of the EU Commission (Art. 46(2)(c) GDPR) and additionally by Cloudflare's certification under the EU–US Data Privacy Framework.

§ 5 Server Log Files

When this website is accessed, our hosting provider automatically collects information transmitted by your browser. This includes in particular:

  • Browser type and version
  • Operating system used
  • Referrer URL
  • Hostname of the accessing device
  • Time of the server request
  • IP address (in full)

These data are not combined with other data sources. The purpose of processing is to ensure the proper operation of the website and to analyse system security and stability. The legal basis is Art. 6(1)(f) GDPR. Log files are automatically deleted after a maximum of 14 days, unless a security-relevant event requires longer storage.

§ 6 Email Contact

If you contact us by email via the mailto link on our website, we process the personal data contained in your email exclusively to handle your enquiry. We do not operate a contact form on this website; all communication takes place solely through your own email client. Depending on the content of your email, the following data are typically processed:

  • Name
  • Email address
  • Subject
  • Content of your message

The legal basis is Art. 6(1)(b) GDPR insofar as the enquiry is directed at concluding a contract or pre-contractual measures. In all other cases the legal basis is Art. 6(1)(f) GDPR (legitimate interest in the efficient handling of enquiries).

Your data will be deleted no later than 6 months after the final response to your enquiry, unless statutory retention obligations require otherwise.

Emails sent to [email protected] are received via the email hosting service of Hostinger International Ltd., 61 Lordou Vironos str., 6023 Larnaca, Cyprus. Hostinger acts as a data processor within the meaning of Art. 28 GDPR. The applicable Data Processing Addendum covers Email Services and provides for the use of sub-processors. Hostinger’s listed sub-processors include, among others, MailChannels Corporation and Proofpoint, Inc. Where personal data are transferred outside the EU/EEA, such transfers are safeguarded by the EU Standard Contractual Clauses.

§ 7 Fonts (Local Embedding)

This website uses fonts (Geist Sans, Geist Mono) that are embedded locally during the build process. When the website is accessed, no connection is established to external font services (e.g. Google Fonts). Accordingly, no personal data are transferred to third parties through the use of fonts.

§ 8 Cookies and Local Storage

This website uses technically necessary browser storage mechanisms (Local Storage). In addition, analytics-related technologies are only deployed after your explicit consent.

8.1 Technically Necessary Local Storage

The following entries are stored in your browser’s Local Storage without requiring consent:

  • lowentech-locale – stores your language selection (German / English)
  • lowentech-cookie-consent – stores your decision regarding the cookie banner (accept / reject)
  • lowentech-cookie-consent-ts – stores the timestamp of your consent decision; used internally to enforce the 12-month validity period of your stored preference
  • lowentech-privacy-notice – stores your acknowledgement of the privacy notice strip to avoid showing it repeatedly (Landing Page only)

The entry lowentech-cookie-consent is strictly necessary because without it the legally required consent management cannot function technically. The entry lowentech-locale stores your selected language preference in order to provide the website in the language chosen by you without requiring repeated reselection. All entries listed above are stored on the basis of § 25(2) No. 2 TDDDG (no consent required). § 25 TDDDG governs access to the terminal device; the subsequent processing of the data derived therefrom is based on Art. 6(1)(f) GDPR (legitimate interest). These entries are not combined with other data and are not passed on to third parties.

8.2 Consent-Based Cookies (Analytics and Advertising)

Insofar as analytics and advertising services are used on this website, this occurs only after your explicit consent via the cookie banner. The legal basis is § 25(1) TDDDG in conjunction with Art. 6(1)(a) GDPR. Your consent is voluntary and may be withdrawn at any time with effect for the future (Art. 7(3) GDPR). Withdrawing consent is as simple as giving it: click on the “Cookie Settings” link in the footer of our website to reopen the cookie banner and change your selection. Alternatively, you can manually delete the entries “lowentech-cookie-consent” and “lowentech-cookie-consent-ts” from your browser’s Local Storage; the banner will reappear on your next page visit. If you withdraw or reject your consent, analytics and advertising technologies will not be activated, or will no longer be activated for future visits, unless you give consent again.

§ 9 Google Analytics 4

Where you have given your consent, we use Google Analytics 4, a web analytics service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).

Google Analytics uses cookies that enable an analysis of your use of the website. In particular, the following data may be processed:

  • truncated IP address,
  • page views,
  • time on site,
  • user interactions,
  • technical information about browser, device and operating system,
  • approximate location,
  • source of your visit.

IP anonymisation is enabled by default. This is intended to fundamentally exclude or reduce the direct identifiability of persons.

The legal basis is your consent pursuant to Art. 6(1)(a) GDPR in conjunction with § 25(1) TDDDG.

We have configured a data retention period of 2 months in Google Analytics. This corresponds to the shortest available setting and minimises the storage duration of user-level and event-level data stored by Google Analytics. Please note that this data retention setting does not necessarily correspond to the technical lifetime of cookies stored in your browser. GA4 cookies, such as “_ga” and “_ga_<container-id>”, have a default lifetime of 2 years according to Google, unless deleted earlier by you.

Google may also process data in the USA. For details of the transfer safeguards, please refer to § 12.

You may withdraw your consent at any time via the cookie banner on our website. In addition, you can prevent data collection by Google Analytics by installing the browser add-on available at:

https://tools.google.com/dlpage/gaoptout

Further information on data protection at Google: https://policies.google.com/privacy

§ 10 Google Ads Conversion Tracking

Where you have given your consent, we use Google Ads Conversion Tracking of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).

If you have reached our website via a Google advertisement, Google Ads may store ad click information in cookies and/or browser storage on your device, depending on the technical implementation. These technologies are used for conversion measurement and may include Google Ads conversion/linker cookies such as “_gcl_*”. Google and we can use these technologies to recognise that a specific advertisement has led to a visit to our website, without using this information to personally identify you.

Data processed may include in particular:

  • Information about clicks on advertisements
  • Page views following an ad click (conversion events)
  • Truncated IP address
  • Device information and browser identifier

The legal basis is your consent pursuant to Art. 6(1)(a) GDPR in conjunction with § 25(1) TDDDG.

We do not use the information obtained through conversion tracking to identify you personally. Google secures the third-country transfer to the USA by means of Standard Contractual Clauses of the European Commission and its certification under the EU–US Data Privacy Framework.

You may withdraw your consent at any time via the cookie banner on our website. You can also deactivate interest-based advertising by Google at: https://adssettings.google.com

§ 11 Recipients of Personal Data

Personal data may be disclosed to the following categories of recipients:

  • Hetzner Online GmbH – hosting service provider (data processor pursuant to Art. 28 GDPR)
  • Cloudflare, Inc. – content delivery network and security services (data processor pursuant to Art. 28 GDPR)
  • Hostinger International Ltd. – email hosting service provider for emails sent to [email protected]; acts as data processor pursuant to Art. 28 GDPR. Hostinger may use sub-processors listed in its Data Processing Addendum, including MailChannels Corporation and Proofpoint, Inc.
  • Google Ireland Limited – analytics and advertising services (only after consent); acts as data processor pursuant to Art. 28 GDPR; insofar as Google processes data for its own purposes, Google is an independent controller

Personal data are not disclosed to any other third parties unless this is required by law or you have expressly consented.

§ 12 Third-Country Transfers

Insofar as personal data are transferred to countries outside the European Union (EU) or the European Economic Area (EEA), we safeguard an adequate level of data protection as follows:

  • Google Ireland Limited (Google Analytics 4, Google Ads Conversion Tracking): transfer to the USA on the basis of Standard Contractual Clauses of the EU Commission pursuant to Art. 46(2)(c) GDPR – Module 2 (controller to processor), insofar as Google acts as a processor; Module 1 (controller to controller), insofar as Google processes data for its own purposes – as well as under the EU–US Data Privacy Framework (Google LLC certification). Should the EU–US Data Privacy Framework be declared invalid by a judicial decision, we will base the transfer exclusively on the Standard Contractual Clauses.
  • Hostinger / Hostinger sub-processors: where Customer Data are transferred outside the EU/EEA, Hostinger’s Data Processing Addendum provides for the application of the EU Standard Contractual Clauses, in particular Module Two and/or Module Three depending on the processing relationship.
  • Cloudflare, Inc. (USA): transfers to the USA on the basis of the EU Standard Contractual Clauses pursuant to Art. 46(2)(c) GDPR, supplemented by Cloudflare's certification under the EU–US Data Privacy Framework. Should the EU–US Data Privacy Framework be declared invalid by a judicial decision, we will base the transfer exclusively on the Standard Contractual Clauses.

No further third-country transfers are currently intended.

§ 13 Data Retention

We store personal data only for as long as necessary for the respective processing purpose or as statutory retention obligations require. In detail:

  • Server log files: deletion after a maximum of 14 days (except in the event of security-relevant incidents)
  • Contact enquiries: deletion no later than 6 months after the final response; if a contractual relationship is established, the commercial and tax-law retention periods apply (generally 6 to 10 years)
  • Google Analytics data: 2 months configured data retention for user-level and event-level data; GA4 cookies may remain stored in the browser for the period defined by Google and our configuration, unless deleted earlier by the user.
  • Google Ads conversion cookies / linker storage: storage duration depends on the specific Google Ads technology used and our configuration; conversion/linker identifiers may be stored in cookies and/or browser storage, unless deleted earlier by the user.
  • Consent-related Local Storage (lowentech-cookie-consent, lowentech-cookie-consent-ts): stored for up to 12 months; on the next page load after that period, the stored preference is cleared. It may also be removed earlier by the user via Cookie Settings.
  • Language and notice settings (lowentech-locale, lowentech-privacy-notice): stored for as long as technically necessary; remain until replaced or removed by the user.

§ 14 Right to Object Pursuant to Art. 21 GDPR

Insofar as we process personal data on the basis of legitimate interests (Art. 6(1)(f) GDPR), you have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you.

In the event of a valid objection, we will no longer process the data concerned unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the establishment, exercise or defence of legal claims.

Please address your objection to: [email protected]

§ 15 Objection to Advertising Emails

The use of contact details published in the context of the imprint for the purpose of sending unsolicited advertising and information materials is hereby expressly prohibited. The operators of this website expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam emails.

§ 16 Right to Lodge a Complaint with a Supervisory Authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a data protection supervisory authority, in particular in the Member State of your habitual residence, your place of work or the place of the alleged infringement.

The supervisory authority with jurisdiction over us is:

Berliner Beauftragte für Datenschutz und Informationsfreiheit

Alt-Moabit 59–61

10555 Berlin

Phone: +49 30 13889-0

Website: https://www.datenschutz-berlin.de

§ 17 SSL/TLS Encryption

For security reasons and to protect the transmission of confidential content, this website uses SSL/TLS encryption. You can recognise an encrypted connection by the fact that the address bar of your browser begins with “https://” and the padlock symbol is displayed.

§ 18 Current Version and Amendments

This Privacy Policy is current as of 26 April 2026. We reserve the right to update this policy when the legal situation or our data processing practices change, so that it always complies with current statutory requirements. The version in force at the time of your next visit to the website applies. In the event of material changes that affect new processing purposes or amended legal bases, we will notify you by means of a notice on the website and, where required, obtain fresh consent.