Privacy Policy

1. Privacy at a Glance

General Information

The following notes provide a simple overview of what happens to your personal data when you visit this website. Personal data is any data that can be used to personally identify you.

2. Data Controller

The data controller responsible for data processing on this website is:

BlockMastery
John Doe
123 Example Street
12345 Sample City
Email: privacy@blockmastery.de

3. Data Collection on This Website

Server Log Files

When you visit our website, our web server temporarily stores each access in a log file, including IP address, date and time, page accessed, browser type, and operating system. This data is used solely for technical purposes and is automatically deleted after 7 days.

Visitor Counter

We track the number of page views for each blog post. This data is stored anonymously and is used for statistical purposes only. We use cookies to ensure each visitor is only counted once per day per blog post. The cookie contains only the current date and is deleted at midnight.

Cookies

This website uses the following types of cookies:

  • Session Cookies: Used for admin authentication. These cookies are essential for the admin functionality and are deleted when you close your browser.
  • Visitor Tracking Cookies: Used to count unique daily visitors per blog post. These cookies contain only the date of your visit and expire at midnight.

No third-party tracking cookies or advertising cookies are used on this website.

4. Data Security

We implement appropriate technical and organizational security measures to protect your data:

  • HTTPS Encryption: All data transmitted to and from our website is encrypted using SSL/TLS.
  • CSRF Protection: All forms are protected against Cross-Site Request Forgery attacks using unique tokens.
  • Rate Limiting: Login attempts are limited to prevent brute-force attacks.
  • Input Validation: All user inputs are validated and sanitized to prevent injection attacks.
  • Secure Headers: We use security headers including Content-Security-Policy, X-Frame-Options, and X-XSS-Protection.
  • Secure Cookies: All cookies are set with HttpOnly and SameSite flags to prevent unauthorized access.

5. Your Rights

According to GDPR, you have the following rights regarding your personal data:

  • Right to access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to object (Art. 21 GDPR)

To exercise any of these rights, please contact us at privacy@blockmastery.de.

6. Data Retention

We retain data only as long as necessary:

  • Server logs: 7 days
  • Visitor statistics: Aggregated counts only, no personal data stored
  • Session data: Until browser is closed or session expires
  • Rate limiting data: 15 minutes after last failed login attempt

7. Third-Party Services

This website does not use any third-party services that collect personal data. We do not use:

  • Google Analytics or similar tracking services
  • Social media plugins that transfer data
  • External fonts or CDNs that could track visitors
  • Advertising networks

Last updated: January 2026