Privacy Policy

1. Overview

This privacy policy explains what personal data we collect when you visit this website and how we process it. We take data protection very seriously and handle your personal data confidentially and in accordance with statutory data protection regulations and this privacy policy.

2. Responsible Party

3. Hosting

This website is hosted on Hetzner VPS servers located in Germany. All data collected through this website is stored on servers within the European Union, ensuring compliance with GDPR requirements.

Hosting Provider: Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, Germany

We have a data processing agreement in place with Hetzner in accordance with Art. 28 GDPR.

4. Data Collection and Processing

4.1 Server Log Files

Our hosting provider automatically collects and stores information in server log files, including:

• Browser type and version
• Operating system
• Referrer URL (previously visited page)
• Hostname of accessing computer
• Time of server request
• IP address (anonymized)

This data is not combined with other data sources and is used solely for technical administration and security purposes. Legal basis: Art. 6 para. 1 lit. f GDPR (legitimate interest).

4.2 Contact Form

When you submit our consultation request form, we collect:

• Your name
• Business email address
• Company website
• Monthly advertising spend
• Preferred engagement type
• UTM tracking parameters (if present in URL)
• Referrer and landing page information

This data is processed to respond to your inquiry and is sent via Resend (email service provider). We retain this information until the purpose of processing expires or you request deletion.

Legal basis: Art. 6 para. 1 lit. b GDPR (contract initiation) and Art. 6 para. 1 lit. a GDPR (consent).

4.3 Self-Hosted Analytics

We use Rybbit Analytics, a self-hosted analytics solution that:

• Does NOT use cookies
• Does NOT track users across websites
• Does NOT create user profiles
• Collects only anonymized aggregate statistics
• All data is stored on EU servers

Data collected includes: page views, referrer sources, approximate location (country-level), and device type. No personally identifiable information is collected.

Legal basis: Art. 6 para. 1 lit. f GDPR (legitimate interest in website analytics).

5. Cookies

This website does not use cookies for tracking or analytics purposes. We only use essential technical cookies if absolutely necessary for the website to function properly (e.g., session management).

6. Third-Party Services

6.1 Resend (Email Service)

We use Resend to process contact form submissions and send email communications. Resend is GDPR-compliant and processes data according to EU data protection standards.

More information: Resend Privacy Policy

6.2 No Third-Party Tracking

We do not use:

• Google Analytics
• Meta Pixel (Facebook Pixel)
• Google Tag Manager
• Any other third-party tracking tools

7. Your Rights Under GDPR

You have the following rights regarding your personal data:

• Right of access (Art. 15 GDPR): Request information about your stored data
• Right to rectification (Art. 16 GDPR): Correct inaccurate data
• Right to erasure (Art. 17 GDPR): Request deletion of your data
• Right to restriction (Art. 18 GDPR): Limit processing of your data
• Right to data portability (Art. 20 GDPR): Receive your data in a structured format
• Right to object (Art. 21 GDPR): Object to processing based on legitimate interests
• Right to withdraw consent (Art. 7 para. 3 GDPR): Withdraw consent at any time

To exercise these rights, please contact us at: [email protected]

8. Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data violates GDPR.

9. Data Security

We use SSL/TLS encryption for data transmission on this website. Encrypted pages are indicated by a lock symbol in your browser's address bar. All data transmission between your browser and our server is encrypted.

However, please note that data transmission over the Internet (e.g., email communication) can have security gaps. Complete protection against third-party access is not possible.

10. Data Retention

We retain your personal data only as long as necessary for the purposes for which it was collected, or as required by law. Contact form submissions are retained until the inquiry is resolved or you request deletion.

11. No Guarantees or Warranties

IMPORTANT DISCLAIMER:

GPT Web Agency is an independent consultancy and is NOT affiliated with OpenAI. Our services are based on publicly available information and our expertise in advertising technology. We make no guarantees about:

• Timing, features, or implementation of future ChatGPT advertising platforms
• Specific business outcomes or results from our consulting services
• Access to beta programs or preferential treatment on any platform
• Future platform policies, pricing, or availability

All recommendations and strategies are provided "as-is" without warranties of any kind.

12. Changes to This Privacy Policy

We reserve the right to update this privacy policy to reflect changes in our data processing practices or legal requirements. Please check this page periodically for updates.

13. Contact

For questions about data protection or to exercise your rights, please contact: