oovo labs logo

Home

Privacy Policy

Last updated: 28.12.2025

1. Introduction

This Privacy Policy explains how we handle personal data when you use this website (“the Service”).
We intentionally collect as little data as possible. We do not profile users, track behavior, or monetize personal data.

If you have questions, you can contact us at:
Contact: [email protected]

2. Data Controller

For the purposes of the General Data Protection Regulation (GDPR), the data controller is:

Jonas Wörner

3. Personal Data We Process

3.1 Data You Actively Provide

We do not require user accounts and do not collect personal information such as names, email addresses, or payment details unless explicitly stated elsewhere on the website.

3.2 Technical Data (Minimal and Transient)

When you access the Service, the following data may be processed temporarily for technical reasons:

IP address

HTTP request metadata (e.g. headers, requested resource)

This data is:

Not logged persistently by us

Not analyzed

Not linked to individuals

Not used for tracking or identification

IP addresses are processed only as required for network communication and security at the infrastructure level.

4. Purpose and Legal Basis of Processing

We process personal data only where legally permitted under GDPR Article 6.

PurposeLegal Basis

Delivering website content

Article 6(1)(f) – Legitimate interest

Ensuring availability and security

Article 6(1)(f) – Legitimate interest

Our legitimate interest is operating a secure, functional website. This interest does not override user rights, as no profiling or tracking occurs.

5. Cookies and Tracking

We do not use:

Tracking cookies

Analytics cookies

Advertising cookies

Third-party trackers

If this changes, this policy will be updated accordingly.

6. Third-Party Processors

We rely on infrastructure providers that may technically process limited personal data (such as IP addresses) on our behalf.

6.1 Hosting Provider

OVH SAS
Purpose: Virtual private server hosting
Location: EU
Role: Data processor

6.2 DNS and Network Security

Cloudflare, Inc.
Purpose: DNS resolution, DDoS protection, and reverse proxying
Role: Independent controller / processor

Cloudflare may process IP addresses for security and performance purposes. Their processing is governed by their own privacy policy.

We do not share personal data with any other third parties.

7. International Data Transfers

Where third-party providers process data outside the European Economic Area, appropriate safeguards such as Standard Contractual Clauses (SCCs) are in place.

8. Data Retention

We do not store personal data.

Any transient technical data (such as IP addresses) exists only in memory or short-lived infrastructure buffers and is automatically discarded.

9. Your Rights Under GDPR

You have the following rights under GDPR:

Right of access (Article 15)

Right to rectification (Article 16)

Right to erasure (Article 17)

Right to restriction of processing (Article 18)

Right to object (Article 21)

Right to lodge a complaint with a supervisory authority

Because we do not store identifiable personal data, fulfilling some requests may not be technically possible. We will explain this transparently if applicable.

10. Data Security

We apply appropriate technical and organizational measures to protect the Service, including:

Secure hosting infrastructure

Network-level protection

Controlled access to systems

11. Changes to This Policy

We may update this Privacy Policy to reflect legal or technical changes.
The current version will always be available on this page.