Privacy Policy

Last updated: October 17, 2025

1. Controller and Data Protection Officer

The controller responsible for data processing on this website is:

Tobias Schüle
Opsora
JustInnovate LLC
7901 4th St N STE 300
St. Petersburg, FL 33702
USA
Email: tobias@opsora.io

2. Scope of Data Processing

2.1 Access Data and Hosting

Every time you access our website, information is automatically collected that your browser transmits to our server (so-called server log files). This includes:

  • IP address of the accessing computer
  • Date and time of access
  • Name and URL of the retrieved file
  • Amount of data transferred
  • Notification of successful retrieval (HTTP status code)
  • Browser type and version
  • Operating system
  • Referrer URL (previously visited page)

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in ensuring system security and stability).

This data is stored for a maximum of 7 days and then deleted, unless security-relevant incidents require longer retention.

2.2 Contact

When you contact us via email, contact form, or other means, the data you provide (name, email address, message content, possibly phone number and company information) will be stored by us to process your inquiry and for possible follow-up questions.

Legal basis: Art. 6(1)(b) GDPR (contract initiation) or Art. 6(1)(f) GDPR (legitimate interest in responding to inquiries).

This data will be deleted after your inquiry has been completely processed and provided there are no legal retention obligations.

2.3 Consulting and Service Contracts

As part of our consulting and managed services activities, we process personal data of our clients and their employees that is necessary for contract fulfillment. This may include:

  • Contact information (name, email, phone)
  • Company data and organizational information
  • Technical data for system configuration and management
  • Project documentation and communication
  • Billing-relevant data

Legal basis: Art. 6(1)(b) GDPR (contract fulfillment).

This data is stored for the duration of the business relationship and in accordance with legal retention periods (typically 6-10 years after contract termination).

3. Data Disclosure

Your personal data is only transmitted to third parties if:

  • You have given explicit consent (Art. 6(1)(a) GDPR)
  • It is necessary for contract fulfillment (Art. 6(1)(b) GDPR)
  • There is a legal obligation (Art. 6(1)(c) GDPR)
  • It is necessary to protect legitimate interests (Art. 6(1)(f) GDPR)

We work with carefully selected service providers (e.g., hosting providers, email services). These service providers are contractually obligated to process your data only on our behalf and according to our instructions.

4. Data Transfer to Third Countries

To the extent that we use service providers outside the European Economic Area (EEA), this only occurs if there is an adequate level of data protection (e.g., through EU standard contractual clauses, adequacy decision by the EU Commission) or with your explicit consent.

5. Cookies and Tracking

This website currently does not use cookies or tracking technologies to analyze user behavior. Should we use such technologies in the future, you will be informed in advance and asked for your consent.

Technically necessary cookies that are required for the operation of the website may be used. These serve exclusively for functionality and are not used for tracking purposes.

6. External Links

Our website contains links to external third-party websites (e.g., ConfigForge, LinkedIn). We have no control over the content and privacy practices of these websites and assume no responsibility for them. Please refer to the privacy policies of the respective providers.

7. Data Security

We implement technical and organizational security measures to protect your data against accidental or intentional manipulation, loss, destruction, or access by unauthorized persons. These include:

  • SSL/TLS encryption for data transmission
  • Secure hosting infrastructure with regular security updates
  • Access restrictions and authentication
  • Regular security audits

8. Your Rights under GDPR

You have the following rights regarding your personal data:

8.1 Right to Access (Art. 15 GDPR)

You have the right to obtain information about the personal data we process.

8.2 Right to Rectification (Art. 16 GDPR)

You have the right to request the correction of inaccurate data or completion of incomplete data.

8.3 Right to Erasure (Art. 17 GDPR)

You have the right to request the deletion of your data, provided there are no legal retention obligations.

8.4 Right to Restriction of Processing (Art. 18 GDPR)

You have the right to request the restriction of processing of your data.

8.5 Right to Data Portability (Art. 20 GDPR)

You have the right to receive your data in a structured, commonly used, and machine-readable format.

8.6 Right to Object (Art. 21 GDPR)

You have the right to object to the processing of your data for reasons arising from your particular situation.

8.7 Right to Withdraw Consent (Art. 7(3) GDPR)

If processing is based on your consent, you can withdraw it at any time with effect for the future.

8.8 Right to Lodge a Complaint with a Supervisory Authority (Art. 77 GDPR)

You have the right to lodge a complaint with a data protection supervisory authority if you believe that the processing of your data violates GDPR.

9. Exercising Your Rights

To exercise your rights or if you have questions about data protection, please contact us at:

Email: tobias@opsora.io

We will process your request within 30 days.

10. Currency and Changes to This Privacy Policy

This privacy policy is currently valid and dated October 2025. Due to the further development of our website or due to changed legal requirements, it may become necessary to change this privacy policy. The current privacy policy can be accessed and printed from this website at any time.