Privacy Policy

1. Controller

The controller within the meaning of the General Data Protection Regulation (GDPR) is:

MuehlCyberConsulting GmbH
[Street and number]
[Postcode, City]
Germany
Email: nis2@muehlcyberconsulting.com

2. Collection and Processing of Personal Data

2.1 When visiting the website

When you visit our website, your browser automatically sends information to our server. This information is temporarily stored in a log file. The following information is collected without any action on your part and stored until automatic deletion:

• IP address of the requesting computer
• Date and time of access
• Name and URL of the retrieved file
• Website from which access is made (referrer URL)
• Browser used and, if applicable, the operating system of your computer

The legal basis for data processing is Art. 6 (1) (f) GDPR. Our legitimate interest follows from the purposes for data collection listed above (ensuring stable operation, security analysis, and administration).

2.2 Contact form

Our website provides a contact form for getting in touch with us. When you use the form, the following data is collected:

• First and last name
• Company
• Position / role (optional)
• Email address
• Phone number (optional)
• Sector
• Number of employees (optional)
• Your message (optional)

Processing of this data is based on your consent (Art. 6 (1) (a) GDPR). You may withdraw your consent at any time with effect for the future by sending an informal message to nis2@muehlcyberconsulting.com.

Data collected through the contact form is retained until you request deletion, withdraw your consent, or the purpose for data storage no longer applies (e.g. after your enquiry has been processed). Mandatory statutory provisions – in particular statutory retention periods – remain unaffected.

3. Data Processors (Third Parties)

3.1 Formspree (Form processing)

We use Formspree (Formspree Inc., 340 S Lemon Ave #1419, Walnut, CA 91789, USA) to process contact form submissions. When you complete and submit the contact form, the data you enter is transmitted to Formspree servers and forwarded from there to our email address.

A data processing agreement (DPA) has been concluded with Formspree in accordance with Art. 28 GDPR. Transfer to the USA takes place on the basis of the EU Commission's standard contractual clauses. For more information on Formspree's privacy practices, see: formspree.io/legal/privacy-policy.

3.2 Google Fonts

This website uses Google Fonts (fonts provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland) for consistent font rendering. When a page is loaded, your browser downloads the required fonts from Google servers. Your IP address is transmitted to Google in this process. The legal basis is Art. 6 (1) (f) GDPR (legitimate interest in technically correct and uniform website presentation).

For more information about Google Fonts, visit fonts.google.com and Google's privacy policy: policies.google.com/privacy.

4. Your Rights

You have the following rights regarding your personal data:

• Right of access (Art. 15 GDPR)
• Right to rectification (Art. 16 GDPR)
• Right to erasure (Art. 17 GDPR)
• Right to restriction of processing (Art. 18 GDPR)
• Right to data portability (Art. 20 GDPR)
• Right to object to processing (Art. 21 GDPR)
• Right to withdraw consent (Art. 7 (3) GDPR)

To exercise your rights, please contact: nis2@muehlcyberconsulting.com

You also have the right to lodge a complaint with a data protection supervisory authority regarding the processing of your personal data by us.

5. Cookies

This website does not use tracking cookies. Only technically necessary cookies are used where required for the operation of the website. No analytics services or advertising cookies are used.

6. Data Security

We use SSL encryption (Secure Socket Layer) in conjunction with the highest level of encryption supported by your browser, typically 256-bit encryption. You can tell whether a page on our website is being transmitted encrypted by the closed padlock symbol in your browser's address bar.

7. Updates to this Privacy Policy

This privacy policy is currently valid and dated March 2026. Due to the further development of our website and services, or due to changed legal or regulatory requirements, it may become necessary to amend this privacy policy. The current privacy policy can always be accessed and printed from this website under the "Privacy Policy" section.