Effective as of July 19, 2025
This Privacy Policy explains how personal data is collected, used, and stored when you visit or interact with www.grimwright.com, owned and operated by Rudolf Huber (hereafter “Grimwright”, “I”, or “me”).
Your privacy matters to me. I only collect what’s necessary, handle your data with care, and don’t sell or abuse your information.
1. Who is responsible for your data?
Rudolf Huber
P.O. Box 0026
1092 Vienna, Austria
Contact: Please use the contact form on the website.
I am the controller of the personal data you provide when using this website, as defined under the EU General Data Protection Regulation (GDPR).
2. What personal data is collected and why?
I collect and process personal data only when necessary, and for the following reasons:
| Purpose | Legal Basis | Data Collected | Retention |
|---|---|---|---|
| Newsletter subscription | Consent (Art. 6(1)(a) GDPR) | Name, email address | Until unsubscribed |
| Contact form messages | Legitimate interest (Art. 6(1)(f) GDPR) | Name, email, message content | Up to 12 months |
| Website analytics | Consent (via cookie banner) | IP address, browser, device info | Varies (usually anonymized or deleted within 14 months) |
| Comments or feedback | Legitimate interest | Name, email, IP (for moderation) | As long as the comment is live |
| Server logs | Legitimate interest | IP address, browser type, timestamp | Up to 3 months |
3. Cookies and tracking technologies
This site uses cookies to:
-
Remember preferences and improve user experience
-
Analyze traffic and site usage (via privacy-friendly analytics tools)
-
Prevent spam and abuse (via security plugins)
When you first visit, a cookie banner allows you to accept or reject non-essential cookies. You can change your preferences at any time.
For more on how cookies work, see https://allaboutcookies.org.
4. Who can access your data?
Your data is never sold.
It may be shared only with:
-
Service providers I use to operate the site (e.g., email newsletter software, web hosting, security tools)
-
Legal authorities, if required by law
-
Technical personnel, for maintenance and security purposes, under strict confidentiality
Some service providers may operate outside the EU. In those cases, I ensure adequate safeguards under GDPR (e.g., EU Standard Contractual Clauses or adequacy decisions).
5. Your rights under GDPR
You have the right to:
-
Access your personal data
-
Correct inaccurate or outdated information
-
Delete your data (“right to be forgotten”)
-
Restrict processing under certain conditions
-
Object to certain uses (e.g., direct marketing)
-
Withdraw consent at any time (for data collected based on consent)
To exercise any of these rights, please contact me via the contact form.
If you believe your data is handled improperly, you can file a complaint with the Austrian Data Protection Authority:
https://www.dsb.gv.at
6. How is your data protected?
I take data security seriously and implement appropriate technical and organizational measures to protect personal information from unauthorized access, alteration, or loss. This includes encrypted transmission (SSL), strong password policies, and trusted service providers.
7. External links and embedded content
Some blog posts may include links to third-party websites or embedded content (e.g., videos). These sites and services have their own privacy practices, which I do not control.
I include such links to support the content but do not endorse or monitor the data practices of third-party sites.
8. Changes to this policy
This policy may change occasionally, especially if legal or technical requirements evolve. The date of the last update is shown at the top. Continued use of the site after changes implies acceptance of the revised policy.
9. Contact
For any questions, requests, or concerns about this policy or your data, please use the contact form on this website.