Daniel Autenrieth

Legal

Privacy Policy

Updated: May 18, 2026

Controller

The controller within the meaning of the General Data Protection Regulation (GDPR) is:

Daniel Autenrieth
Autenrieth & Partner
c/o Grosch Postflex #1484
Emsdettener Str. 10
48268 Greven
Germany
Email: kontakt@daniel-autenrieth.de

General information

This privacy policy applies to the domains autenrieth-partner.de and daniel-autenrieth.de.

The operator of this website takes the protection of personal data seriously. Personal data is processed confidentially and in accordance with statutory data protection regulations and this privacy policy.

In principle, the website can be used without actively providing personal data. Personal data may nevertheless arise technically when the website is accessed, when the contact form is used, when contact is made by email, and when the AI-assisted site assistant is used voluntarily.

Data transmission on the internet, for example by email, can have security gaps. Complete protection against access by third parties is not possible.

Hosting and server log files

This website is hosted by Vercel Inc., 340 S Lemon Ave #4133, Walnut, CA 91789, USA. When the website is accessed, the hosting provider processes technically necessary access data, in particular:

  • requested URL
  • date and time of the server request
  • HTTP status code
  • browser type and browser version
  • operating system used
  • referrer URL
  • IP address
  • host name of the accessing computer, where transmitted

This information is technically necessary to deliver the requested content, ensure the stability and security of the website, and analyze errors. The legal basis is Art. 6(1)(f) GDPR. The legitimate interest lies in the secure, stable, and efficient provision of the website.

Where required, a data processing agreement pursuant to Art. 28 GDPR exists with Vercel. Transfers to the USA use appropriate safeguards within the meaning of Art. 44 et seq. GDPR, in particular standard contractual clauses or another applicable transfer mechanism.

Contact by email

Contact can be made via the provided email address. In this case, the personal data transmitted with the email is processed, in particular name, email address, message content, time of contact, and technical email metadata.

Processing takes place to handle the inquiry and follow-up questions. The legal basis is Art. 6(1)(f) GDPR. If the inquiry is directed toward entering into or performing a contract, Art. 6(1)(b) GDPR is an additional legal basis.

The data is deleted as soon as it is no longer required to handle the inquiry, unless statutory retention obligations or legitimate interests prevent deletion.

Contact form

If you use the contact form, the data entered there is processed. This includes name, email address, optional company, and message content.

The data is used exclusively to process the inquiry and follow-up questions. The legal basis is Art. 6(1)(f) GDPR. If the inquiry is directed toward entering into or performing a contract, Art. 6(1)(b) GDPR is an additional legal basis.

The Resend service may be used to send form messages. The provider is Plus Five Five, Inc., 2261 Market Street #5039, San Francisco, CA 94114, USA. In this case, the form content is transmitted to Resend so that the message can be delivered by email. This may include email address, name, message content, and technical sending data. Where required, a data processing agreement exists with Resend. Transfers to the USA use appropriate safeguards within the meaning of Art. 44 et seq. GDPR.

AI-assisted site assistant

An AI-assisted site assistant can be used on the website. Use is voluntary. When you enter a question, your input, the message history required for the current conversation, and the curated site context are sent to the website server. From there, the request is forwarded to Anthropic, PBC, 548 Market Street, PMB 90375, San Francisco, CA 94104-5401, USA, to generate a response.

The site assistant is designed to answer only from the curated site context. It is not intended for confidential, especially protected, or sensitive information. Please do not enter health data, legal cases, confidential project information, passwords, or other secrets into the chat.

The website does not permanently store chat histories in its own database. During use, messages are displayed in the browser only for the current session. Anthropic processes the transmitted content according to the terms applicable to the Anthropic API. According to Anthropic, API inputs and outputs are deleted by default within 30 days unless an exception applies, for example for abuse or legal enforcement. Anthropic also states that data from commercial offerings such as the Anthropic API is not used to train generative models unless explicit participation in a corresponding program occurs.

The legal basis for processing is Art. 6(1)(f) GDPR. The legitimate interest lies in enabling visitors to interactively access the public website content. If your inquiry is directed toward pre-contractual communication, Art. 6(1)(b) GDPR may additionally apply.

Cookies, local storage, and analytics

This website uses Vercel Web Analytics, a service provided by Vercel Inc., 340 S Lemon Ave #4133, Walnut, CA 91789, USA, for anonymized reach measurement. Page views and technical usage data are processed, such as visited pages, referrer, country, browser, operating system, and device type. According to Vercel, Vercel Web Analytics does not use cookies and does not store data that would allow individual visitors to be identified or recognized across different websites.

The analysis is used to better understand website usage, improve content, and identify technical issues. The legal basis is Art. 6(1)(f) GDPR. The legitimate interest lies in data-minimizing analysis and optimization of the website. Where required, a data processing agreement pursuant to Art. 28 GDPR exists with Vercel. Transfers to the USA use appropriate safeguards within the meaning of Art. 44 et seq. GDPR.

The website does not use analytics or marketing cookies and does not use tracking services such as Google Analytics.

The website only stores the selected display mode, for example light or dark mode, locally in the browser. This information is not used for tracking and is not transmitted to the server.

Fonts

The website uses fonts through the Next.js font function. Font files are delivered with the website. No font files are loaded directly from Google servers when visiting the website.

External links

The website contains links to external offerings, for example LinkedIn, publications, or project pages. Simply visiting this website does not transmit data to these providers through the links. The privacy policies of the respective providers apply only when you click an external link.

No embedded YouTube videos

As of the current state, no YouTube videos are embedded on this website. As long as no embedding takes place, no data is transmitted to YouTube through video embedding when visiting the website.

SSL or TLS encryption

This website uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content. You can recognize an encrypted connection by the browser address line starting with "https://" and showing a lock icon.

Storage duration

Personal data is stored only as long as required for the respective purposes. It is then deleted unless statutory retention obligations, documentation obligations, or legitimate interests prevent deletion.

Your rights

In accordance with statutory provisions, you have in particular the following rights:

  • right of access pursuant to Art. 15 GDPR
  • right to rectification pursuant to Art. 16 GDPR
  • right to erasure pursuant to Art. 17 GDPR
  • right to restriction of processing pursuant to Art. 18 GDPR
  • right to data portability pursuant to Art. 20 GDPR
  • right to object to processing based on Art. 6(1)(e) or (f) GDPR pursuant to Art. 21 GDPR
  • right to withdraw consent with effect for the future pursuant to Art. 7(3) GDPR
  • right to lodge a complaint with a data protection supervisory authority pursuant to Art. 77 GDPR

To exercise your rights and for questions about data protection, you can contact kontakt@daniel-autenrieth.de at any time.

Changes to this privacy policy

This privacy policy may be adapted if legal requirements, technical functions, or services used change. The current version applies to each renewed visit.