Privacy Policy – unrupt GmbH

1. Controller

The controller within the meaning of the General Data Protection Regulation (GDPR) is:

unrupt GmbH
Freseniusstr. 31i
81247 München
Germany
Email: hello@unrupt.io
Phone: +49 (89) 88908243

2. General Information on Data Processing

We process personal data only to the extent necessary to provide a functional website and our content and services. Personal data is generally only processed with the user's consent. An exception applies in cases where prior consent cannot reasonably be obtained and processing is permitted by law.

3. Legal Bases

Where we obtain consent for processing personal data, Art. 6 (1)(a) GDPR serves as the legal basis.

Where processing is necessary for the performance of a contract, Art. 6 (1)(b) GDPR serves as the legal basis.

Where processing is necessary to comply with a legal obligation, Art. 6 (1)(c) GDPR serves as the legal basis.

Where processing is necessary to protect our legitimate interests and these are not overridden by the interests, fundamental rights, and freedoms of the data subject, Art. 6 (1)(f) GDPR serves as the legal basis.

4. Hosting

This website is hosted by Google Firebase Hosting. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

When you visit our website, the hosting provider automatically collects various log data. This includes the IP address of your device, date and time of access, the page accessed, the browser used, and the operating system.

Processing is based on Art. 6 (1)(f) GDPR. Our legitimate interest lies in the reliable and secure provision of our website. Google may also process data in the USA under the EU-U.S. Data Privacy Framework. For further information, see Google's privacy policy: https://policies.google.com/privacy.

5. Self-Hosted Web Fonts

This website uses self-hosted fonts served from our own servers — no requests are made to Google or any external font provider. Your data stays on our infrastructure.

6. Contact

If you contact us by email or via a contact form, the data you provide (name, email address, message content) will be stored by us in order to process your enquiry.

Processing is based on Art. 6 (1)(b) GDPR (pre-contractual measures) or Art. 6 (1)(f) GDPR (legitimate interest in responding to enquiries). We delete your data once the enquiry has been fully processed, unless statutory retention obligations apply.

7. Cookies and Analytics

This website only loads Google Analytics (GA4) with your explicit consent via our cookie banner. The legal basis is Art. 6 (1)(a) GDPR. Without your consent, no analytics cookies are set and no tracking takes place.

8. SSL / TLS Encryption

For security reasons, this site uses SSL or TLS encryption. You can recognise an encrypted connection by the "https://" prefix in your browser's address bar and the padlock icon.

9. Your Rights as a Data Subject

You have the following rights regarding your personal data:

Right of access (Art. 15 GDPR)
Right to rectification (Art. 16 GDPR)
Right to erasure (Art. 17 GDPR)
Right to restriction of processing (Art. 18 GDPR)
Right to data portability (Art. 20 GDPR)
Right to object (Art. 21 GDPR)

You also have the right to lodge a complaint with a data protection supervisory authority. The competent authority is the Bavarian State Office for Data Protection Supervision (BayLDA).

10. Updates to this Privacy Policy

This privacy policy is dated March 2026. We reserve the right to update it to comply with current legal requirements or to reflect changes in our services.