Search site...

Privacy Policy

Last updated: 2025-11-08 2025

1. Data Controller

Kurt Cotoaga
Grete-Mosheim-Str. 7
80636 München, Germany
Email: kurt@cotoaga.net

Hosting & Automatic Data Collection

This website is hosted by WordPress.com (Automattic Inc.).

Automatically collected data:

  • IP address (server logs)
  • Browser type and version
  • Operating system
  • Referrer URL
  • Access time and date

Legal basis: Legitimate interest (Art. 6(1)(f) GDPR)

Purpose: Website functionality and security

Storage: 30 days (server logs)

Privacy Policy: https://automattic.com/privacy/

3. Interactive Assessment Tools

When using our AI competency assessments (EU AI Act tools), we collect:

Required data:

  • Email address (for result

Automatically captured:

  • Assessment answers
  • Response times per question
  • Timestamp
  • Technical data (browser, OS, screen resolution)

Legal basis: Consent (Art. 6(1)(a) GDPR)

Purpose:

  • Generate personalized evaluations
  • Send results via email
  • Improve assessment tools
  • Create anonymized statistics

Storage:

  • Email addresses: Until withdrawal, max 3 years
  • Assessment data: 1 year (anonymized for statistics)
  • Technical logs: 30 days

Data sharing: None, except email service provider (under strict data processing agreement)

Withdrawal: Contact kurt@cotoaga.net anytime

4. Contact & Inquiries

When you contact us via email or phone:

Data collected: Your email address, phone number, message content
Legal basis: Legitimate interest (Art. 6(1)(f) GDPR)
Purpose: Respond to your inquiry
Storage: Duration of correspondence, then deleted
Sharing: None

5. Interactive Visualizations

Our tools (Klein Bottle, Solution Cube, Cost of Delay Estimator, etc.) run entirely in your browser. No interaction data is transmitted to our servers.

6. Cookies

Essential cookies: WordPress.com uses necessary cookies for core functionality.

Cookie consent: Managed by CookieYes (https://www.cookieyes.com/)

Tracking cookies: We do not implement additional tracking cookies.

7. Analytics

WordPress.com provides basic visitor statistics (page views, referrers).

Data processing: Per WordPress.com privacy policy
Purpose: Understand website usage
Legal basis: Legitimate interest (Art. 6(1)(f) GDPR)

8. External Links

We link to:

  • LinkedIn
  • X (formerly Twitter)
  • Unsplash
  • References for sources (media)

Clicking these links may transmit data to those platforms. We are not responsible for their data processing. Review their respective privacy policies.

9. Your Rights (GDPR)

You have the right to:

Access: your personal data

Rectification: of incorrect data

Erasure: (“right to be forgotten”)

Data portability: (receive data in structured format)

Restriction: of processing

Object: to processing

Withdraw consent at any time (without affecting prior processing)

Contact: kurt@cotoaga.net

10. Security Measures

We implement appropriate technical and organizational measures to protect your data from:

  • Unauthorized access
  • Unlawful processing
  • Accidental loss
  • Unauthorized destruction
11. Supervisory Authority

You have the right to lodge a complaint with a data protection supervisory authority.

Competent authority (Germany):
Bayerisches Landesamt für Datenschutzaufsicht
Promenade 18
91522 Ansbach
Germany
https://www.lda.bayern.de

EU-wide information: https://edpb.europa.eu/about-edpb/board/members_en

12. AI & Content Creation

This website’s content is created through human-AI collaboration (Kurt Cotoaga + AI tools).

User data is never used to train AI models.

Photography by Tanja & Kurt Cotoaga.

This privacy policy complies with GDPR (EU 2016/679) and German data protection law (BDSG).