Privacy Policy

Last updated: April 2026 · GDPR · § 13 TMG

1. Controller

The party responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is:

Full provider identification and statutory legal notice: sumax.de/impressum.html ↗

2. Collection and processing of personal data

2.1 When visiting the website

When you access this website, information is automatically transmitted by your browser and temporarily stored in a log file:

• IP address (anonymised)
• Date and time of access
• Browser type and version, operating system
• Referrer URL (the previously visited page)
• Volume of data transferred, HTTP status code

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in the technical provision and security of the website). The data is deleted after seven days at the latest.

2.2 Contact form and email contact

If you contact us via the contact form, email or phone, the information you provide (name, company, email, phone number where applicable, and the content of your enquiry) is processed exclusively for the purpose of handling your request.

Legal basis: Art. 6(1)(b) GDPR (pre-contractual measures) or Art. 6(1)(f) (legitimate interest). The data is deleted once your enquiry has been fully processed, unless statutory retention obligations require otherwise.

2.3 No newsletter, no tracking without consent

This website uses no marketing cookies, no tracking tools and no third-party analytics without your express consent. A newsletter is not currently offered.

3. Fonts (local / self-hosted)

All fonts (Fraunces, Geist, Geist Mono, OFL licence) are delivered exclusively from our own server. No connection to Google Fonts or any other third-party CDN takes place. No IP addresses are transmitted to third parties.

4. Embedded media (third-party domains)

Individual images are loaded from the domain muratulusoy.de or sumax.de. External links (for example to press articles, LinkedIn, YouTube) are marked as such and open in a new tab. When you follow such links, the privacy policies of the respective providers apply.

5. AI crawlers and structured data

This website is deliberately designed to be readable for AI search systems. The file llms.txt defines which crawlers are permitted and which are not. Personal data is only published in structured data (JSON-LD) to the extent that it is already public through professional activity (name, professional role, business contact details).

6. Your rights under the GDPR

You have the right at any time to:

• Access the personal data stored about you (Art. 15 GDPR)
• Rectification of inaccurate data (Art. 16 GDPR)
• Erasure of your data (Art. 17 GDPR)
• Restriction of processing (Art. 18 GDPR)
• Data portability (Art. 20 GDPR)
• Object to processing (Art. 21 GDPR)
• Lodge a complaint with a supervisory authority (Art. 77 GDPR)

Competent supervisory authority for North Rhine-Westphalia: State Commissioner for Data Protection and Freedom of Information of North Rhine-Westphalia, ldi.nrw.de

7. Data security

The website is delivered with HTTPS (TLS) encryption. Industry-standard security measures are applied at server level to prevent manipulation, loss and unauthorised access.

8. Changes to this privacy policy

This policy is updated on an ongoing basis to reflect changes in the legal landscape or new website features. The current version is always available at muratulusoy.de/en/privacy.html.

9. Privacy contact

For requests regarding access, rectification or erasure, please contact: inquiry@muratulusoy.de