Privacy policy

Last updated 8 June 2026

Overview

This policy explains how personal data is processed when you visit erynoa.com and the pages of the Argus project (the “website”). Protecting your data matters to us, and the website is built to need as little of it as possible: it is a static site that sets no cookies, runs no tracking or analytics, and embeds no third-party advertising.

“Personal data” means any information relating to an identified or identifiable natural person, as defined in Art. 4(1) of the EU General Data Protection Regulation (GDPR / DSGVO). Processing takes place in accordance with the GDPR and the German Federal Data Protection Act (BDSG).

Controller

The controller responsible for data processing on this website within the meaning of Art. 4(7) GDPR is:

Niklas Klein
Krifteler Straße 34
60326 Frankfurt am Main
Germany
Email: contact@erynoa.com

A data protection officer is not required by law and has not been appointed. For any data protection enquiry, please use the contact address above.

Legal bases

Where we process personal data, we rely on one of the following legal bases under Art. 6(1) GDPR:

  • Consent (Art. 6(1)(a)) — where you have given us permission for a specific purpose.
  • Contract (Art. 6(1)(b)) — where processing is necessary to perform a contract or take steps at your request before entering one.
  • Legal obligation (Art. 6(1)(c)) — where we are required to process data to comply with the law.
  • Legitimate interests (Art. 6(1)(f)) — where processing is necessary for our legitimate interests, such as operating a secure and stable website, and your interests do not override them.

Access data & server logs

When you visit the website, your browser automatically transmits certain information that our hosting provider records in server log files. This data may include:

  • your anonymised or shortened IP address;
  • the date and time of the request;
  • the page or file requested and the amount of data transferred;
  • the HTTP status code and request method;
  • the referrer URL (the page you came from), where transmitted;
  • your browser type and version, and your operating system.

This data is processed to deliver the website reliably, to ensure system security and stability, and to defend against and investigate attacks. The legal basis is our legitimate interest under Art. 6(1)(f) GDPR. Log data is stored only for as long as necessary for these purposes and is then deleted or anonymised. It is not merged with other data sources and is not used to identify you or to create user profiles.

Hosting & content delivery

The website is hosted and delivered through the global network of Cloudflare (Cloudflare, Inc., 101 Townsend Street, San Francisco, CA 94107, USA, and its EU affiliate). Cloudflare provides hosting, content delivery (CDN), and protection against attacks, and in doing so processes the access data described above on our behalf as a processor under a data processing agreement pursuant to Art. 28 GDPR.

This can involve a transfer of data to servers in the United States. Such transfers are safeguarded by the EU–U.S. Data Privacy Framework, to which Cloudflare is certified, and by the EU Standard Contractual Clauses. You can find more information in Cloudflare’s privacy policy at cloudflare.com/privacypolicy.

Cookies & local storage

This website does not set cookies and does not use local storage, web beacons, fingerprinting, or any comparable tracking technologies. Because no non-essential information is stored on or read from your device, no cookie consent banner is required.

Web fonts

The fonts used on this website (Hanken Grotesk and Newsreader) are self-hosted and served directly from our own infrastructure. No connection is made to Google Fonts or any other third-party font provider, and no data — in particular, your IP address — is transmitted to such providers when you load a page.

Contacting us

If you contact us by email (for example at contact@erynoa.com), the details you provide — such as your email address, name, and the content of your message — are processed solely to handle your enquiry and any follow-up questions.

The legal basis is Art. 6(1)(b) GDPR where your message relates to a (prospective) contract, and otherwise our legitimate interest in responding to enquiries under Art. 6(1)(f) GDPR. We delete this data once your request has been dealt with conclusively and no statutory retention obligations prevent deletion.

External links & social media

The website contains links to external websites, including our profile on X (@ErynoaGroup) and the European Commission’s online dispute resolution platform. We have no influence over the content or data practices of those sites.

We do not embed social media plugins, share buttons, or comparable widgets that would transmit data to third parties as you browse. Data is only sent to an external provider once you actively follow a link, at which point that provider’s own privacy policy applies.

Your rights

As a data subject, you have the following rights regarding your personal data:

  • Access (Art. 15 GDPR) — to obtain confirmation of, and access to, the data we process about you.
  • Rectification (Art. 16 GDPR) — to have inaccurate or incomplete data corrected.
  • Erasure (Art. 17 GDPR) — to have your data deleted where the legal conditions are met.
  • Restriction (Art. 18 GDPR) — to restrict processing in certain circumstances.
  • Data portability (Art. 20 GDPR) — to receive your data in a structured, common, machine-readable format.
  • Objection (Art. 21 GDPR) — to object to processing based on legitimate interests.
  • Withdrawal of consent (Art. 7(3) GDPR) — to withdraw any consent at any time, with effect for the future.

To exercise any of these rights, please contact contact@erynoa.com. Exercising your rights is free of charge.

Right to object

Where we process your personal data on the basis of our legitimate interests under Art. 6(1)(f) GDPR, you have the right to object to that processing at any time on grounds relating to your particular situation, in accordance with Art. 21 GDPR.

If you object, we will no longer process the data concerned unless we can demonstrate compelling legitimate grounds that override your interests, rights, and freedoms, or unless the processing serves to establish, exercise, or defend legal claims. To object, an informal message to contact@erynoa.com is sufficient.

Right to complain

Without prejudice to any other remedy, you have the right to lodge a complaint with a data protection supervisory authority if you believe that the processing of your data infringes the GDPR (Art. 77 GDPR). The authority responsible for the controller is:

Der Hessische Beauftragte für Datenschutz und Informationsfreiheit (HBDI)
Gustav-Stresemann-Ring 1
65189 Wiesbaden
Germany
datenschutz.hessen.de

You may also contact the supervisory authority of your usual place of residence or workplace.

Data security

All connections to this website are encrypted in transit using TLS (HTTPS), recognisable by the lock icon in your browser’s address bar. We apply appropriate technical and organisational measures within the meaning of Art. 32 GDPR to protect personal data against loss, manipulation, and unauthorised access, and we review these measures as technology develops.

Please note that data transmission over the internet can never be guaranteed to be completely secure, and absolute protection cannot be promised.

Data retention

We process and store personal data only for as long as is necessary to achieve the purpose for which it was collected, or for as long as required by statutory retention periods (for example under commercial or tax law). Once the purpose ceases to apply and no retention obligation remains, the data is routinely deleted or anonymised.

Automated decisions

We do not use automated decision-making or profiling within the meaning of Art. 22 GDPR. No decision producing legal effects concerning you, or similarly significantly affecting you, is made on a purely automated basis.

Providing data

You are under no statutory or contractual obligation to provide personal data in order to use this website. The website can be browsed without entering any personal data. If you choose to contact us, the only consequence of not providing data is that we may be unable to respond to your enquiry.

Children

This website is not directed at children. Persons under the age of 16 should not transmit any personal data to us without the consent of a parent or guardian.

Changes

We may amend this privacy policy to reflect changes to our processing activities or to comply with new legal requirements. The current version always applies and is available on this page. Back to home →