Legal

Privacy Policy

GDPR-compliant · no cookies · no trackers

TL;DR

I process only the absolute minimum of data. No analytics, no cookies, no ad trackers. If you email me or book a call, you know you're doing that — and nothing else happens in the background.

1.Controller

The controller in the sense of the General Data Protection Regulation (GDPR) and other national data protection laws and data protection regulations is:

Djamal Yusufu
Hiddemannstr. 3
44793 Bochum
Deutschland

Email: [email protected]

2.Access data and server log files

I run this website on my own server. Every time the website is accessed, technical data your browser transmits is processed automatically. These are:

Date and time of access
requested page (URL)
IP address (anonymized)
amount of data transferred
browser and operating system used
referrer URL (page you came from)

These data are technically necessary to deliver the website at all and are briefly stored in server logs. Legal basis is Art. 6(1)(f) GDPR (legitimate interest in an operational web presence). Server logs are automatically deleted after a maximum of 7 days unless there is concrete suspicion of abuse.

The entire connection to this website is TLS-encrypted (HTTPS) — visible by the lock icon in your browser's address bar. Nevertheless I am required to point out: data transmission over the internet (e.g. via email) can generally have security gaps; complete protection against unauthorized third-party access is not technically possible.

3.Cloudflare (Content Delivery Network)

To secure and speed up this website I use services of Cloudflare, Inc. (101 Townsend St, San Francisco, CA 94107, USA), represented in Germany by Cloudflare Germany GmbH (Rosental 7, 80331 München).

Cloudflare acts as a content delivery network and reverse proxy between you and my server. Technical data (IP address, browser info, request time) are transmitted to Cloudflare and briefly processed there. This is necessary to fend off attacks, speed up access and ensure availability.

Legal basis is Art. 6(1)(f) GDPR (legitimate interest in security and availability). A data processing agreement per Art. 28 GDPR exists with Cloudflare. Cloudflare is certified under the EU-US Data Privacy Framework, which enables lawful data transfer to the US per Art. 45 GDPR.

More info: Cloudflare privacy policy

4.Booking calls via meetergo

For booking intro calls I use meetergo (Meetergo GmbH, Germany). meetergo is a Germany-based company with servers located in Frankfurt am Main.

When you book a call, the following data is processed by meetergo:

Name
email address
selected time slot (date, time)
optional message
technical data (IP address, browser)

Legal basis is Art. 6(1)(b) GDPR (performance of pre-contractual measures at your request). The data is processed solely for scheduling and not used for advertising. A data processing agreement per Art. 28 GDPR exists with meetergo.

More info: meetergo privacy policy

5.Calendar sync with Google Workspace

I use Google Workspace (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland) for my business inbox and calendar. Bookings via meetergo sync automatically with my Google Calendar to avoid double-bookings.

The booking data (name, email, time) is briefly transmitted to Google. Legal basis is Art. 6(1)(b) GDPR. A data processing agreement per Art. 28 GDPR exists with Google.

More info: Google privacy policy

6.Contact by email

When you email me, the transmitted data (name, email address, message text) is used solely to answer your request. Legal basis is Art. 6(1)(b) GDPR for business-related inquiries, otherwise Art. 6(1)(f) GDPR (legitimate interest in communication).

Emails are stored in my Google Workspace inbox. Deletion happens at the latest after the business relationship ends or upon request, insofar as no statutory retention obligations prevent it.

7.No cookies, no analytics, no trackers

This website sets no cookies, performs no analytics tracking (Google Analytics or similar) and has no ad trackers or social-media pixels embedded.

Fonts are loaded locally from the server — no connection to third parties such as Google Fonts.

8.Your rights

You have the right at any time to:

Access to the data stored about you (Art. 15 GDPR)
Rectification of incorrect data (Art. 16 GDPR)
Erasure of your data (Art. 17 GDPR)
Restriction of processing (Art. 18 GDPR)
Data portability (Art. 20 GDPR)
Objection to processing (Art. 21 GDPR)

To exercise your rights an informal email to [email protected].

Right to object (Art. 21 GDPR)

If data processing is based on Art. 6(1)(e) or (f) GDPR, you have the right at any time to object, on grounds relating to your particular situation, to the processing of personal data concerning you; this also applies to profiling based on those provisions. If you object, I will no longer process your personal data unless I can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or unless the processing serves the establishment, exercise or defense of legal claims (objection pursuant to Art. 21(1) GDPR).

Where personal data concerning you is processed for direct marketing, you have the right to object at any time to the processing of personal data concerning you for such marketing; this also applies to profiling related to such direct marketing. This website does not engage in direct marketing — this notice is provided for completeness (objection pursuant to Art. 21(2) GDPR).

9.Right to lodge a complaint

You have the right to lodge a complaint with a data protection supervisory authority if you believe that the processing of your data violates the GDPR. Responsible for me is:

State Commissioner for Data Protection and Freedom of Information North Rhine-Westphalia
Kavalleriestrasse 2-4
40213 Düsseldorf
www.ldi.nrw.de

10.Validity of this policy

This privacy policy is currently valid and was last updated on 8 May 2026. Due to further development of my website or changes in legal or regulatory requirements, it may become necessary to adapt this privacy policy. The current version is always available at djamalyusufu.com/en/privacy.

Last updated: 8 May 2026