Back to top
Back to homepage

Privacy Policy

Last updated: July 2026

Short version: this website uses a single, technically necessary cookie (language preference) and no tracking, analytics or advertising cookies. Contact-form submissions are transmitted to our backend over an encrypted connection and stored in our self-hosted CRM on our own server in Germany. Parts of the processing may be AI-assisted; no decision with legal effect is made in a fully automated way.

1. Controller

Controller within the meaning of the GDPR:

Name
Artyom Zemchenko
Address
Altmühlstraße 6, 33689 Bielefeld, Germany
Email
hallo@zemchenko.de
Phone
+49 155 65531434

2. Principles of data processing

We process personal data only to the extent necessary to provide a functioning website and our content and services. Legal bases in particular are:

  • Art. 6(1)(b) GDPR – pre-contractual measures and processing of your enquiry (contact form)
  • Art. 6(1)(f) GDPR – legitimate interest (server log files for security, abuse/spam prevention, efficient handling of enquiries)
  • Art. 6(1)(a) GDPR – consent, should future optional features require it

We do not use tracking, analytics or advertising cookies. No data is processed for advertising purposes or shared with ad networks.

3. Hosting & server log files

This website and the associated infrastructure (backend, CRM) run on our own, self-managed server with FastVPS, located in Germany. This is a self-hosted environment – your data is not passed to third-party cloud providers outside this infrastructure.

The web server automatically stores the following data in server log files on every access:

  • IP address of the requesting device
  • date and time of access
  • URL accessed
  • HTTP status code and amount of data transferred
  • referrer URL (previous page, if transmitted)
  • browser and operating system (user agent)

This data is processed solely to ensure operation, for error analysis and to defend against attacks (Art. 6(1)(f) GDPR), and is automatically deleted after 30 days at the latest, unless needed to investigate a specific security incident. It is not shared with third parties. [Placeholder: exact retention period to be confirmed against the actual server log configuration.]

4. Contact form

When you use the contact form on our website, the data you provide is transmitted to our backend (/api/lead) over an encrypted HTTPS connection and stored in our CRM system to process your enquiry (see section 5).

Data processed from the form:

  • name
  • email address
  • company (optional)
  • content of your message
  • selected language
  • technical metadata for abuse detection: IP address, user agent, timestamp of submission, plus a hidden anti-spam field (honeypot) and a timing check between form load and submission

Your email address is used exclusively to send you an automatic confirmation of receipt and to reply to your enquiry — not for advertising or newsletters.

The legal basis is Art. 6(1)(b) GDPR (pre-contractual measures) and Art. 6(1)(f) GDPR (legitimate interest in handling enquiries and preventing spam). The data is used exclusively to process your enquiry; no automated decision-making takes place. Data is deleted once it is no longer required for processing – see section 5 for retention periods.

5. CRM & customer management

Enquiries submitted via the contact form, and any resulting customer relationships, are managed in a self-hosted CRM system on our own infrastructure in Germany. Data is not transferred to cloud CRM providers outside this infrastructure.

Data processed: contact details, communication history, and project-related information you share with us as part of an enquiry or collaboration.

Only authorised individuals have access to the CRM (Artyom Zemchenko and, where applicable, contractually bound, confidentiality-obligated processors).

The legal basis is Art. 6(1)(b) GDPR (pre-contractual measures and contract performance) and Art. 6(1)(f) GDPR (legitimate interest in structured customer management). Retention period: for the duration of the business relationship plus statutory retention periods (generally 6–10 years under German commercial/tax law once a contract is concluded); enquiries that do not lead to a contract are deleted once it is apparent that no engagement will follow, and no later than after 3 years.

6. AI-assisted processing (AI agents)

AI-assisted systems (AI agents) may be used to support the pre-qualification, categorisation and drafting of responses to enquiries.

No decision is made in a solely automated way that produces legal effects or similarly significantly affects you within the meaning of Art. 22 GDPR. All communication with you remains the responsibility of Artyom Zemchenko and is reviewed manually where necessary.

Transparency under the EU AI Act (Regulation (EU) 2024/1689): where you interact directly with an AI system (e.g. a chat or voice agent rather than a natural person), you will be informed of this separately in accordance with Art. 50 AI Act.

AI services/processors used: [Placeholder – to be completed once the AI provider(s) used are finalised]. Where personal data is transferred to providers outside the EU/EEA as a result, this only takes place on the basis of appropriate safeguards (Art. 44 et seq. GDPR, e.g. EU Standard Contractual Clauses).

The legal basis is Art. 6(1)(f) GDPR (legitimate interest in efficient and timely handling of enquiries).

7. Communication channels

We generally use the channels you choose to communicate with prospects and customers (e.g. email, phone).

Should additional communication channels (e.g. messaging services) be connected in production, we will inform you separately at this point, before active use, about the respective provider, the data transmitted and the legal basis. [Placeholder – this section will be expanded once further channels go live.]

8. Technically necessary cookies

We use exactly one technically necessary cookie:

NEXT_LOCALE
stores your language preference (DE/EN/RU/UK); retention period 1 year; legal basis Art. 6(1)(f) GDPR in conjunction with § 25(2) no. 2 TTDSG (technically necessary, no consent banner required).

No tracking, analytics or marketing cookies are set. You can delete this cookie at any time via your browser settings.

9. Your rights

As a data subject, you have the following rights under the GDPR:

  • Access (Art. 15 GDPR): you may request information about the data we hold about you.
  • Rectification (Art. 16 GDPR): you may request correction of inaccurate data.
  • Erasure (Art. 17 GDPR): you may request deletion of your data, unless a statutory retention obligation applies.
  • Restriction (Art. 18 GDPR): you may request restriction of processing.
  • Data portability (Art. 20 GDPR): you may receive your data in a structured, commonly used format.
  • Objection (Art. 21 GDPR): you may object to processing based on Art. 6(1)(f) GDPR.
  • Withdrawal of consent (Art. 7(3) GDPR): any consent given may be withdrawn at any time with effect for the future.

Right to lodge a complaint: you have the right to lodge a complaint with a data protection supervisory authority. The competent authority for North Rhine-Westphalia is the Landesbeauftragte für Datenschutz und Informationsfreiheit NRW, Postfach 20 04 44, 40102 Düsseldorf, www.ldi.nrw.de.

For all data protection enquiries, please contact hallo@zemchenko.de.

10. Changes to this policy

We reserve the right to amend this privacy policy where required due to changes in law, new features (e.g. further communication channels, AI providers) or changes to the website. The current version is always available on this page.