Privacy Policy Link to heading

Note: This is my personal website where I introduce myself as a person, share my projects and write about cybersecurity topics.

1. Privacy at a Glance Link to heading

General Information Link to heading

The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data is any data that can be used to personally identify you.

Who is responsible for data collection? Link to heading

Data processing on this website is carried out by the website operator. You can find the operator’s contact details in the legal notice of this website.

How do we collect your data? Link to heading

On the one hand, your data is collected when you communicate it to us (e.g. via email). Other data is collected automatically when you visit the website by our IT systems or through GitHub Pages. This is primarily technical data (e.g. internet browser, operating system or time of page access).

What do we use your data for? Link to heading

Part of the data is collected to ensure error-free provision of the website. Other data may be used to analyze your user behavior.

2. Hosting Link to heading

GitHub Pages Link to heading

This website is hosted on GitHub Pages. Provider is GitHub Inc., 88 Colin P. Kelly Jr. Street, San Francisco, CA 94107, USA (hereinafter “GitHub”).

When you visit this website, GitHub collects various log files including your IP addresses. Details on data processing by GitHub can be found in GitHub’s privacy policy: https://docs.github.com/en/site-policy/privacy-policies/github-privacy-statement

The use of GitHub Pages is based on Art. 6 para. 1 lit. f GDPR. I have a legitimate interest in the most reliable and cost-effective presentation of my website possible.

Data processing by GitHub: GitHub processes data generated when visiting this website (in particular IP addresses and technical information) for its own purposes. I have no influence over this. GitHub acts as an independent controller within the meaning of the GDPR.

Third country transfer: GitHub’s servers are located in the USA. The USA has an adequacy decision from the EU Commission (EU-US Data Privacy Framework). GitHub Inc. is certified under the Data Privacy Framework.

3. General Information and Mandatory Information Link to heading

Data Protection Link to heading

I take the protection of your personal data very seriously. I treat your personal data confidentially and in accordance with statutory data protection regulations and this privacy policy.

When you use this website, various personal data is collected. This privacy policy explains what data I collect and what I use it for. It also explains how and for what purpose this is done.

I point out that data transmission on the Internet (e.g. when communicating by email) can have security gaps. Complete protection of data from access by third parties is not possible.

Responsible Party Link to heading

The responsible party for data processing on this website is:

Lukas Hügle Pirmaterstraße 18 81375 Munich Germany

Phone: +49 174 302 8495 Email: info@lukashuegle.de

The responsible party is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, email addresses, etc.).

Storage Duration Link to heading

Unless a more specific storage period has been specified within this privacy policy, your personal data will remain with me until the purpose for data processing no longer applies. If you assert a legitimate request for deletion or revoke consent to data processing, your data will be deleted unless I have other legally permissible reasons for storing your personal data (e.g. tax or commercial law retention periods); in the latter case, deletion will take place after these reasons cease to apply.

General Information on the Legal Basis for Data Processing Link to heading

If you have consented to data processing, I process your personal data on the basis of Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, if special categories of data according to Art. 9 para. 1 GDPR are processed. In the case of explicit consent to the transfer of personal data to third countries, data processing is also based on Art. 49 para. 1 lit. a GDPR.

If you have consented to the storage of cookies or access to information in your end device (e.g. via device fingerprinting), data processing is additionally based on § 25 para. 1 TDDDG. Consent can be revoked at any time.

If your data is required for contract fulfillment or for the implementation of pre-contractual measures, I process your data on the basis of Art. 6 para. 1 lit. b GDPR. Furthermore, I process your data if this is necessary to fulfill a legal obligation on the basis of Art. 6 para. 1 lit. c GDPR.

Data processing may also be based on my legitimate interest according to Art. 6 para. 1 lit. f GDPR. Information on the relevant legal bases in each individual case is provided in the following paragraphs of this privacy policy.

Recipients of Personal Data Link to heading

In the course of my business activities, I work with various external parties. In some cases, this also requires the transmission of personal data to these external parties. I only pass on personal data to external parties if this is necessary as part of contract fulfillment, if I am legally obliged to do so (e.g. disclosure of data to tax authorities), if I have a legitimate interest according to Art. 6 para. 1 lit. f GDPR in the disclosure, or if another legal basis permits the disclosure of data. When using processors, I only pass on personal data from my customers on the basis of a valid contract for order processing. In the case of joint processing, a contract for joint processing is concluded.

Revocation of Your Consent to Data Processing Link to heading

Many data processing operations are only possible with your explicit consent. You can revoke consent you have already given at any time. The lawfulness of data processing carried out until the revocation remains unaffected by the revocation.

Right to Object to Data Collection in Special Cases and to Direct Advertising (Art. 21 GDPR) Link to heading

IF DATA PROCESSING IS BASED ON ART. 6 PARA. 1 LIT. E OR F GDPR, YOU HAVE THE RIGHT AT ANY TIME TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE RESPECTIVE LEGAL BASIS ON WHICH PROCESSING IS BASED CAN BE FOUND IN THIS PRIVACY POLICY. IF YOU OBJECT, I WILL NO LONGER PROCESS YOUR AFFECTED PERSONAL DATA UNLESS I CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR PROCESSING THAT OVERRIDE YOUR INTERESTS, RIGHTS AND FREEDOMS, OR THE PROCESSING SERVES TO ASSERT, EXERCISE OR DEFEND LEGAL CLAIMS (OBJECTION ACCORDING TO ART. 21 PARA. 1 GDPR).

IF YOUR PERSONAL DATA IS PROCESSED FOR DIRECT ADVERTISING PURPOSES, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSE OF SUCH ADVERTISING; THIS ALSO APPLIES TO PROFILING INSOFAR AS IT IS CONNECTED WITH SUCH DIRECT ADVERTISING. IF YOU OBJECT, YOUR PERSONAL DATA WILL SUBSEQUENTLY NO LONGER BE USED FOR DIRECT ADVERTISING PURPOSES (OBJECTION ACCORDING TO ART. 21 PARA. 2 GDPR).

Right to Lodge a Complaint with the Competent Supervisory Authority Link to heading

In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the member state of their habitual residence, place of work or place of the alleged violation. The right to lodge a complaint is without prejudice to other administrative or judicial remedies.

Competent supervisory authority: Bavarian State Office for Data Protection Supervision (BayLDA) Promenade 18 91522 Ansbach Germany

Right to Data Portability Link to heading

You have the right to have data that I process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of data to another controller, this will only be done to the extent that it is technically feasible.

Information, Correction and Deletion Link to heading

Within the framework of applicable statutory provisions, you have the right at any time to free information about your stored personal data, its origin and recipients and the purpose of data processing and, if applicable, a right to correction or deletion of this data. You can contact me at any time regarding this and any further questions on the subject of personal data.

Right to Restriction of Processing Link to heading

You have the right to request the restriction of the processing of your personal data. You can contact me at any time for this purpose. The right to restriction of processing exists in the following cases:

• If you dispute the accuracy of your personal data stored by me, I usually need time to verify this. For the duration of the verification, you have the right to request the restriction of the processing of your personal data.
• If the processing of your personal data happened/is happening unlawfully, you can request the restriction of data processing instead of deletion.
• If I no longer need your personal data, but you need it to exercise, defend or assert legal claims, you have the right to request restriction of the processing of your personal data instead of deletion.
• If you have lodged an objection according to Art. 21 para. 1 GDPR, a balance must be struck between your interests and mine. As long as it has not yet been determined whose interests prevail, you have the right to request the restriction of the processing of your personal data.

If you have restricted the processing of your personal data, this data – apart from its storage – may only be processed with your consent or for the assertion, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or a member state.

SSL or TLS Encryption Link to heading

For security reasons and to protect the transmission of confidential content, such as requests that you send to me as the site operator, this page uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit to me cannot be read by third parties.

4. Data Collection on This Website Link to heading

Server Log Files Link to heading

This website is hosted on GitHub Pages. The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

• Browser type and browser version
• Operating system used
• Referrer URL
• Hostname of the accessing computer
• Time of the server request
• IP address

This data is not merged with other data sources.

The collection of this data is based on Art. 6 para. 1 lit. f GDPR. I have a legitimate interest in the technically error-free presentation and optimization of my website – for this, server log files must be collected.

Inquiry by Email or Telephone Link to heading

If you contact me by email or telephone, your inquiry including all resulting personal data (name, inquiry) will be stored and processed by me for the purpose of handling your request. I do not pass on this data without your consent.

The processing of this data is based on Art. 6 para. 1 lit. b GDPR, if your inquiry is related to the fulfillment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on your consent (Art. 6 para. 1 lit. a GDPR) and/or on my legitimate interests (Art. 6 para. 1 lit. f GDPR), as I have a legitimate interest in the effective processing of inquiries addressed to me.

The data you send to me via contact requests remains with me until you request deletion, revoke your consent to storage, or the purpose for data storage no longer applies (e.g. after completion of your request). Mandatory statutory provisions – in particular statutory retention periods – remain unaffected.

Cookies Link to heading

This website does not use cookies for tracking or analysis purposes. Only technically necessary cookies are used to the extent required for the operation of the website.

Legal basis: Art. 6 para. 1 lit. f GDPR and § 25 para. 2 no. 2 TDDDG (no consent required for technically necessary cookies).

5. Plugins and Tools Link to heading

Font Awesome Link to heading

This site uses Font Awesome for uniform display of fonts and symbols. Provider is Fonticons, Inc., 6 Porter Road Apartment 3R, Cambridge, Massachusetts, USA.

When a page is accessed, your browser loads the required fonts and symbols. No connection is established to Font Awesome’s servers as the files are stored locally on the server (self-hosting).

6. External Links Link to heading

Third-Party Websites Link to heading

This website may contain hyperlinks to third-party websites. Please note that I cannot accept any responsibility or warranty for third-party content or privacy policies. Please verify the applicable privacy policies before you transmit personal data to these websites.

LinkedIn Link to heading

This website contains links to my LinkedIn profile. If you click on these links, you will be redirected to LinkedIn’s platform. Data such as your IP address will be transmitted to LinkedIn.

Provider is LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland.

Information on data processing by LinkedIn can be found in LinkedIn’s privacy policy: https://www.linkedin.com/legal/privacy-policy

GitHub Link to heading

This website contains links to my GitHub profile. If you click on these links, you will be redirected to GitHub’s platform. Data such as your IP address will be transmitted to GitHub.

Information on data processing by GitHub can be found in GitHub’s privacy policy: https://docs.github.com/en/site-policy/privacy-policies/github-privacy-statement

Contact for Privacy Questions Link to heading

If you have questions about the collection, processing or use of your personal data, for information, correction, restriction or deletion of data, as well as revocation of consent given or objection to a specific data use, please contact:

Email: info@lukashuegle.de Phone: +49 174 302 8495

Status: January 2026