Privacy Note
Last updated: 29 April 2026
We're a small agency that takes privacy seriously — not because lawyers told us to, but because we'd want the same. This note explains what data we collect when you visit towersandtemples.com, why we collect it, and what your rights are under the GDPR.
If anything is unclear, write us at hola@towersandtemples.com and we'll explain in plain language.
1. Who's responsible
The controller for any personal data processed on this website is:
Towers & Temples UG (haftungsbeschränkt)
Eschleweg 7
86825 Bad Wörishofen
Germany
Email: hola@towersandtemples.com
Represented by: Julian Nimar
VAT ID: DE348673360
We don't have a designated Data Protection Officer because we're not legally required to appoint one. For any privacy-related question, Julian is your direct contact.
2. What we collect, and why
2.1 When you just visit the site — server logs
Like every website, our hosting provider automatically logs technical information when your browser requests a page. This includes:
- Your IP address, anonymized where possible
- Browser type and version
- Operating system
- The page you visited and the time of the request
- The referring URL
Why: to keep the site running, prevent abuse, and fix technical issues.
Legal basis: Art. 6 (1)(f) GDPR — our legitimate interest in operating a stable, secure website.
How long: server logs are kept for a maximum of 30 days, then deleted.
2.2 When you write us
If you contact us via email or through a form, we receive whatever you choose to send: your name, email address, company, and the content of your message.
Why: to reply to you and, if it turns into a project, to manage the work.
Legal basis: Art. 6 (1)(b) GDPR — steps prior to entering a contract — or Art. 6 (1)(f) GDPR — legitimate interest in answering inquiries.
How long: we keep correspondence as long as it's relevant to the relationship, and longer where tax or commercial law requires it, typically 6–10 years for invoiced work.
2.3 Cookies and analytics
We use cookies and analytics to understand which parts of the site work and which don't. We only set non-essential cookies after you give consent through our cookie banner.
Essential cookies, always on: keep the site functional — for example, remembering your cookie preference. No consent needed, Art. 6 (1)(f) GDPR.
Analytics cookies, only with your consent: we use Google Analytics, a service by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Analytics sets cookies that help us see things like how many people visit, which pages are popular, and roughly where visitors come from — never who you personally are. IP addresses are truncated before processing. IP anonymization is enabled.
Legal basis: Art. 6 (1)(a) GDPR — your consent — and § 25 (1) TDDDG.
Data transfer to the US: Google may process data in the United States. Transfers are covered by the EU-US Data Privacy Framework, under which Google LLC is certified.
Withdraw consent anytime: click "Cookie Settings" in the footer, or use Google's opt-out browser add-on at tools.google.com/dlpage/gaoptout.
2.4 Hosting
This website is hosted by Webflow, Inc., 398 11th Street, 2nd Floor, San Francisco, CA 94103, USA.
Webflow processes the technical data described in section 2.1 on our behalf as a processor under Art. 28 GDPR. A data processing agreement is in place. Webflow is also certified under the EU-US Data Privacy Framework.
3. What we don't do
- We don't sell your data. Not now, not later, not ever.
- We don't use your data for automated decision-making or profiling.
- We don't run retargeting pixels — Meta, LinkedIn, TikTok, etc. — on this site.
- We don't share data with third parties beyond what's described above.
4. Your rights
Under the GDPR, you have the right to:
- Access the personal data we hold about you, Art. 15 GDPR
- Correct it if it's wrong, Art. 16 GDPR
- Delete it, Art. 17 GDPR
- Restrict how we process it, Art. 18 GDPR
- Receive it in a portable format, Art. 20 GDPR
- Object to processing based on legitimate interest, Art. 21 GDPR
- Withdraw consent at any time, without affecting the lawfulness of processing before withdrawal, Art. 7 (3) GDPR
To exercise any of these, just email hola@towersandtemples.com. We'll respond within 30 days.
You also have the right to lodge a complaint with a supervisory authority. For us, that's:
Bayerisches Landesamt für Datenschutzaufsicht (BayLDA)
Promenade 18
91522 Ansbach
Germany
lda.bayern.de
5. External links
Our site links out to other services, such as LinkedIn, Instagram, client websites, etc. Once you click through, you're on their turf and their privacy terms apply. We have no control over what they do with your data.
6. Changes to this note
If we add new tools or services that affect how data is processed, we'll update this page and change the "Last updated" date at the top. For significant changes, we'll flag it visibly on the site.
Questions? Concerns? Memes about privacy law?
