Controller and scope
This privacy notice is a publication template. Before launch, replace all bracketed fields with the actual controller, address, contact email and, where applicable, data protection contact. The static website is designed without third-party analytics or marketing tags in the default package.
Website access data
When the website is accessed, the hosting environment may process technical access data such as requested URL, timestamp, user agent, status code and IP address in server logs. The purpose is secure delivery, error analysis and operational reliability. Retention should be configured by the site operator.
Contact inquiries
The default contact page uses email links rather than a live form. If a form, CRM or newsletter system is added later, the operator must document categories of data, legal basis, recipients, retention periods and processor relationships before publication.
Rights and complaints
Data subjects may have rights of access, rectification, erasure, restriction, portability and objection under applicable law. The notice must include the competent supervisory authority once the real establishment and controller are known.
No non-essential tracking
The packaged site does not set non-essential cookies. If optional analytics or marketing technologies are introduced, a consent layer with equally simple accept and reject choices must be added before those technologies run.
| Element | Practical baseline |
|---|---|
| Ownership | Named business and operational owners |
| Evidence | Documents, decisions and review notes |
| Cadence | A review rhythm that keeps content current |