Privacy Policy

We take the protection of your personal data seriously. This privacy policy explains which data we process, for what purposes, and which rights you have. Processing is carried out in accordance with the GDPR and Austrian data protection law.

1. Controller

The controller within the meaning of the GDPR is Hans-Peter Schadler, Hafnerriegel 5, 8010 Graz, Austria. Contact: [email protected], or contact form https://chirm.app/en/#contact.

2. Scope (Website vs. Chirm Platform)

This privacy policy applies to the marketing website chirm.app.

For data processing on the Chirm platform (e.g., app.blbr.app), the product privacy policy applies and is available at https://app.blbr.app/about.

The public instance is provided for demo purposes. Content may be deleted at any time, and we cannot guarantee data retention. Please do not store sensitive or confidential information on the public instance.

3. Hosting

This website is hosted by Hetzner Online GmbH (data center location: Finland). Hetzner processes personal data on our behalf to operate the website (Art. 28 GDPR).

Processing is based on our legitimate interest in a secure and reliable website (Art. 6(1)(f) GDPR).

4. Server log files

Each time you access the website, technical data is processed (e.g., IP address, date and time of access, requested page, referrer URL, user agent, status code). This data is used to deliver the website, analyze errors, and ensure system security.

Log files are generally stored for 14 days and then deleted, unless security-related incidents require longer retention.

5. Contact requests

If you contact us via the contact form or by email, we process the data you provide (name, email address, optional company and phone number, and your message) to respond to your inquiry.

The legal basis is Art. 6(1)(b) GDPR (pre-contractual steps) and/or Art. 6(1)(f) GDPR (legitimate interest in communication). Data is generally retained for up to 6 months after the inquiry is resolved, unless legal retention obligations apply.

Providing the required fields is necessary to handle your request. Without these details, we cannot respond.

6. Web analytics (Plausible)

We use a self-hosted instance of Plausible Analytics on our own servers. Plausible works without cookies and does not create user profiles. Only aggregated, statistical data is collected.

Processing is based on our legitimate interest in improving our offering (Art. 6(1)(f) GDPR).

7. Cookies and local storage

We do not use tracking cookies. Only technically necessary storage (e.g., language or theme settings) is used.

8. Recipients and international transfers

We do not share your data with third parties except for the technical provision of the hosting services by Hetzner Online GmbH. No data is transferred to countries outside the EEA.

9. No automated decision-making

There is no automated decision-making, including profiling, on this website within the meaning of Art. 22 GDPR.

10. Your rights

You have the right to access, rectify, erase, restrict processing, data portability, and to object to processing. To exercise these rights, please contact [email protected].

You also have the right to lodge a complaint with the Austrian Data Protection Authority (DSB), Barichgasse 40-42, 1030 Vienna, Austria, https://dsb.gv.at/, [email protected].

11. Data security

We use technical and organisational measures to protect your data against loss, misuse, and unauthorised access.

12. Updates

This privacy policy is current as of January 2026. We may amend it due to changes in the website or legal requirements.