Farium File Edit View Export Blog Window Help
Privacy Policy

Privacy Policy

This privacy policy applies to the website farium.eu. It complies with Regulation (EU) 2016/679 (General Data Protection Regulation — GDPR / DSGVO), the German Federal Data Protection Act (BDSG), and the Telecommunications-Telemedia Data Protection Act (TDDDG).

Short version:

We do not perform tracking. We do not set consent-required cookies. We do not run analytics tools. We do not share data with third parties unless this is strictly necessary to provide the service. The Farium application itself works entirely offline. The only personal data we process is what you voluntarily submit via the contact form, plus the server log data technically required to deliver the website.

1. Controller

The controller within the meaning of Art. 4 No. 7 GDPR is:

DGAL Projectmanagement & Consulting GmbH
Schiepziger Str. 59
06120 Halle (Saale)
Germany
Email:

2. Data Collected on This Website

2.1 Server Log Files

Our hosting provider (Cloudflare, Inc.) automatically processes technical data each time the website is accessed. This includes the IP address, the requested URL, the time of access, the referrer URL, and the user-agent string. This data is processed for the purpose of providing the website and ensuring its security (Art. 6 (1) lit. f GDPR — legitimate interest in the secure and stable operation of the service).

Cloudflare retains these logs only for the period necessary for security and operational purposes. We do not access or analyze these logs unless a security incident is being investigated.

2.2 No Cookies, No Tracking, No Analytics

The website farium.eu sets no consent-required cookies of any kind. We do not use Google Analytics, Plausible, Matomo, or any other analytics service. We use no tracking pixels, no advertising networks, and no social media plugins.

2.3 No Embedded Third-Party Content

During regular page loads, the website does not embed YouTube videos, X/Twitter widgets, Google Fonts (CDN), or similar third-party resources. The "ChicagoFLF" font used on this website is hosted on our own server.

3. Contact Form

3.1 Data Processed

If you use our contact form at /contact.html, we process the following data:

  • Email address (required) — to respond to your inquiry
  • Name (optional)
  • Subject and content of the message
  • Date and time of submission

The legal basis is Art. 6 (1) lit. b GDPR (performance of pre-contractual measures), insofar as your inquiry is aimed at concluding or executing a contract; otherwise Art. 6 (1) lit. f GDPR (legitimate interest in responding to inquiries).

3.2 Cloudflare Turnstile (Spam Protection)

To protect the contact form against automated abuse (spam bots), we use Cloudflare Turnstile, a service of Cloudflare, Inc. According to the provider, Turnstile is an alternative to traditional CAPTCHAs and does not rely on tracking cookies or the creation of behavioral profiles.

When the contact page is loaded, Turnstile checks your browser environment to determine whether you are a human user. In doing so, technical characteristics of your browser are evaluated and transmitted to Cloudflare's servers. This may include a transfer to the United States; for this third-country transfer, Cloudflare relies on the European Commission's Standard Contractual Clauses pursuant to Art. 46 (2) lit. c GDPR and, where applicable, on the EU-US Data Privacy Framework adequacy decision.

The legal basis for using Turnstile is Art. 6 (1) lit. f GDPR (legitimate interest in protecting our infrastructure from abuse). Access to information on your end device is strictly necessary within the meaning of § 25 (2) No. 2 TDDDG to provide the service you have explicitly requested (submitting the contact form without bypassing spam protection); consent is therefore not required. The Turnstile script is loaded exclusively on the contact page, not globally.

Cloudflare privacy information: cloudflare.com/privacypolicy

3.3 Storage and Retention

Messages submitted via the contact form are stored encrypted in Cloudflare's Key-Value storage (Cloudflare KV) within the EU. We retain messages only as long as necessary to process your inquiry, generally no longer than six months. They are then deleted, unless statutory retention obligations require otherwise.

4. Hosting

The website is hosted on Cloudflare Pages, operated by Cloudflare, Inc., 101 Townsend Street, San Francisco, CA 94107, USA. Cloudflare processes data on our behalf as a data processor pursuant to Art. 28 GDPR. A Data Processing Agreement is in place. When accessed from the EU, Cloudflare's data processing primarily occurs on European edge servers; however, a transfer of data to the United States cannot be entirely excluded. The legal basis for this third-country transfer is the European Commission's Standard Contractual Clauses (Art. 46 (2) lit. c GDPR) and, where applicable, the adequacy decision regarding the EU-US Data Privacy Framework.

Cloudflare privacy policy: cloudflare.com/privacypolicy

5. The Farium App

The Farium macOS application itself is completely offline. It connects to no servers, syncs no data, and contains no analytics or telemetry. All your notes stay on your local disk as plain .md files. We have no way of knowing whether you use the app, what files you create, or how often you launch it.

6. Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Right of access (Art. 15 GDPR) — request a copy of data we hold about you
  • Right to rectification (Art. 16 GDPR) — correct inaccurate data
  • Right to erasure (Art. 17 GDPR) — request deletion of your data
  • Right to restriction (Art. 18 GDPR) — limit processing of your data
  • Right to data portability (Art. 20 GDPR) — receive your data in a portable format
  • Right to object (Art. 21 GDPR) — object to processing based on legitimate interest
  • Right to withdraw consent (Art. 7 (3) GDPR) — where processing is based on consent

To exercise any of these rights, contact us via the contact form or by email at the address shown in the imprint.

7. Right to Lodge a Complaint with the Supervisory Authority

Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with a data protection supervisory authority. The competent supervisory authority for us is:

Landesbeauftragte für den Datenschutz Sachsen-Anhalt
Otto-von-Guericke-Straße 34a
39104 Magdeburg
Germany
Phone: +49 391 81803-0
Email:

8. Changes to This Policy

We may update this privacy policy when our website or legal requirements change. The date of the last update is shown below. For substantive changes, we will make a clear notice on the website.

Last updated: 4 May 2026

← Back to Farium