Privacy Policy

1. Introduction

OVERBRING S.M.P.C. (hereafter “we”) is committed to protect your personal data and to respect your privacy according to REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (also known as the GDPR, i.e. the General Data Protection Regulation).

This privacy policy explains the reason for the processing of your personal data, the way we collect, handle and ensure protection of all personal data provided, how that information is used and what rights you have in relation to your personal data. It also specifies the contact details of the responsible Data Controller with whom you may exercise your rights, the Data Protection Officer.

2. Why and how do we process your personal data?

The only personal data collected / processed when browsing overbring.com / www.overbring.com is what your browser sends to this web server when requesting content, such as your IP address, the user-agent string, browser type, operating system, referral URLs, device information (e.g., device IDs), device settings, pages visited, links clicked, the requested URL, and search terms and any query parameters appended to the URL you are visiting.

In other words, there is nothing installed on this website that might track you across websites of this or other companies. We do not use a website visitor tracker, a click tracker, a tag manager, or any other such tool that would collect your private data. Even the fonts are loaded not from Google Fonts’ Content Distribution Network, but from the very same web server you are now reading this page on.

The only processing that takes place beyond the storage of web server access logs is their visualization using the GoAccess open-source software.

This site neither sets nor reads any cookies. You can verify this by using your web browser’s “Inspect” functionality or by checking out the site’s Cookieserve.com results .

3. On what legal ground(s) do we process your personal data

The collection of the above information by the web server is automatic and exclusively used by the owner of OVERBRING S.M.P.C.:

1. to periodically review the usage patterns of website visitors in an anonymized fashion and detect attempts at breaking the website, i.e. to be notified of attempts at Denial of Service, to the exploit of software vulnerabilities, and adapt the system to deal with the resulting load on the web server, and
2. to periodically review the most popular pages on this website in an anonymized fashion and identify the most used browsers, the most frequent countries of origin (as inferred by the recorded IP addresses of the visitors), and guide the content being posted here, as well as the further design and improvement of the website to ensure wide support in browsers.

This processing satisfies legitimate interest (which is not overridden by your data protection interests), such as preventing fraud, ensuring network and information security, and protecting our legal rights and interests in serving you a website that works well.

4. Which personal data do we collect and further process?

Please refer to the answer to question (2) above.

5. How long do we keep your personal data?

The personal data described in the answer to question (2) (i.e., the web server’s access logs to pages served to users’ web browsers) are deleted automatically at the end of every calendar year.

6. How do we protect and safeguard your personal data?

The web server logs are stored securely on the web serving host itself, which is part of our hybrid cloud infrastructure, and is running a stable and reliable web server software (caddy) installed on a stable and reliable Operating System (FreeBSD), and both software pieces are updated regularly to their latest stable versions, with the latest security patches applied.

7. Who has access to your personal data and to whom is it disclosed?

Only the owner of OVERBRING S.M.P.C. has access to the personal data collected, and this data is not disclosed to anyone else, except to the extent and for the purpose we may be required to do so by law (e.g., in cases of DDoS attacks or hacking attempts).

8. What are your rights and how can you exercise them?

You have the right to request your personal data and to rectify them in case your personal data are inaccurate or incomplete. Where applicable, you have the right to request the deletion of your personal data, to restrict the processing of your personal data, to object to the processing, and the right to data portability.

You have the right to object to the processing of your personal data, which is lawfully carried out pursuant to Article 5(1)(a) on grounds relating to your particular situation. You can exercise your rights by contacting the Data Controller, or in case of conflict the Data Protection Officer. If necessary, you can also address the European Data Protection Supervisor.

Where you wish to exercise your rights in the context of one or several specific processing operations, please send us an email so that we can delete the records of your IP address accessing this website from the web server logs.

9. Too Long; Didn’t Read

This website does not collect or process any of your personal data beyond what is anyway logged by the web server software when you access the website. We do not give these data out to anyone, except if, for example, there is an attempt to hack the web server, and we are requested to provide the access logs to any cyber-crime authority.

We do not track you, your clicks, your demographic data, etc. In fact, we object to the rampant violation of Internet user privacy that regularly takes place on most websites under the guise of “digital marketing”, just because you, the user, is requested to click on some button that says “accept all cookies” or “accept necessary cookies only”.