Legal Foundation

This policy outlines how Anderson Rairt Timana Solier (“Consultant,” “I,” “me”) handles personal data on this platform. As a strategist for digital sovereignty, I am committed to the highest standards of data protection and transparency in accordance with the European General Data Protection Regulation (GDPR/DSGVO).

1. General Information and Mandatory Information

Designation of the Responsible Party

The party responsible for data processing on this website is:

Anderson Rairt Timana Solier

Brahmsbogen 17

06124, Halle (Saale)

Email: redevelop@andersontimana.me

The responsible party is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (e.g., names, email addresses, etc.).

Revocation of Your Consent to Data Processing

Many data processing operations are only possible with your express consent. You can revoke consent that has already been given at any time. An informal communication by email to me is sufficient for this purpose.

Right to Lodge a Complaint with the Supervisory Authority

In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, place of work, or place of the alleged violation. In your case (Sachsen-Anhalt), the competent authority is:

Landesbeauftragte für den Datenschutz Sachsen-Anhalt Postfach 1947, 39009 Magdeburg

https://datenschutz.sachsen-anhalt.de

2. Data Collection on this Website

Server Log Files (Hosting)

This website is hosted via Cloudflare Pages (Cloudflare Inc.). When you visit this site, the provider automatically collects and stores information in server log files:

• Browser type/version and operating system
• Referrer URL and IP address
• Time of the server request

The basis for data processing is Art. 6 (1)(f) GDPR (Legitimate Interest) to ensure the secure and stable operation of the website and protection against cyber-attacks.

Reach Measurement and Behavioral Analysis (Plausible)

To optimize content and measure reach without compromising user privacy, this website uses Plausible Analytics.

• Self-Hosted & Privacy-First: The analytics script is self-hosted on my own server infrastructure.
• No Cookies: This method does not store any information on your end device (cookieless). No personal data is stored, and no individual user profiles are created.
• Legal Basis: Art. 6 (1)(f) GDPR (Legitimate Interest).

Newsletter (Brevo)

If you sign up for the newsletter, the data entered (Email) is processed by Brevo (Sendinblue GmbH, Germany/France).

• Legal Basis: Art. 6 (1)(a) GDPR (Consent) via Double-Opt-In.
• Storage: Data is stored until you unsubscribe.

3. Contact and Qualification Forms (Tally)

I use Tally (Tally BV, Belgium) to manage inquiries and applications. Tally is a European provider that processes and stores data strictly within the European Union (EU). To ensure data processing complies with GDPR requirements, a Data Processing Agreement (DPA) according to Art. 28 GDPR has been concluded with Tally BV.

3.1 General Contact Form

When you use the contact form to reach out for general inquiries:

• Categories of Data: Name (optional), Mandatory Name/Identification Field, and a mandatory text box for your message.
• Legal Basis: Art. 6 (1)(f) GDPR (Legitimate Interest) to handle and respond to your inquiry.
• Consent: By submitting the form, you acknowledge that your data will be processed to handle your inquiry as described in this policy.

3.2 The Qualification Form

When you apply for a Strategic Assessment:

• Categories of Data: Contact information, Business Metrics (Revenue ranges, Tech Stack), and Qualitative descriptions.
• Legal Basis: Art. 6 (1)(b) GDPR (Pre-contractual measures).
• Anonymization for Benchmarking: As outlined in the mNDA, once data is disassociated from your identity, it may be used for anonymized benchmarking (Art. 89 GDPR). To ensure digital sovereignty and privacy, only values from predefined fields (such as multiple-choice, dropdowns, or checkboxes) are utilized for benchmarking; the contents of qualitative text fields are strictly excluded from this process. This is only performed provided the dataset exceeds a statistically significant sample size of at least five (5) entries.

4. Third-Party Tools and Services

Email Communication & End-to-End Encryption (PGP)

My primary professional email (@andersontimana.me) is hosted via Namecheap (US).

• Compliance: Data processing is based on Standard Contractual Clauses (SCCs).
• Encryption Standards: To ensure the highest level of digital sovereignty and data confidentiality regardless of server location, I offer End-to-End Encryption via PGP (Pretty Good Privacy).
• Client Security: Clients and leads are encouraged to use my PGP Public Key for all sensitive communications and document transfers. This ensures that the content of the communication remains encrypted and unreadable to any third parties, including the email service provider, until it reaches my local, secured environment. My public key is available upon request.

5. Your Rights as a Data Subject

Under the GDPR, you have the right at any time and free of charge to Information (Art. 15), Rectification (Art. 16), Erasure (Art. 17), and Objection (Art. 21). To exercise these rights, please contact the email address listed in Section 1.

6. Data Security

This website uses SSL or TLS encryption for all data transmissions to ensure that the data you send to me cannot be read by third parties.

Last Updated: March 9, 2026