Privacy Policy

This website is a private project by Clemens Pollak. It is not an official website of the German Center for Neurodegenerative Diseases (DZNE).

1. Controller

Email: clemens.pollak@dzne.de

2. Scope

This policy applies to the website www.neurocade.org and related static pages. It does not apply to third-party websites that may be linked from this site.

3. No Cookies, Analytics, or Tracking

This website is designed as a static page. It does not set cookies, use analytics tools, load marketing pixels, or use tracking technologies. It also does not load external fonts or scripts from Google or other third-party content delivery networks.

4. Hosting and Server Logs

When you visit this website, the hosting provider may process technical access data that is necessary to deliver the website and maintain security. This can include:

• IP address
• date and time of access
• requested page or file
• HTTP status code
• referrer URL, if transmitted by your browser
• browser type, operating system, and user agent
• amount of data transferred

This website is hosted by STRATO GmbH, Otto-Ostrowski-Strasse 7, 10249 Berlin, Germany. STRATO provides the technical infrastructure for delivering this website. According to STRATO's customer documentation, access log files are available to hosting customers for the last six weeks, and client hostnames or IP addresses are anonymized in the customer-visible log files. The operator does not export or archive these logs separately unless this is necessary to investigate a security incident.

The legal basis is Art. 6(1)(f) GDPR. The legitimate interest is secure and reliable delivery of the website, troubleshooting, and prevention of misuse.

5. Contact by Email

If you contact the operator by email, the information you send is processed to respond to your request. This may include your email address, name, affiliation, message content, and technical email metadata.

The legal basis is Art. 6(1)(f) GDPR for general inquiries and Art. 6(1)(b) GDPR if the communication concerns pre-contractual or contractual matters. Messages are retained only as long as needed to handle the request, unless legal retention duties require longer storage.

6. Patient Data and Health Data

Please do not send patient data, DICOM files, MRI scans, medical records, or other health data through email or any general contact channel connected to this website. This public website does not provide an upload portal and is not intended to collect special categories of personal data under Art. 9 GDPR.

If health data is received unintentionally, it will be deleted where legally permissible and not used for the website project. Any future research or product workflow involving health data will require separate information, legal basis, safeguards, and, where applicable, ethics and data protection approvals.

7. Recipients and Processors

Personal data may be processed by STRATO GmbH as website hosting provider and, if you contact the operator by email, by the email systems used for the address clemens.pollak@dzne.de.

8. International Transfers

No intentional transfer of personal data outside the European Economic Area is planned for this static website. If a hosting, email, analytics, or other provider outside the EEA is used in the future, this policy must be updated and the appropriate GDPR transfer safeguards must be documented.

9. Your Rights

Subject to the legal requirements, you have the right to request access to your personal data, rectification, erasure, restriction of processing, data portability, and objection to processing based on Art. 6(1)(f) GDPR. You may also lodge a complaint with a data protection supervisory authority.

10. Supervisory Authority

If the operator uses a Bonn/NRW contact address, the competent authority is generally the State Commissioner for Data Protection and Freedom of Information North Rhine-Westphalia (LDI NRW), Kavalleriestr. 2-4, 40213 Duesseldorf, Germany, https://www.ldi.nrw.de.

11. No Automated Decision-Making

This website does not use automated decision-making or profiling within the meaning of Art. 22 GDPR.

12. Changes to This Policy

This policy may be updated if the website changes, for example if contact forms, analytics, embedded content, user accounts, uploads, or product services are added.