Betreiber der Website:
Marcel C. Buehler, Vorderbrüel 5, 8467 Truttikon, Schweiz
Haftungshinweis:
Trotz sorgfältiger inhaltlicher Kontrolle übernehmen wir keine Haftung für die Inhalte externer Links. Für den Inhalt der verlinkten Seiten sind ausschliesslich deren Betreiber verantwortlich.
Last Updated: January 4, 2026
Marcel Buehler, owner of www.mcbuehler.ch ("Site"), respects your privacy. This policy complies with the General Data Protection Regulation (GDPR) for EU/EEA visitors, explaining data collection via Google Analytics only. Processing occurs on the lawful basis of legitimate interest for site analytics (Art. 6(1)(f) GDPR), subject to opt-out.
Marcel Buehler acts as the data controller under GDPR, determining processing purposes. Google LLC acts as data processor under a Data Processing Agreement (DPA) per Art. 28 GDPR, available at Google's Analytics Help. No other processors are used. EU representatives: None required for personal site; contact directly.
Data processing relies on legitimate interest in site improvement, balanced against user rights via opt-out. For EU/EEA users, explicit opt-in consent is obtained via cookie banner before Google Analytics activates (ePrivacy Directive + GDPR Art. 6(1)(a)). Consent is granular, freely given, informed, and withdrawable anytime. IP addresses are anonymized in GA4 by default.
EU/EEA users can access, rectify, erase ("right to be forgotten"), restrict, object, or port data free of charge. Requests via mcbuehlerus [at] gmail [dot] com are answered within one month (extendable). Google Analytics data deletion requests route through controller to processor. Automated decisions absent.
Data transfers to Google LLC (USA) use EU-US Data Privacy Framework (DPF), UK's adequacy decision, or Standard Contractual Clauses (SCCs) supplemented by Transfer Impact Assessment (TIA). Users can request TIA details. No Schrems II issues post-DPF certification.
No DPIA required for this low-risk personal analytics use. Security includes HTTPS, pseudonymization, and Google's ISO 27001 certification. Data retention: 14 months max in Google Analytics, then auto-deleted.
Site displays GDPR-compliant banner linking this policy, categorizing analytics cookies, with accept/reject/customize buttons. No tracking pre-consent via Google Consent Mode v2. Opt-out persists via browser add-on.
Changes post here with 30-day notice. EU users notified if rights-affected. Policy reviewed annually. Disputes: Local DPA first, then courts.
Email mcbuehlerus [plus] privacy [at] gmail [dot] com for GDPR matters. DPO: Not appointed (Art. 37 exemption for small-scale).