Privacy Policy
Data controller
The controller responsible for data processing in connection with this website is:
Sixtyfour Invest GmbH
Am Sonnenhang 20a/4
4810 Gmunden, Austria
Email:
Data protection officer
No data protection officer has been appointed. Data-protection enquiries should be sent to the email address stated above.
General
This policy explains, in accordance with Art. 13 GDPR, how personal data is processed when you visit this website (sixtyfour.solutions). Processing is carried out in compliance with the General Data Protection Regulation (GDPR) and the Austrian Data Protection Act (DSG). Personal data is only processed to the extent technically necessary to operate the website and respond to your enquiries.
What this website does not do
For the sake of transparency, here is what this website expressly does not do:
– No cookies of its own, no local storage to identify returning visitors.
– No web analytics: no Google Analytics, no Matomo, no heatmaps, no A/B testing.
– No advertising, marketing or tracking pixels.
– No social-media plugins or embedded widgets (no Facebook, no X/Twitter, no YouTube, no SoundCloud, no LinkedIn widget).
– No newsletter sign-up, no emails sent to visitors.
– No profiling, no scoring, no automated decision-making, including profiling, within the meaning of Art. 22 GDPR.
Hosting (Netlify)
This website is hosted by Netlify, Inc. (44 Montgomery Street, Suite 300, San Francisco, CA 94104, USA). When you access the website, technically necessary connection data is transmitted to Netlify and processed in server logs. This typically includes:
– IP address of the requesting device
– Date and time of access
– Requested URL and HTTP status code
– Amount of data transferred
– User agent (browser and operating-system identifier)
– Referrer (previously visited page, if transmitted by the browser)
This processing serves the provision, security and stability of the website (protection against attacks, abuse and error analysis) and is based on the legitimate interest pursuant to Art. 6(1)(f) GDPR. This data is not merged with other data sources and is not used for marketing purposes.
According to Netlify, access logs are stored for less than 30 days. Netlify is used as a technical service provider and processor; the contractual basis is Netlify's Data Processing Agreement.
Netlify is certified under the EU-US Data Privacy Framework. For more information on data processing by Netlify: netlify.com/privacy. The certification can be checked in the Data Privacy Framework register.
Contact form
When you send a message via the contact form, the data you enter — name, email address, optionally phone number and your message — is processed solely for the purpose of handling your enquiry and initiating a potential business relationship. Name, email address and message are required to process the enquiry; the phone number is optional.
The legal basis is Art. 6(1)(b) GDPR where your enquiry concerns the initiation or performance of a contract. In all other cases, processing is based on Art. 6(1)(f) GDPR; the legitimate interest lies in handling incoming enquiries properly.
The technical transmission is handled via Netlify Forms. The contents are delivered to me by email and, where retained in the Netlify Forms backend, used only to handle the enquiry. Contact enquiries are deleted no later than six months after the relevant correspondence has been concluded, unless statutory retention, evidence or limitation periods require longer storage. You may object to processing based on legitimate interests at any time by email.
Fonts
The fonts used on this website ("Cormorant Garamond", "Inter" and "DM Mono") are served locally from the same server as the rest of the content. There is no retrieval from Google Fonts or any other external font CDN — your IP address is not transmitted to third parties.
External links
This website contains links to external third-party services, in particular to the managing director's LinkedIn profile. By clicking such links you leave this website. I have no influence over their content or data processing practices; the respective providers' privacy policies apply.
Your rights as a data subject
You have the right at any time to:
– Access the data stored about you (Art. 15 GDPR)
– Rectification of inaccurate or incomplete data (Art. 16 GDPR)
– Erasure ("right to be forgotten", Art. 17 GDPR)
– Restriction of processing (Art. 18 GDPR)
– Data portability, where the conditions of Art. 20 GDPR are met
– Object to processing based on legitimate interest (Art. 21 GDPR)
– Withdraw consent with effect for the future where processing is based on consent (Art. 7(3) GDPR)
To exercise these rights, an informal message to is sufficient.
Right to lodge a complaint
You have the right to lodge a complaint with a data-protection supervisory authority if you believe that the processing of your data violates the GDPR. The authority responsible for me is:
Austrian Data Protection Authority
Barichgasse 40–42
1030 Vienna, Austria
Web: dsb.gv.at
Changes to this policy
I will update this privacy policy whenever changes to the website or legal requirements make it necessary. The version published on this page at the time of your visit shall apply.