Legal

Privacy Policy

Introduction

This privacy policy explains how YesterdayWeb collects, uses, stores, and protects your personal data when you visit our website or interact with our services. We are committed to protecting your privacy and handling your data transparently in accordance with the EU General Data Protection Regulation (GDPR).

By using our website, you acknowledge this privacy policy. If you have questions, please contact us at hello@yesterdayweb.com.

Effective date: April 9, 2026.

Data Controller

The data controller responsible for processing your personal data on this website is:

Daniel Denis Golaszewski

Operating as YesterdayWeb

Goethestraße 72d

86161 Augsburg, Germany

Email: hello@yesterdayweb.com

What Data We Collect

We collect the following categories of personal data:

Data you provide directly

  • Name
  • Email address
  • Company name (if provided)
  • Message content submitted through our contact form

Data collected automatically

  • IP address
  • Browser type and version
  • Device information (operating system, screen resolution)
  • Pages visited and time spent on pages
  • Referral source

Cookies

We do not currently set any cookies on this website. If this changes in the future, we will update this policy and request your consent where required.

Purpose of Processing

We process your personal data for the following purposes:

  • Responding to inquiries — When you submit a message through our contact form, we use your data to respond to your request.
  • Website functionality and security — Technical data is processed to ensure the website operates correctly, prevent abuse, and maintain security.
  • Analytics — If analytics tools are implemented in the future, they will only be activated with your prior consent.

Legal Basis (GDPR Article 6)

We process your personal data based on the following legal grounds:

  • Art. 6(1)(a) — Consent — When you voluntarily submit the contact form or provide cookie preferences, you consent to the processing of your data for that specific purpose. You may withdraw consent at any time.
  • Art. 6(1)(b) — Contract performance — Processing is necessary to respond to project inquiries and take pre-contractual steps at your request.
  • Art. 6(1)(f) — Legitimate interest — We have a legitimate interest in maintaining the security and technical operation of our website, including processing server logs and preventing misuse.

Data Storage and Retention

  • Contact form data is retained only for as long as necessary to process and respond to your inquiry. Once the communication is concluded and no further legitimate purpose exists, your data will be deleted.
  • Technical server logs are retained for security purposes for a maximum of 90 days, after which they are automatically deleted.

We do not sell, rent, or share your personal data with third parties for marketing purposes.

Third-Party Services

We use the following third-party services to operate this website:

  • Vercel (Hosting) — Our website is hosted on Vercel Inc. Your data may be processed on servers located in the United States. Vercel operates under EU Standard Contractual Clauses (SCCs) to ensure an adequate level of data protection for transfers outside the European Economic Area.

If additional third-party services (such as analytics or email delivery tools) are integrated in the future, they will be listed here with appropriate details on data processing and safeguards.

Your Rights Under GDPR

As a data subject, you have the following rights under the General Data Protection Regulation:

  • Right of access (Art. 15) — You may request confirmation of whether we process your personal data and obtain a copy of that data.
  • Right to rectification (Art. 16) — You may request the correction of inaccurate or incomplete personal data.
  • Right to erasure (Art. 17) — You may request the deletion of your personal data when it is no longer necessary for the purpose for which it was collected.
  • Right to restriction (Art. 18) — You may request the restriction of processing under certain conditions.
  • Right to data portability (Art. 20) — You may request to receive your personal data in a structured, commonly used, and machine-readable format.
  • Right to object (Art. 21) — You may object to the processing of your personal data based on legitimate interest at any time.
  • Right to withdraw consent (Art. 7(3)) — Where processing is based on consent, you may withdraw that consent at any time without affecting the lawfulness of processing carried out before the withdrawal.
  • Right to lodge a complaint — You have the right to lodge a complaint with a supervisory authority if you believe your data is being processed in violation of the GDPR. The competent authority for our business is the Bayerisches Landesamt für Datenschutzaufsicht (BayLDA).

Contact for Data Requests

To exercise any of your rights or if you have questions about how we handle your personal data, please contact us:

hello@yesterdayweb.com

We will respond to your request within 30 days, as required by the GDPR.

Changes to This Policy

We may update this privacy policy from time to time to reflect changes in our practices or applicable regulations. Any updates will be posted on this page with a revised effective date. We encourage you to review this policy periodically.

Last updated: April 9, 2026.