Privacy Policy

Information per Art. 13 GDPR · last updated 2026-05-15

This page describes what personal data is processed when you visit forezai.com, why, on which legal basis, and what rights you have. The site is run by a single private individual as an open-source research project — there is no commercial product, no user accounts, no advertising. Data collection is kept to the technical minimum.

Contents

Data controller
Scope of processing
Server log files
Cookies & local storage
Third-party services
Contact you initiate
Your rights
Changes to this policy

1. Data controller

Thorsten Meyer
Blombergstr. 11 C, 82393 Iffeldorf, Germany
info@ThorstenMeyer.com · +49 (0) 171 8609029

The data controller within the meaning of the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG) is named above. A dedicated data protection officer is not required for this site (Art. 37 GDPR is not met, given the scale and nature of processing).

2. Scope of processing

This website is a static informational page. It collects no personal data from visitors beyond what is technically necessary to deliver the page. No account creation, no comments, no newsletter, no analytics tracker, no third-party advertising, no embedded social-media widgets.

3. Server log files

When you load this page, your browser automatically transmits the following technical information to the hosting server, which writes it to a short-lived log file:

IP address (truncated where the hosting provider supports it)
Date and time of access
Page requested (URL) and HTTP status code
Referrer URL (if your browser sent one)
User-agent string (browser + OS)
Approximate response size in bytes

Purpose: ensuring the technical operation, security, and stability of the website (detecting abuse, debugging delivery problems, identifying broken links).
Legal basis: Art. 6 (1) (f) GDPR — legitimate interest in operating the website securely.
Retention: at most 14 days, then rotated and deleted by the hosting provider unless a specific incident requires longer retention for security investigation.

The log data is not combined with any other data source and is not used for analytics, profiling, or marketing.

4. Cookies & local storage

This website does not set any cookies of its own and does not use any cookie-based analytics or tracking service. No banner or consent dialog is shown because there is nothing to consent to.

Browser localStorage is used only when you self-host and run the open-source Forezai dashboard locally — to remember your theme preference and your saved fleet presets. This data never leaves your own machine. The marketing website at forezai.com does not write to localStorage.

5. Third-party services

The marketing pages embed the following third-party resources, each disclosed transparently:

Google Fonts

Typography (Instrument Serif, IBM Plex Serif, IBM Plex Mono) is loaded from fonts.googleapis.com and fonts.gstatic.com (Google Ireland Ltd.). Loading these resources transmits your IP address and user-agent to Google's servers. Legal basis: Art. 6 (1) (f) GDPR (legitimate interest in a consistent, accessible typographic experience). Google's privacy policy: policies.google.com/privacy.

If you prefer not to load fonts from Google, you can block fonts.googleapis.com in your browser; the page falls back to local serif and monospace fonts and remains fully readable.

GitHub (external links only)

The page links to the project's source code on github.com. No code, scripts or fonts are loaded from GitHub onto this site — only outbound links. GitHub's privacy policy applies only when you click through. Operator: GitHub, Inc. (a Microsoft subsidiary).

Hosting provider

The website is hosted by a commercial hosting provider, contracted by the data controller. Server-log processing occurs at the hosting provider as a processor within the meaning of Art. 28 GDPR. A data processing agreement is in place. The specific provider and any sub-processors will be disclosed on request.

6. Contact you initiate

If you e-mail info@ThorstenMeyer.com or call +49 (0) 171 8609029, the contact data you transmit (e-mail address, phone number, name, content of the message) is processed to handle your enquiry. Legal basis: Art. 6 (1) (b) GDPR (steps prior to a contract) or Art. 6 (1) (f) GDPR (legitimate interest in answering enquiries). Data is retained until your enquiry is fully resolved and any statutory retention period (typically up to 6 years for commercial correspondence under German law) has elapsed, then deleted.

7. Your rights

Under the GDPR you have the following rights regarding any personal data the controller processes about you:

Right of access (Art. 15 GDPR) — obtain confirmation and a copy of data processed about you
Right to rectification (Art. 16 GDPR) — correct inaccurate data
Right to erasure (Art. 17 GDPR) — request deletion when no other ground for retention applies
Right to restriction of processing (Art. 18 GDPR)
Right to data portability (Art. 20 GDPR) — receive data in a structured, common format
Right to object (Art. 21 GDPR) — object to processing based on legitimate interest
Right to withdraw consent (Art. 7 (3) GDPR), where processing is based on consent
Right to lodge a complaint with the competent supervisory authority — for the controller's residence in Bavaria, that is the Bayerisches Landesamt für Datenschutzaufsicht (BayLDA), Promenade 18, 91522 Ansbach, Germany

To exercise any of these rights, e-mail info@ThorstenMeyer.com. No special form is required.

8. Changes to this policy

This policy reflects the state of processing on the date shown at the top of the page. If the website's processing changes materially (new third-party services, new functionality, change of host) this page will be updated, and the "last updated" date adjusted accordingly. Substantive changes will, where reasonably feasible, be highlighted on the home page for a minimum of 30 days after they take effect.