Privacy Policy – Ari Pophal | Construction Consultant

Last updated: May 2026

Contents

1. Responsible Party (Controller) 2. General Information 3. Data Collection on This Website 4. External Services 5. Your Rights as a Data Subject

Controller

Responsible Party (Controller)

The party responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is:

Name Ari Pophal

Business activity Freelance consultant – construction & real estate project management

Address Johann-Mohr-Weg 19, 22763 Hamburg, Germany

Phone +49 (0)177 2260128

Email mail@aripophal.de

The controller is the natural or legal person who, alone or jointly with others, determines the purposes and means of the processing of personal data.

General

General Information

SSL/TLS Encryption

This website uses SSL/TLS encryption for security reasons and to protect the transmission of confidential content, such as enquiries you send to us. You can recognise an encrypted connection by the fact that the address line of your browser changes from "http://" to "https://" and by the lock symbol in your browser bar. When SSL/TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Legal Bases for Processing

Data processing on this website is carried out on the following legal bases pursuant to Art. 6(1) GDPR: (a) consent; (b) performance of a contract; (c) compliance with a legal obligation; (f) legitimate interests of the controller, provided such interests are not overridden by the interests or fundamental rights and freedoms of the data subject.

Data Retention

Unless a more specific storage period has been specified within this privacy policy, your personal data will remain with us until the purpose for which it was collected no longer applies. If you assert a justified request for deletion or revoke consent to data processing, your data will be deleted, unless we have other legally permissible reasons for storing your personal data (e.g. retention periods under tax or commercial law); in the latter case, the data will be deleted once these reasons no longer apply.

Data Collected

Data Collection on This Website

Server Log Files

The provider of this website automatically collects and stores information in server log files, which your browser automatically transmits to us. These are: browser type and version, operating system used, referrer URL, hostname of the accessing computer, time of the server request, and IP address. This data is not merged with other data sources. The collection of this data is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimisation of its website — for this purpose, server log files must be collected.

Contact Form

If you send us enquiries via the contact form, the details you provide in the enquiry form, including the contact details you provide there, will be stored by us for the purpose of processing your enquiry and in the event of follow-up questions. We will not share this data without your consent.

The processing of the data entered in the contact form is carried out exclusively on the basis of your consent (Art. 6(1)(a) GDPR). You can revoke this consent at any time by sending an informal notification by email. The lawfulness of the data processing operations carried out prior to the revocation remains unaffected.

The data you enter in the contact form will remain with us until you ask us to delete it, revoke your consent to storage, or the purpose for storing the data no longer applies (e.g. once we have finished processing your enquiry). Mandatory statutory provisions — in particular retention periods — remain unaffected.

Language Preference (localStorage)

This website uses browser localStorage to store your language preference (German or English). This technical information does not constitute personal data and is stored exclusively locally in your browser. No data is transmitted to the server. You can clear this data at any time via your browser settings.

Third Parties

External Services

Google Fonts

This website uses Google Fonts (provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) to ensure a consistent and visually appealing presentation of fonts. When you call up a page, your browser loads the required fonts directly from Google's servers. In doing so, your IP address and the requested font are transmitted to Google.

The use of Google Fonts is based on Art. 6(1)(f) GDPR. The legitimate interest lies in the uniform presentation of the typefaces on this website and the improvement of user experience. Google LLC is certified under the EU-US Data Privacy Framework, which ensures an adequate level of data protection for transfers to the USA.

Further information on data handling by Google can be found in Google's privacy policy at: https://policies.google.com/privacy

Tailwind CSS (CDN)

This website loads the Tailwind CSS framework via a content delivery network (CDN) operated by Tailwind Labs Inc. Your browser may transmit your IP address to the CDN provider when retrieving the stylesheet. The legal basis is Art. 6(1)(f) GDPR (legitimate interest in serving a correctly styled website). No personal data beyond the IP address is processed in this context.

This website contains a link to the LinkedIn profile of Ari Pophal (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland). Clicking the link will take you to the LinkedIn website. LinkedIn may collect data in accordance with its own privacy policy, which is accessible at: https://www.linkedin.com/legal/privacy-policy. We have no influence over the data collected by LinkedIn.

Microsoft Bookings

This website uses Microsoft Bookings (Microsoft Corporation, One Microsoft Way, Redmond, WA 98052, USA) for scheduling appointments. When you book an appointment via the booking link, the data you provide (e.g. name, email address, preferred time slot) is transmitted to and processed by Microsoft. The legal basis is Art. 6(1)(b) GDPR (pre-contractual measures). Microsoft's privacy statement is available at: https://privacy.microsoft.com/en-us/privacystatement. We have no influence over the data processing carried out by Microsoft.

This website offers a direct contact option via WhatsApp (Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland). Clicking the WhatsApp link opens the WhatsApp application on your device. WhatsApp may process personal data in accordance with its own privacy policy: https://www.whatsapp.com/legal/privacy-policy. We have no influence over this data processing.

Your Rights

Rights of the Data Subject

As a data subject, you have the following rights under the GDPR with respect to your personal data:

Right of Access (Art. 15 GDPR)

You have the right to request confirmation from us as to whether personal data concerning you is being processed. Where this is the case, you have a right to access this personal data and to the information listed in Art. 15 GDPR.

Right to Rectification (Art. 16 GDPR)

You have the right to have inaccurate personal data concerning you rectified or, taking into account the purposes of processing, incomplete personal data completed without undue delay.

Right to Erasure (Art. 17 GDPR)

You have the right to demand that we delete personal data concerning you without undue delay, provided one of the reasons listed in Art. 17 GDPR applies, e.g. if the data is no longer necessary for the purposes for which it was collected.

Right to Restriction of Processing (Art. 18 GDPR)

You have the right to request the restriction of processing of your personal data where one of the conditions listed in Art. 18 GDPR is met.

Right to Data Portability (Art. 20 GDPR)

You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format. You also have the right to transmit this data to another controller, insofar as this is technically feasible.

Right to Object (Art. 21 GDPR)

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is based on Art. 6(1)(e) or (f) GDPR. We will cease processing your personal data unless we can demonstrate compelling legitimate grounds which override your interests, rights and freedoms, or unless the processing serves the establishment, exercise or defence of legal claims.

Right to Lodge a Complaint (Art. 77 GDPR)

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement, if you consider that the processing of personal data relating to you infringes the GDPR. The competent supervisory authority for the controller is:

Der Hamburgische Beauftragte für Datenschutz und Informationsfreiheit (HmbBfDI)

Ludwig-Erhard-Str. 22, 20459 Hamburg, Germany

https://www.datenschutz-hamburg.de

Withdrawal of Consent

Where data processing is based on your consent (Art. 6(1)(a) GDPR), you have the right to withdraw that consent at any time. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal. To exercise your right of withdrawal, please contact us at the email address provided in this privacy policy.

Back to Home