Privacy Policy
Protecting your personal data matters to me. This website is deliberately built to be data-minimal: no cookies, no tracking, no third-party fonts. Below you will find all the information required under the EU General Data Protection Regulation (GDPR).
1Controller
The controller responsible for data processing on this website is:
Mustafa Bagci
Germany
Email: c@mustafabagci.com
2General information
Personal data is any information that can be used to identify you personally. This policy applies to the processing of such data when you visit this website (mustafabagci.com) and when you get in touch.
All processing is carried out in accordance with the GDPR and the German Federal Data Protection Act (BDSG). Your data is shared with third parties only in the cases described below and only on a valid legal basis.
3Hosting
This website is hosted by an external service provider (host). Any personal data collected on this website is stored on the host's servers. This concerns primarily technical connection data (see server log files).
The provider is:
ALL-INKL.COM – Neue Medien Münnich
Owner: René Münnich
Hauptstraße 68
02742 Friedersdorf
Germany
The host is used on the basis of Art. 6(1)(f) GDPR. I have a legitimate interest in providing this website reliably and securely. A data processing agreement (DPA) pursuant to Art. 28 GDPR is in place with the provider to ensure data-protection-compliant processing.
Further information is available in the provider's privacy policy: all-inkl.com/datenschutzinformationen.
4Server log files
When you access this website, the host automatically collects information in so-called server log files, which your browser transmits automatically. These typically include:
- the anonymized or shortened IP address of the requesting device
- date and time of the request
- name and URL of the file accessed
- the website from which the access was made (referrer URL)
- the browser used and, where applicable, the operating system
- the host name of the accessing computer (provider)
This data is not merged with other data sources, nor is it evaluated on a personal basis. The legal basis is Art. 6(1)(f) GDPR; the legitimate interest lies in the technically error-free and secure operation of this website. The log files are stored for this purpose and deleted after a short time, unless they are exceptionally required for longer to ensure operational security.
5Cookies & tracking
This website uses no cookies, no web analytics tool, no tracking pixels and no tools for reach measurement or profiling. No information is stored on or read from your device beyond what is strictly necessary for technical operation. A consent banner is therefore not required.
6Fonts (self-hosted)
This website uses fonts that are stored locally on its own server and delivered from there. No Google Fonts or other external font services are loaded via a content delivery network (CDN). As a result, loading the page establishes no connection to servers operated by Google or other third parties, and in particular no data (such as your IP address) is transmitted to such providers.
7Contact by email
This website provides email addresses and a link to get in touch. If you write to me by email, your details (such as your name, email address and the content of your message) are processed in order to handle your request.
The legal basis is Art. 6(1)(f) GDPR (legitimate interest in responding to enquiries) or Art. 6(1)(b) GDPR where your enquiry relates to entering into or performing a contract or employment relationship. Your data is deleted once it is no longer required for processing, provided there are no statutory retention obligations to the contrary.
8External links
This website contains links to external third-party websites (for example, to my LinkedIn profile). When you click such links you leave this website; I have no influence over the data processing carried out by the respective providers. The operators of the linked sites are solely responsible for their content and data protection. You are advised to review the privacy notices provided there.
9Your rights
Within the limits of the law, you have the following rights at any time:
- Access to the data stored about you (Art. 15 GDPR)
- Rectification of inaccurate data (Art. 16 GDPR)
- Erasure of your data (Art. 17 GDPR)
- Restriction of processing (Art. 18 GDPR)
- Data portability (Art. 20 GDPR)
- Objection to processing (Art. 21 GDPR)
To exercise your rights, an informal message to the contact details above is sufficient. Where processing is based on consent, you may withdraw that consent at any time with effect for the future.
Right to lodge a complaint with a supervisory authority
Regardless of the above, you have the right to lodge a complaint with a data protection supervisory authority, in particular in the member state of your residence, place of work or the place of the alleged infringement (Art. 77 GDPR). For my place of residence in Hesse, this is the Hessian Commissioner for Data Protection and Freedom of Information.
10SSL/TLS encryption
For security reasons, this website uses SSL/TLS encryption. You can recognise an encrypted connection by the string https:// in your browser's address bar. This means the data you transmit to this website cannot easily be read by third parties.
11Updates and changes
This privacy policy is currently valid. As the website evolves or due to changes in legal or regulatory requirements, it may become necessary to amend this policy. The current version can be accessed on this page at any time.
Last updated: June 2026