SuDo IT-Solutions
Full Stack IT · Consulting · Support
DE EN
Privacy Information

GDPR Privacy Policy.

We explain clearly what data we process, why, and what rights you have.

Controller

Controller under GDPR:
SuDo IT-Solutions
Owner: Okan Acikel
Fürther Straße 38
90429 Nuremberg
Germany

E-mail: contact@sudo-solutions.eu

Overview of processing

We only process personal data to the extent technically required or after your explicit consent. Data will not be shared with third parties unless legally justified or explicitly approved.

Server logs / technical data

When visiting this website, our servers automatically store server logfiles, including:
• IP address (shortened/anonymised)
• date and time
• browser type & version
• operating system
• pages accessed
• referrer URL

These logs serve operation, security (e.g., attack detection) and error analysis.

Cookies & local storage

We only use technically necessary cookies such as language selection or theme mode (Matrix / Pro). Tracking or marketing cookies are only set after explicit consent.

Contacting us

When contacting us (email, booking tools, forms), the transmitted data is processed solely for handling your request. Processing is based on Art. 6 (1) b GDPR (pre-contractual steps) or on your consent.

Optional analytics & tracking tools

We do *not* use tracking tools without consent.

Optional tools can be integrated after agreement:
• Matomo (self-hosted)
• Simple Analytics
• Open-source log analysis

Social media integrations are privacy-friendly links only.

Data subject rights

You have the following rights under GDPR:
• Right of access (Art. 15)
• Right to rectification (Art. 16)
• Right to erasure (Art. 17)
• Right to restriction (Art. 18)
• Right to portability (Art. 20)
• Right to object (Art. 21)
• Right to withdraw consent (Art. 7(3))

Requests: contact@sudo-solutions.eu

Technical & organisational measures

We operate our systems in EU data centres with strong security standards. Measures include:
• TLS/SSL encryption
• access controls & roles
• regular updates & patching
• monitoring & error detection
• backup and snapshot routines

Processors under Art. 28 GDPR

Where we rely on service providers who process personal data, we conclude Data Processing Agreements (DPAs) under Art. 28 GDPR. Copies can be provided upon request.

Data transfers to third countries

We do not transfer data outside the EU/EEA unless necessary, and only with proper safeguards under GDPR.

Data retention

We store data only as long as necessary for the relevant purpose or as required by law.

Changes to this policy

We may update this privacy policy from time to time. The current version is always available here.