Privacy policy

Last updated: February 2026

This Privacy Policy explains how personal data is processed when you visit and use this website.

Website: https://lasting-bonds.com (and any associated subpages)

1) Controller

The controller responsible for data processing on this website (within the meaning of the GDPR) is:

Louisa Schiminski
Gustavstr.53 A, 90762 Fürth

Email: contact@lasting-bonds.com

2) Overview of processing

Personal data means any information relating to an identified or identifiable natural person.

This website is hosted and operated using Squarespace. Depending on how you interact with the website, personal data may be processed for:

  • Providing and securing the website

  • Website analytics (Squarespace Analytics)

  • Responding to inquiries submitted via the contact form

  • Ensuring consistent visual presentation (fonts)

3) Categories of data processed

Depending on usage, the following categories of personal data may be processed:

  • Technical / usage data: IP address, browser type/version, device information, operating system, referrer URL, pages visited, timestamps, interaction data (e.g., clicks, scroll activity)

  • Contact data: name, email address, company name

  • Content data: message content submitted through the contact form

4) Legal bases (GDPR)

Where applicable, processing is based on one or more of the following legal bases:

  • Art. 6(1)(b) GDPR – processing necessary for steps prior to entering into a contract / responding to service inquiries

  • Art. 6(1)(f) GDPR – legitimate interests (secure operation of the website, improving performance and user experience)

  • Art. 6(1)(a) GDPR – consent (where required, e.g., certain cookies depending on configuration)

5) Hosting and website platform (Squarespace)

This website is hosted by:

Squarespace, Inc.
225 Varick Street, New York, NY 10014, USA

Squarespace provides the website infrastructure and may process technical data required to deliver the website (e.g., IP address, device/browser information, access times).

Squarespace as processor: Squarespace generally acts as a data processor (Art. 28 GDPR) for hosting and website services. The relevant data processing terms are provided as part of Squarespace’s service terms and policies.

Squarespace privacy policy:
https://www.squarespace.com/privacy

6) International data transfers (United States)

Because Squarespace is US-based, personal data may be transferred to and processed in the United States.

Where required, such transfers are safeguarded using appropriate mechanisms (e.g., Standard Contractual Clauses or other legally recognized safeguards as provided by the service provider).

7) Server log files

When you visit the website, technical information may be automatically stored in server log files, including:

  • IP address

  • date and time of access

  • requested page/file

  • referrer URL

  • browser type/version and operating system

Purpose: secure website operation, troubleshooting, and abuse prevention.
Legal basis: Art. 6(1)(f) GDPR (legitimate interest).

8) Squarespace Analytics

This website uses Squarespace Analytics, a built-in service provided by Squarespace to understand website traffic and improve performance.

Squarespace Analytics may process information such as:

  • browser, network and device information

  • IP address

  • pages visited

  • clicks and internal links

  • scroll activity

  • referrer URL

  • timestamps

Purpose: measurement and optimization of website usage and performance.
Legal basis: Art. 6(1)(f) GDPR (legitimate interest), and where legally required (e.g., depending on cookie/identifier use), Art. 6(1)(a) GDPR (consent).

No additional third-party analytics tools (such as Google Analytics, Google Tag Manager, or Microsoft Clarity) are used.

9) Contact form

If you contact me via the website’s contact form, the following data may be processed:

  • name

  • email address

  • company name

  • message content

Purpose: responding to your inquiry and (where relevant) taking steps prior to entering into a contract.
Legal basis: Art. 6(1)(b) GDPR and/or Art. 6(1)(f) GDPR.

Email delivery: Messages submitted via the contact form are typically forwarded to my email address to enable responding.

10) Fonts (Google Fonts / Adobe Fonts via Squarespace)

This website uses font services integrated through Squarespace (which may include Google Fonts and/or Adobe Fonts). To display fonts correctly, your browser may connect to the respective provider.

In this process, technical data (such as IP address and browser/device information) may be transmitted.

Purpose: consistent and correct display of typography and design.
Legal basis: Art. 6(1)(f) GDPR (legitimate interest).

11) Cookies

This website may use cookies and similar technologies to ensure functionality and (depending on configuration) analytics.

  • Strictly necessary cookies may be used to provide core site functions and security.

  • Analytics-related cookies/identifiers may be used by Squarespace Analytics depending on settings.

You can manage cookie preferences through the cookie banner (if enabled) and/or through your browser settings. Disabling cookies may limit website functionality.

Legal basis: Art. 6(1)(f) GDPR for necessary cookies and legitimate interests; and where required, Art. 6(1)(a) GDPR for consent-based cookies.

12) External links (including LinkedIn)

This website contains links to external websites. If you click such a link, you leave this website and the external provider becomes responsible for data processing.

LinkedIn

This website links to my LinkedIn presence. LinkedIn is provided by:

LinkedIn Ireland Unlimited Company
Wilton Plaza, Wilton Place, Dublin 2, Ireland

Please note that LinkedIn processes personal data under its own responsibility.
LinkedIn privacy policy:
https://www.linkedin.com/legal/privacy-policy

(Note: A simple link does not transmit data to LinkedIn until you click it. This website does not embed LinkedIn plugins or feeds.)

13) Data retention

Personal data is stored only as long as necessary for the purposes stated above, in particular:

  • inquiries: for the time needed to process and follow up on your request

  • technical logs: as required for security and stability

  • longer storage may occur where legal retention obligations apply

14) Security

Appropriate technical and organizational measures are used to protect personal data against accidental or unlawful destruction, loss, alteration, or unauthorized disclosure/access.

This website uses SSL/TLS encryption (https) for secure data transmission.

15) Your rights under the GDPR

You have the right to:

  • access (Art. 15 GDPR)

  • rectification (Art. 16 GDPR)

  • erasure (Art. 17 GDPR)

  • restriction of processing (Art. 18 GDPR)

  • data portability (Art. 20 GDPR)

  • object to processing (Art. 21 GDPR)

Right to object

Where processing is based on legitimate interests (Art. 6(1)(f) GDPR), you have the right to object for reasons arising from your particular situation.

Right to lodge a complaint

You also have the right to lodge a complaint with a supervisory authority, in particular in the EU member state of your habitual residence, your place of work, or the place of the alleged infringement.

To exercise your rights, contact: contact@lasting-bonds.com

16) Updates to this Privacy Policy

This Privacy Policy may be updated to reflect legal, technical, or website changes. The current version is always published on this website.