Privacy Policy

Last updated: 13 January 2026

1. Controller

Kevin Mohr
Oskar-Kühen-Strasse 25
41061 Mönchengladbach
Germany
Email: info@mohrkevin.com

2. Data Protection Officer (DPO)

No data protection officer has been appointed as this is not legally required for this Website.

3. Overview of processing on this Website

Depending on your choices in the consent banner and how you use the Website, we may process:

  • Technical access data (e.g., IP address, browser/device data, timestamps, requested pages)
  • Consent information (your consent choices and related records)
  • Email communication data (if you contact us by email)
  • Invoice/accounting data (if you become a client)

We do not use web analytics (e.g., Google Analytics) and we do not use advertising pixels.

4. Hosting and server log files

The Website is hosted with STRATO GmbH (Germany). When you visit the Website, the hosting provider processes technical access data in server log files (e.g., IP address, browser information, time of access, requested file/page, referrer URL, status codes) to deliver the Website, ensure stability and security, detect and prevent abuse, and troubleshoot errors.

Legal basis: legitimate interests (Art. 6(1)(f) GDPR) in operating a secure and reliable website.

Retention: server log files are stored for 14 days and then deleted or anonymised.

5. Cookies, consent management and consent records (Complianz)

We use a consent management tool (Complianz) to:

  • show the consent banner
  • store your consent choices
  • block services that require consent until you opt in

Legal basis:
Consent (Art. 6(1)(a) GDPR) for optional services, and legitimate interests (Art. 6(1)(f) GDPR) in managing and documenting consent choices.

Retention: consent records are stored for 12 months.

You can change or withdraw your consent at any time via the cookie settings on the Website (if available) or by clearing your browser storage and revisiting the Website.

6. Embedded Vimeo videos (loaded only after consent)

We embed videos via Vimeo (Vimeo Pro). Vimeo content is only loaded after you have given consent in the consent banner.

When Vimeo is loaded, Vimeo may process:

  • your IP address and device/browser information
  • usage data related to video playback
  • cookies or similar identifiers (depending on your settings and Vimeo’s implementation)

Purpose: displaying showreel and case videos on the Website.

Legal basis: consent (Art. 6(1)(a) GDPR).

Recipient: Vimeo (typically acting as an independent controller for its player services).

International transfers: Vimeo may process data in the United States or other countries. Transfer safeguards may apply (e.g., Standard Contractual Clauses), depending on Vimeo’s setup.

7. Adobe Fonts (Typekit) (loaded only after consent)

We use Adobe Fonts to display certain fonts. Adobe Fonts are loaded from Adobe servers only after you have given consent.

When loaded, Adobe may process:

  • your IP address and device/browser information
  • technical font request data

Purpose: consistent typography on the Website.

Legal basis: consent (Art. 6(1)(a) GDPR).

International transfers: Adobe may process data in the United States or other countries. Appropriate safeguards may apply depending on Adobe’s setup (e.g., Standard Contractual Clauses).

8. Local fonts (Google Fonts hosted locally)

Where Google Fonts are used, they are hosted locally on our server. No requests are sent to Google for loading those fonts.

9. External libraries (e.g., jQuery, Font Awesome) via external providers

The Website uses external libraries (e.g., jQuery and Font Awesome) that are currently loaded from external sources. When these libraries are loaded, the external provider may receive your IP address and device/browser information.

Legal basis:
If loaded only after opt-in: consent (Art. 6(1)(a) GDPR).
If technically necessary for core functionality: legitimate interests (Art. 6(1)(f) GDPR).

Note: The exact provider depends on the current technical configuration of the Website.

10. Contact by email

If you contact us by email, we process:

  • your email address
  • any personal data you provide in the message
  • metadata needed to handle the communication

Purpose: responding to your request.

Legal basis: legitimate interests (Art. 6(1)(f) GDPR) in answering enquiries.

Retention: until your request is completed, plus 12 months, unless longer retention is required for legal reasons.

11. Invoicing and accounting (FastBill)

If you become a client, we process data necessary for invoicing and accounting, such as:

  • name and address (or company details)
  • invoice content and amounts
  • VAT ID (if applicable)
  • communication and project-related billing references

Purpose: invoicing and compliance with tax and accounting obligations.

Legal basis:
Performance of a contract / pre-contractual steps (Art. 6(1)(b) GDPR), where applicable.
Legal obligation (Art. 6(1)(c) GDPR) for statutory retention duties.

Retention: invoice and accounting records are stored according to statutory retention periods (generally up to 10 years under German law, depending on the record type).

12. Recipients and processors

Depending on your use of the Website and your consent choices, personal data may be processed by:

  • STRATO GmbH (hosting and email services)
  • Vimeo (video player)
  • Adobe (fonts)
  • FastBill (invoicing)

We have data processing agreements (DPAs) in place where required.

13. International data transfers

If services are used that process data outside the EU/EEA (e.g., Vimeo, Adobe), transfers may occur to third countries such as the United States. Where applicable, safeguards may include Standard Contractual Clauses (SCCs), additional measures described by the service provider, or other recognised transfer mechanisms.

14. Your rights

You have the following rights under the GDPR, subject to legal requirements:

  • right of access (Art. 15)
  • right to rectification (Art. 16)
  • right to erasure (Art. 17)
  • right to restriction (Art. 18)
  • right to data portability (Art. 20)
  • right to object (Art. 21)
  • right to withdraw consent at any time (Art. 7(3)) with effect for the future

To exercise your rights, contact: info@mohrkevin.com

15. Right to lodge a complaint

You have the right to lodge a complaint with a supervisory authority. For North Rhine-Westphalia (NRW), you can contact:

Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen (LDI NRW)
Postfach 20 04 44
40102 Düsseldorf
Germany
Website: https://www.ldi.nrw.de/

16. Automated decision-making / profiling

We do not use automated decision-making or profiling within the meaning of Art. 22 GDPR.

17. Security measures

We use appropriate technical and organisational measures to protect the Website and your data, including TLS/HTTPS encryption and access controls. Please note that no method of transmission over the internet is 100% secure.

18. Updates to this Privacy Policy

We may update this Privacy Policy to reflect changes to the Website or legal requirements. The “Last updated” date at the top shows the current version.