Privacy policy

Last updated: May 2026

1. Controller

Responsible for the processing of personal data on this website is:

Dararat Lischka
Traditional Thai Massage Aachen
Alexanderstraße 121
52062 Aachen, Germany
Phone: +49 241 9437 7687
Email: kontakt@thai-massage-aachen.de

2. Overview

We take the protection of your personal data very seriously. This privacy policy explains what data we process, when, for which purpose and on which legal basis — and which rights you have. This website uses no cookies that would require consent. No tracking pixels or external advertising networks are embedded.

3. Server log files

When you visit our website, our hosting provider automatically records information transmitted by your browser:

• visited URL
• date and time of the request
• browser type and version
• operating system
• referrer URL
• IP address (anonymised or not stored long-term)

Legal basis: Art. 6 (1) (f) GDPR. We have a legitimate interest in the secure and reliable operation of the website. This data is not combined with other sources and is deleted shortly afterwards.

4. Hosting via Cloudflare

This website is hosted on Cloudflare Pages (Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA). Cloudflare processes connection data when you access the website. We have a data processing agreement in place; transfers to the USA are based on the EU Standard Contractual Clauses. Legal basis: Art. 6 (1) (f) GDPR (secure and fast operation of the website). More information: cloudflare.com/privacypolicy.

5. Cloudflare Web Analytics

We use Cloudflare Web Analytics for statistical analysis of website usage. Only aggregated statistics are collected (page views, device classes, referrers). No cookies are set, no IP addresses are stored, and no personal profiles are created. You cannot be re-identified. Legal basis: Art. 6 (1) (f) GDPR (legitimate interest in audience measurement, low impact on privacy). More: cloudflare.com/web-analytics.

6. Contact

When you contact us by phone, WhatsApp or email, we process the data you provide (name, phone number, email address, your request) in order to respond and to schedule appointments. Legal basis: Art. 6 (1) (b) GDPR (pre-contractual measures) and where applicable Art. 6 (1) (f) GDPR. The data is deleted as soon as it is no longer needed and no statutory retention obligations apply. WhatsApp communication is processed via Meta Platforms Ireland Ltd.; the WhatsApp privacy policy applies in addition.

7. External services & click-to-load

Maps and routes are not embedded directly. Only when you click the map or the address link does Google Maps open in a new tab; data is then transmitted to Google Ireland Ltd. (see policies.google.com/privacy). No Google data is transferred before your active interaction. The footer links to our Instagram profile. You are only redirected to the platform after clicking; once activated, Instagram’s privacy policy applies (Meta Platforms Ireland Ltd.).

8. SSL/TLS encryption

This website uses TLS encryption for security. You can recognise an encrypted connection by the “https://” in the address bar.

9. Your rights

You have the following rights regarding your personal data:

• Right of access (Art. 15 GDPR)
• Right to rectification (Art. 16 GDPR)
• Right to erasure (Art. 17 GDPR)
• Right to restriction of processing (Art. 18 GDPR)
• Right to data portability (Art. 20 GDPR)
• Right to object (Art. 21 GDPR)
• Right to withdraw consent (Art. 7 (3) GDPR)

An informal message to the contact details above is sufficient to exercise these rights.

10. Right to lodge a complaint

You have the right to lodge a complaint with a data protection authority — in our case the State Commissioner for Data Protection and Freedom of Information of North Rhine-Westphalia, Kavalleriestraße 2-4, 40213 Düsseldorf, Germany (www.ldi.nrw.de).

11. No automated decision-making

No automated decision-making, including profiling, takes place.