Privacy Policy
This privacy policy provides information about the processing of personal data on this website as well as on associated subdomains and demo projects. Data protection is of highest priority. Personal data is treated confidentially and in accordance with statutory data protection regulations and this privacy policy. This privacy policy is effective as of June 24, 2026.
1. Data protection at a glance
General information
The following information provides a simple overview of what happens to personal data when this website is visited. Personal data includes all data with which a person can be personally identified. Detailed information on the subject of data protection can be found in the following sections.
Data collection on this website
Who is responsible for data collection on this website?
Data processing on this website is carried out by the website operator. Contact details can be found in the "Note on the responsible entity" section of this privacy policy.
How is data collected?
Data is collected, on the one hand, when it is provided to us. This could, for example, be data entered into a contact form. Other data is collected automatically when visiting the website by our IT systems — primarily technical data (e.g., internet browser, operating system, or time of page access). The collection of this data takes place automatically as soon as this website is entered.
What is data used for?
Data is collected exclusively to ensure error-free provision of the website and to process incoming inquiries. No tracking or analytics tools are used and no user profiles are created.
What rights exist regarding data?
There is a right at any time to obtain information free of charge about the origin, recipients, and purpose of stored personal data. Furthermore, there is a right to request the correction or deletion of this data. In addition, under certain circumstances, there is a right to request the restriction of the processing of personal data. Furthermore, there is a right to lodge a complaint with the competent supervisory authority.
For any questions about data protection, please contact us at info@blackwell-studio.com.
2. Hosting
Hosting with Vercel
This website is hosted with Vercel Inc., 340 S Lemon Ave #4133, Walnut, CA 91789, USA ("Vercel").
When this website is visited, Vercel automatically collects server log files that are technically necessary for the operation of the website (e.g., IP address, browser type, page accessed). The use of Vercel is based on Art. 6(1)(f) GDPR. There is a legitimate interest in a reliable, fast, and secure provision of this online offering.
Data transfer to the US is based on the standard contractual clauses of the EU Commission as well as a Data Processing Agreement (DPA) with Vercel. Vercel is certified under the EU-US Data Privacy Framework.
More information: https://vercel.com/legal/privacy-policy
3. General information and mandatory disclosures
Note on the responsible entity
The entity responsible for data processing on this website is:
Blackwell Ventures LLC
30 N Gould St, Ste N
Sheridan, WY 82801
United States (USA)
Represented by: Maximilian Jovanovic (Member)
Email: info@blackwell-studio.com
Phone: +49 163 874 1625
The responsible entity is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (e.g., names, email addresses, etc.).
Storage period
Unless a more specific storage period has been specified within this privacy policy, personal data will remain with us until the purpose for data processing ceases to apply. In the event of a justified request for deletion, data will be deleted unless there are other legally permissible reasons for storing personal data (e.g., tax or commercial law retention periods); in the latter case, deletion will take place after these reasons cease to apply.
Legal bases for data processing on this website
If processing is necessary to fulfill a contract or to carry out pre-contractual measures, processing is based on Art. 6(1)(b) GDPR. Furthermore, processing takes place on the basis of Art. 6(1)(f) GDPR if it is necessary to safeguard a legitimate interest and the interests of the data subject do not outweigh the stated interest.
Right to object to data collection in special cases and to direct advertising (Art. 21 GDPR)
IF DATA PROCESSING IS BASED ON ART. 6(1)(E) OR (F) GDPR, THERE IS A RIGHT TO OBJECT AT ANY TIME, FOR REASONS ARISING FROM A PARTICULAR SITUATION, TO THE PROCESSING OF PERSONAL DATA; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE RESPECTIVE LEGAL BASIS ON WHICH PROCESSING IS BASED CAN BE FOUND IN THIS PRIVACY POLICY. IF AN OBJECTION IS SUBMITTED, THE CONCERNED PERSONAL DATA WILL NO LONGER BE PROCESSED UNLESS COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING CAN BE DEMONSTRATED WHICH OVERRIDE INTERESTS, RIGHTS, AND FREEDOMS OR THE PROCESSING SERVES THE ESTABLISHMENT, EXERCISE, OR DEFENSE OF LEGAL CLAIMS (OBJECTION PURSUANT TO ART. 21(1) GDPR).
Right to lodge a complaint with the supervisory authority
In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the member state of their habitual residence, their place of work, or the place of the alleged infringement. The right to lodge a complaint exists without prejudice to any other administrative or judicial remedy.
Competent supervisory authority for Germany:
Hessischer Beauftragter für Datenschutz und Informationsfreiheit (HBDI)
Postfach 3163, 65021 Wiesbaden
www.datenschutz.hessen.de
Right to data portability
There is a right to have data that is processed automatically on the basis of consent or in fulfillment of a contract handed over to the data subject or a third party in a commonly used, machine-readable format. If the direct transfer of data to another responsible party is requested, this will only take place insofar as it is technically feasible.
Right to information, correction, and deletion
Within the framework of applicable legal provisions, there is a right at any time to obtain free information about stored personal data, its origin, recipients, and the purpose of data processing, and, if applicable, a right to correction or deletion of this data. For this purpose and for further questions on the subject of personal data, please contact us at info@blackwell-studio.com.
Right to restriction of processing
There is a right to request the restriction of the processing of personal data. To do so, please contact us at info@blackwell-studio.com. The right to restriction of processing exists in the following cases:
- If the accuracy of stored personal data is disputed, time is generally required to verify this. For the duration of the review, there is a right to request the restriction of processing.
- If the processing of personal data was or is unlawful, restriction of data processing can be requested instead of deletion.
- If the personal data is no longer needed, but it is needed to exercise, defend, or assert legal claims, restriction of processing can be requested instead of deletion.
- If an objection has been filed pursuant to Art. 21(1) GDPR, a balance must be made between interests. As long as it has not yet been determined whose interests prevail, there is a right to request restriction of processing.
SSL or TLS encryption
For security reasons and to protect the transmission of confidential content, this site uses SSL or TLS encryption (recognizable by https:// and the lock symbol in the browser line). Transmitted data cannot be read by third parties when encryption is activated.
4. Data collection on this website
No tracking or marketing cookies
This website does not use any tracking, analytics, or marketing cookies. No user profiles are created and no data is transmitted to advertising platforms or third parties for tracking purposes.
Only one technically necessary cookie is used:
- NEXT_LOCALE: Stores the language selected by the user (English or German) for a period of one year. This cookie is strictly required for the correct functioning of the website's multilingual features and contains no personal data. No consent is required. Legal basis: Art. 6(1)(f) GDPR.
Contact form and inquiries
If contact is made by email, phone, or via the contact form on this website, the inquiry, including all resulting personal data (name, email address, phone number, message content), will be stored and processed by us for the purpose of handling the request. This data is not passed on without consent.
The transmitted data is stored exclusively for the purpose of processing the inquiry and any follow-up questions. It is not passed on to third parties, unless this is necessary for service delivery (e.g., subcontractors), who are also subject to GDPR.
The processing of this data is based on Art. 6(1)(b) GDPR if the request is related to the fulfillment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on the legitimate interest (Art. 6(1)(f) GDPR) in the effective processing of addressed inquiries.
Data will remain with us until a request for deletion is made or the purpose ceases to apply. Mandatory statutory retention periods (6 to 10 years) remain unaffected.
Server log files
The hosting provider Vercel automatically collects and stores information in server log files that the browser automatically transmits. These include:
- Browser type and browser version
- Operating system used
- Referrer URL
- Host name of the accessing computer
- Time of the server request
- IP address
This data is not merged with other data sources. Legal basis: Art. 6(1)(f) GDPR (legitimate interest in error-free operation). Storage duration: max. 30 days.
Inquiries by email, phone, or messaging
If contact is made by email, phone, or WhatsApp, the inquiry including all resulting personal data (name, inquiry) will be stored and processed by us for the purpose of processing the request. The data is not passed on without consent.
Processing is based on Art. 6(1)(b) GDPR if the inquiry relates to the fulfillment of a contract, or on Art. 6(1)(f) GDPR (legitimate interest in processing inquiries).
5. Special notes on Design Concepts and Demo Sites
No data collection on demo projects
To demonstrate work to potential clients, various subdomains and pages are operated that are explicitly marked as "Design Concept" or "Demo". The following restrictions apply:
- Non-functional forms: Any contact forms, newsletter sign-ups, or checkouts present on these pages are purely design mockups. They are non-functional. Data entered there is neither transmitted nor stored.
- No user tracking: On demo pages, no active tracking is used. Apart from the anonymized infrastructure provided by Vercel, there is no recording of user behavior.
- No newsletter dispatch: No email addresses are collected on demo pages.
6. Third-party services
Google Fonts (local hosting)
This site uses web fonts provided by Google, which are however installed locally on own servers or at Vercel. A connection to Google servers is not established when a page is accessed.
There is therefore no transmission of IP addresses or other data to Google LLC in connection with the use of the fonts.
WhatsApp Contact Button
This website offers the possibility to get in touch via a direct link or button using WhatsApp (WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland).
Only through an active click on the link is a connection to WhatsApp's servers established and data transferred. There is no influence on the scope of data collection by WhatsApp. Upon clicking, a messenger contact is initiated. The following data is processed: phone number (if linked to WhatsApp), profile name, message content, and timestamp. Legal basis: Art. 6(1)(a) GDPR (voluntary use).
WhatsApp Privacy Policy: https://www.whatsapp.com/legal/privacy-policy
7. eCommerce and payment providers
Stripe
For payment processing, the payment service provider Stripe (Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland) is used.
During the payment process, the following data is transmitted to Stripe: name, email address, payment data (credit card number, expiry date, CVC — transmitted directly and encrypted to Stripe, not stored on our servers), billing address.
Data processing is based on Art. 6(1)(b) GDPR (contract fulfillment). Stripe stores this data for tax and accounting purposes. Stripe is certified under the EU-US Data Privacy Framework.
More information: https://stripe.com/privacy