FREDERIK DANEELS
§ PRIVACY POLICY

Privacy Policy

Last updated: May 5, 2026

01 General Information

This Privacy Policy explains how personal data is collected and processed when you visit this website, submit the contact form, or book a call. "Personal data" means any information relating to an identified or identifiable natural person.

For definitions such as "processing" or "controller", we refer to Article 4 of the General Data Protection Regulation (GDPR).

02 Controller

Extra Paar Handen UG
Bocks Allee 9
32369 Rahden
Germany

Represented by: Frederik Daneels
Email: frederik@beyondfreelancing.com
Phone: +49 163 63 23 706

03 Categories of Data Processed

  • Contact data — name, email address, optional company name
  • Communication data — message content you submit via the contact form
  • Booking data — if you book a call via the self-hosted booking system at book.beyondfreelancing.com
  • Business / invoicing data — only if you become a client (billing address, VAT details, invoice history)
  • Technical data — IP address, date/time, browser information; typical server log data

04 Purposes of Processing

  • To respond to inquiries submitted via the contact form
  • To schedule and manage discovery calls
  • To deliver the services you engage me for
  • To manage invoicing and comply with legal retention obligations
  • To ensure the security, stability, and proper functioning of the website

05 Legal Bases (GDPR)

  • Art. 6(1)(b) GDPR — performance of a contract or pre-contractual measures
  • Art. 6(1)(c) GDPR — compliance with a legal obligation
  • Art. 6(1)(f) GDPR — legitimate interests (secure operations, fraud prevention)
  • Art. 6(1)(a) GDPR — consent (only where applicable)

06 How the Contact Form Works

When you submit the contact form on this website, the data you provide is processed by the site backend to:

  • Validate the submission via Cloudflare Turnstile (anti-spam)
  • Send the message to my inbox via Resend (transactional email service)
  • Store the message in my email so I can follow up

Your email address is used solely as the reply destination. It is not added to any newsletter or marketing list.

07 Recipients / Processors

Depending on the context, your data may be processed by:

  • Hosting / infrastructure: Cloudflare Pages (website delivery, edge logs) and Hetzner (server hosting for the booking system, EU-based)
  • Email delivery: Resend — for sending contact-form messages to my inbox
  • Spam protection: Cloudflare Turnstile
  • Scheduling: self-hosted Cal.com on the EU-based Hetzner server (no third-party scheduling vendor)
  • AI assistant: Anthropic PBC (USA) — used internally to support my work with prospects and clients. See section 8 for full details.
  • Accounting / tax advisor — if invoicing is required

08 AI Assistant Usage (Anthropic / Claude)

I use Anthropic PBC (San Francisco, USA), the maker of the AI assistant Claude, to support my internal work — for example, drafting communications, preparing meetings, and analyzing business situations. I access Claude through a paid Anthropic subscription. When I discuss your situation with my AI assistant, content (which may include your name, the content of emails or messages you have sent me, and business context you have shared) is transmitted to Anthropic.

  • No model training: I have explicitly opted out of allowing Anthropic to use my content to train its models. Your data is therefore not used to train Anthropic's AI.
  • Retention: with the training opt-out enabled, Anthropic deletes inputs and outputs within 30 days.
  • International transfer: the transfer to the United States is covered by EU Standard Contractual Clauses, as described in Anthropic's Privacy Policy.
  • Sub-processors: Anthropic relies on cloud infrastructure providers (currently including AWS and Google Cloud). The current list is published at trust.anthropic.com/subprocessors.
  • Governing terms: my use of Claude is governed by Anthropic's Consumer Terms and Privacy Policy.
  • Legal basis: Art. 6(1)(f) GDPR (legitimate interest in operating the business efficiently), or Art. 6(1)(b) GDPR where processing is necessary to perform an engagement with you.

If you would prefer that I do not use AI tools to process your specific information, contact me at frederik@beyondfreelancing.com and I will accommodate your request.

09 International Data Transfers

Some service providers may process data outside the EU/EEA. Where this is the case, appropriate safeguards under GDPR apply (e.g., adequacy decision, Standard Contractual Clauses).

10 Retention Periods

  • Inquiry / lead data: retained as long as needed for follow-up and communication documentation
  • Contract / invoicing data: typically up to 10 years (German statutory retention)
  • Server logs: retained for a limited period for security and troubleshooting

11 Your Rights

You have the following rights under GDPR:

  • Right of access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to object (Art. 21 GDPR)
  • Right to withdraw consent (Art. 7(3) GDPR)
  • Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)

To exercise your rights, contact me via the details in section 02.

12 Security

I use appropriate technical and organizational measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. The site is served over HTTPS with HSTS, and form submissions are validated server-side.

13 Cookies & Analytics

This website does not use tracking cookies or third-party analytics tools. Cloudflare may set technical cookies necessary for security and bot mitigation (e.g., Turnstile), with no profiling. If this changes, this policy will be updated accordingly.

14 Changes to This Policy

This Privacy Policy may be updated from time to time. The latest version applies.