Last updated: 10/14/2025
It is very important to us to handle the data of our website visitors responsibly and to protect it as best as possible. For this reason, we make every effort to comply with the requirements of the GDPR.
Below, we explain to you how we process your data on our website. We use clear and transparent language so that you truly understand what happens to your data.
Data protection applies when processing personal data. "Personal data" refers to any information that can be used to personally identify you. This includes, for example, the IP address of the device (PC, laptop, smartphone, etc.) you are currently using. Such data is processed when "something happens" with it.
For example, the browser transmits the IP address to our provider, where it is automatically stored. This constitutes processing (according to Art. 4 No. 2 GDPR) of personal data (as defined in Art. 4 No. 1 GDPR).
These and other legal definitions can be found in Art. 4 GDPR.
The scope of data protection is regulated by laws. In this case, these are:
The entity responsible for data processing on this website is the controller under the GDPR. A controller is a natural or legal person who, alone or jointly with others, determines the purposes and means of the processing of personal data.
Controller Information: ๐ง hello@great-prompt.com
As previously mentioned, certain data (e.g., IP addresses) is collected automatically. This data is primarily required for the technical provision of the website.
If we process additional personal data or collect other information, we will inform you accordingly or request your consent.
Other personal data is provided voluntarily by you. You will find detailed information on this further below.
The GDPR grants you extensive rights, including:
Further details on these rights and how to exercise them can be found in the final section of this privacy policy.
Data protection is more than just a legal obligation for us! Personal data has great value, and responsible handling of such data should be a given in our digital world.
As a website visitor, you should be able to decide for yourself what happens to your data, when, and by whom. For this reason, we strictly comply with all legal requirements, collect only the data that is necessary for us, and treat it with the utmost confidentiality.
The sharing and deletion of data are important and sensitive topics. Therefore, we want to briefly inform you about our general approach to these matters.
Data sharing only occurs if there is a legal basis and only when absolutely necessary. This may particularly be the case when a data processor is involved, and a data processing agreement (Art. 28 GDPR) has been established. We delete your data when the purpose and legal basis for processing no longer exist, provided there are no legal obligations preventing deletion. For a detailed overview, see Art. 17 GDPR.
For further details, please refer to this privacy policy or contact the controller directly.
This website is externally hosted. Personal data collected on this website is stored on the servers of the hosting provider.
This includes:
Purpose of external hosting:
Secure, fast, and reliable provision of our website and contract fulfillment with potential and existing customers.
Legal basis for processing:
Art. 6 (1) lit. a, b, and f GDPR; ยง 25 (1) TDDDG, if consent is required for cookies or access to device information.
Our hosting provider only processes the data necessary to fulfill its service obligations and acts as a data processor under our instructions.
Hosting Provider:
Vercel Inc.
340 S Lemon Ave #4133, Walnut, CA 91789, USA
Personal data processing always requires a legal basis. The GDPR defines the following legal bases (Art. 6 (1) Sentence 1 GDPR):
By visiting our website, we process your personal data.
To protect this data as effectively as possible against unauthorized access by third parties, we use SSL or TLS encryption. You can recognize this encrypted connection by the https:// in your browser's address bar or a lock symbol displayed there.
Below, you will find information about what data is collected when you visit our website, for what purpose, and on what legal basis.
When you access the website, information is automatically stored in so-called server log files. This includes the following data:
This data is temporarily required to ensure that we can display our website to you continuously and without issues. Specifically, this data serves the following purposes:
The processing of this data is carried out in accordance with Art. 6 (1) lit. f GDPR and is based on our legitimate interest in processing this data, particularly in ensuring the functionality and security of the website.
Whenever possible, this data is stored in a pseudonymized manner and deleted once the respective purpose has been achieved.
If server log files allow for the identification of an individual, the data is stored for a maximum of 14 days. An exception applies in cases where a security-related incident occurs. In such cases, server log files are stored until the incident has been resolved and fully investigated.
Apart from this, no merging with other data takes place.
This website uses so-called cookies. These are small data records stored in the browser of your device, which are linked to our website.
By setting cookies, the navigation of the website can be facilitated for visitors.
You can prevent cookies from being set by adjusting your browser settings.
Here are links to cookie management instructions for frequently used browsers:
Alternatively, you can manage your cookie settings at:
However, please note that blocking or deleting cookies entirely may lead to impairments in the functionality of the website.
We use technically necessary cookies on this website to ensure that our website functions correctly and in compliance with applicable laws. These cookies help to make the website more user-friendly. Some functions of our website cannot be displayed without the use of cookies.
The legal basis for this depends on the individual case and is Art. 6 (1) lit. b, c, and/or f GDPR.
We offer the following service features on our website: Registration and prompt management.
For this purpose, we collect the following data:
The legal basis for this data processing is Art. 6 (1) lit. b GDPR.
The data is deleted as soon as its purpose ceases to exist and deletion is possible in accordance with legal regulations.
We integrate Vercel Analytics on our website. This is a service provided by Vercel Inc., 440 N Barranca Ave Suite 4133 Covina, CA 91723 United States.
Vercel Analytics provides real-time insights into website traffic based on actual visitor data. The platform enables detailed insights into site usage, such as the most visited pages, top referrer websites, and demographic data. It also integrates continuous performance measurements to monitor and optimize website performance in connection with new deployments.
The recording of data points (e.g., page views, user-defined events) is performed anonymously, so data can be viewed without being linked to an individual, a customer, or an IP address.
Vercel Web Analytics does not collect or store any information that would allow a user's browsing session to be tracked across different applications or websites or that would allow personal identification.
With Vercel Web Analytics, website traffic can be analyzed and valuable insights gained without using third-party cookies. Instead, users are identified via a hash created from the incoming request. The lifespan of a visitor session is not stored permanently but is automatically deleted after 24 hours.
The legal basis for this processing is Art. 6 (1) lit. f GDPR.
We have a legitimate interest in conducting analytics to ensure the technical stability and maximize the performance of our website.
For data transfers to the USA, the Standard Contractual Clauses (SCCs) of the European Commission apply to ensure an appropriate level of data protection.
Further Information:
To conclude, we want to provide you with a detailed overview of your rights and how you will be informed about changes in data protection regulations.
You have the right to request information about whether your personal data is being processed. If this is the case, you can request further details regarding the type and purpose of the processing.
A detailed list of your rights can be found in Art. 15 (1) lit. a to h GDPR.
This right includes the correction of incorrect data and the completion of incomplete personal data.
The so-called "Right to Be Forgotten" grants you the right, under certain conditions, to request the deletion of your personal data by the controller.
This is generally the case if:
This right also corresponds to the controller's obligation under Art. 17 (2) GDPR to take appropriate measures for the general deletion of data.
This right applies under the conditions outlined in Art. 18 (1) lit. a to d GDPR.
This right regulates your ability to receive your data in a common format and transfer it to another data controller.
However, this applies only to data whose processing is based on consent or a contract under Art. 20 (1) lit. a and b GDPR, and only if technically feasible.
You have the right to object to the processing of your personal data, particularly if your interest in objecting outweighs the legitimate interest of the controller in processing.
This especially applies to direct marketing or profiling.
You have the right not to be subjected to a decision based solely on automated processing (including profiling) if this decision has legal consequences or significantly affects you.
This right is subject to limitations and exceptions under Art. 22 (2) and (4) GDPR.
The GDPR includes comprehensive rights regarding the notification of third parties about whether or how you have exercised your rights under Art. 16, 17, and 18 GDPR.
However, this is only possible if it is feasible or involves reasonable effort.
We also want to inform you about your right to withdraw previously given consent under Art. 7 (3) GDPR.
You have the right to lodge a complaint with a data protection supervisory authority if you believe that the processing of your personal data violates the GDPR.
The current version of this privacy policy is dated 10/14/2025.
From time to time, it may be necessary to update the contents of this privacy policy to reflect actual or legal changes.
We therefore reserve the right to modify this privacy policy at any time.
We will publish the updated version at the same location and recommend that you regularly review this privacy policy.