Privacy Policy

Last updated: April 2026

We take the protection of your personal data seriously and treat it confidentially in accordance with the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG). This privacy policy informs you about the type, scope, and purpose of data processing when you visit our website.

1. Controller

2. Data Protection Officer

Given the size and structure of our company and the nature of the personal data we process, we are not legally required to appoint a data protection officer (cf. § 38 BDSG). For data protection inquiries, please contact the controller directly at info@antigua-mobile.com.

3. Provision of the website and server log files

When you visit our website, our hosting provider automatically collects technical information transmitted by your browser:

• IP address (typically truncated)
• Date and time of access
• Requested page (URL)
• Operating system and browser type
• Referrer URL (previously visited page)

The legal basis is Art. 6 (1) (f) GDPR. Our legitimate interest lies in the technically error-free and secure provision of this website. Logs are typically deleted within 7 days unless they are needed to defend against or investigate attacks.

Hosting: This website is delivered via Cloudflare Pages, a service provided by Cloudflare, Inc. (101 Townsend Street, San Francisco, CA 94107, USA). Delivery uses Cloudflare's global edge network. Requests from Europe are typically processed via European edge locations. We have concluded a data processing agreement with Cloudflare pursuant to Art. 28 GDPR. Cloudflare is certified under the EU-U.S. Data Privacy Framework. EU Standard Contractual Clauses apply additionally.

Language routing: When the home page ("/") is requested, a small routing function at the Cloudflare edge inspects the Accept-Language header sent by your browser and, where present, the Referer header in order to forward visitors with a German browser preference to the German version ("/de/"). No data is stored and no cookies are set in this process; the decision is made solely from the current request and ends with the redirect. You can override the selected language at any time using the DE/EN switch in the navigation.

4. Cookies and local storage

We set no classic HTTP cookies and no trackers. The only entries placed on your device are the following technically necessary entries in your browser's Local Storage:

• antigua-cookie-consent: stores your selection in the cookie banner (which categories you have allowed or rejected) so the banner is not shown on every visit. Not transmitted to our server.
• theme: stores your choice between light and dark mode. Not transmitted to our server.

Both entries remain in your browser's Local Storage until you delete them via your browser settings or change your selection in the banner ("Cookie settings" in the footer). They contain no personal data. The legal basis is § 25 (2) No. 2 TDDDG (technically necessary storage).

5. Web analytics with Google Analytics 4 (only with consent)

If you consent to the "Statistics" category in the cookie banner, we use Google Analytics 4, a web analytics service provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, USA). The following data is collected:

• truncated IP address (IP anonymization in the EU)
• pages viewed and time spent on site
• device and browser information
• approximate location (country/region)

The data is used solely for the statistical evaluation of usage behavior in order to improve our offering. There is no merging with other data sources and no personal identification. We have concluded a data processing agreement with Google pursuant to Art. 28 GDPR.

The legal basis is Art. 6 (1) (a) GDPR and § 25 (1) TDDDG (consent).

Note on third-country transfer: Transfer to the USA cannot be excluded. Google is certified under the EU-U.S. Data Privacy Framework. Despite this certification, there is a residual risk that U.S. authorities may access the data. An enforceable legal remedy against such access may not exist.

You can withdraw your consent at any time with effect for the future by clicking "Cookie settings" in the footer and disabling the Statistics category.

6. Fonts

We use the free font "Inter". It is served entirely from our own server. No connection is established to Google Fonts or any other third-party provider.

7. External links and embedded content

Our website contains links to external platforms, in particular to YouTube videos and to articles on Medium. We do not embed this content directly; preview images are served from our own server. Only when you actively click such a link do you leave our website. The privacy policy of the respective third-party platform then applies.

Exali AG liability seal: In the footer of this website (under "Legal") we embed the liability insurance seal of Exali AG (Franz-Kobinger-Straße 9, 86157 Augsburg, Germany). The graphic of the seal is loaded from Exali AG's servers, and your IP address is transmitted to Exali in order to deliver the graphic to your browser. If you click the seal, you leave our website and are forwarded to Exali AG's servers. The legal basis is Art. 6 (1) (f) GDPR; our legitimate interest is to visually demonstrate the professional liability insurance information mandated by § 2 (11) DL-InfoV. For more information, see the Exali AG privacy policy.

8. Contacting us and contact form

When you contact us by email, phone, or through the contact form on our website, we process the data you provide (name, email address, optional company, content of your inquiry) in order to respond to your inquiry and for any follow-up questions.

The legal basis is Art. 6 (1) (b) GDPR (initiation or performance of a contract) or Art. 6 (1) (f) GDPR (legitimate interest in communicating with prospects and business partners).

The data is deleted as soon as it is no longer required to fulfill the purpose for which it was collected, subject to statutory retention obligations (e.g. § 257 HGB, § 147 AO).

Email delivery for the contact form: When you submit the contact form, the message is delivered via the transactional email service Brevo (Sendinblue SAS, 7 rue de Madrid, 75008 Paris, France). Brevo processes the transmitted data exclusively on European servers; a data processing agreement pursuant to Art. 28 GDPR is in place with Brevo.

Spam protection: When the form is submitted, Cloudflare Turnstile is loaded, an anti-bot service by Cloudflare, Inc. (see section 3). Turnstile evaluates technical characteristics of your request but sets no cookies and performs no profiling. Only the data necessary for bot detection is collected.

9. Recipients / data processors

Personal data is processed by our hosting provider Cloudflare as part of the website operation and spam protection. For contact form messages, additionally by Sendinblue SAS (Brevo). If web analytics is enabled, additionally by Google Ireland Limited. No transfer to other third parties takes place unless required by law.

10. Your rights

You have the following rights at any time with regard to your personal data:

• Access to the data stored about you (Art. 15 GDPR)
• Rectification of inaccurate data (Art. 16 GDPR)
• Erasure of your data (Art. 17 GDPR)
• Restriction of processing (Art. 18 GDPR)
• Data portability (Art. 20 GDPR)
• Withdrawal of consent with effect for the future (Art. 7 (3) GDPR)

To exercise your rights, an informal message to info@antigua-mobile.com is sufficient.

11. Right to object (Art. 21 GDPR)

You have the right, on grounds relating to your particular situation, to object at any time to the processing of personal data concerning you which is based on Art. 6 (1) (e) or (f) GDPR.

We will then no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights, and freedoms, or the processing serves the establishment, exercise, or defense of legal claims.

12. Right to lodge a complaint with the supervisory authority

You have the right to lodge a complaint with a data protection supervisory authority about our processing of your personal data (Art. 77 GDPR). The competent authority for us is:

13. No automated decision-making

We do not use automated decision-making, including profiling, within the meaning of Art. 22 GDPR.

14. Data security

Your data is transmitted using SSL/TLS encryption (HTTPS). We use technical and organizational measures to protect your data against unauthorized access, loss, or alteration.

15. Changes to this privacy policy

We reserve the right to amend this privacy policy in order to adapt it to changes in the legal situation or changes to our service. The current version applies to your renewed visit.