Table of contents

Privacy Policy

Last updated: 2026-05-14

This Privacy Policy explains how we handle personal data when you visit the Kernloom website, interact with our content, or contact us.

TL;DR

We use Google Analytics to understand how visitors use the website.
We rely on basic server logs for security and troubleshooting.
If you contact us, we use your message only to respond and provide support.
We do not sell personal data.

1) Who we are (Controller)

Controller: Adrian Enderlin
Address: 1700 Fribourg
Email: privacy@enderlin.group

2) What data we process

2.1 Website access (server logs)

When you visit the site, the hosting provider may process technical data such as:

IP address
date/time of access
requested page/URL
HTTP status code
referrer (if provided by your browser)
user agent (browser/device information)

Purpose: operating the website, ensuring security, preventing abuse, troubleshooting.
Legal basis: legitimate interest (website operation and security).
Retention: typically short-term (days to weeks), depending on hosting configuration.

2.2 Analytics (Google Analytics)

This website uses Google Analytics 4, a web analytics service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

Google Analytics uses cookies and similar technologies to collect and analyse information about how visitors use the website. This includes:

pages visited and time spent
approximate location (country/region, derived from IP)
device and browser information
referral source

IP addresses are anonymised before being stored. The data is transferred to Google servers in the United States.

Purpose: understanding how visitors use the website and improving content.
Legal basis: legitimate interest (understanding website usage and improving user experience).

You can opt out of Google Analytics tracking by installing the Google Analytics Opt-out Browser Add-on or by using a browser with tracking protection enabled.

For more information about how Google processes data, see Google’s Privacy Policy.

2.3 Contacting us (email / contact form)

If you contact us (by email or via a contact form), we may process:

your name (if provided)
your email address
your message content
metadata needed to respond (e.g., time of message)

Purpose: responding to inquiries, support, and communication.
Retention: as long as needed to handle the request, and longer if required for documentation or legal reasons.

2.4 GitHub and open-source links

Kernloom is an open-source project and may link to GitHub. When you follow those links, GitHub will process data under its own privacy policy.

We may use technical service providers (processors) to operate the website, such as:

hosting provider (static hosting, Switzerland)
CDN / DDoS protection provider (if enabled)
email provider (for handling inbound/outbound communication)
Google LLC (Google Analytics — see section 2.2)

These providers process data on our behalf to deliver their services. We do not share personal data with third parties for advertising purposes.

4) Data location and international transfers

The website is hosted in Switzerland. Server logs and related technical data are processed there.

Google Analytics transfers data to Google servers in the United States. Google LLC participates in the EU-U.S. Data Privacy Framework and relies on Standard Contractual Clauses for data transfers where applicable.

5) Security

We use reasonable technical and organizational measures to protect personal data, such as:

TLS/HTTPS encryption in transit
least-privilege access to admin systems
secure hosting and patching practices (where applicable)

No method of transmission or storage is 100% secure, but we continuously aim to reduce risk.

6) Your rights

Depending on your location and applicable law (e.g., Swiss Federal Act on Data Protection (FADP, revised) and, where applicable, the EU GDPR), you may have rights such as:

access to your personal data
correction of inaccurate data
deletion (where applicable)
objection to certain processing
data portability (where applicable)

To exercise these rights, contact us at: privacy@enderlin.group
We may need to verify your identity before fulfilling requests.

7) Children

This website is not directed at children. If you believe a child has provided personal data, please contact us so we can delete it where appropriate.

8) Changes to this policy

We may update this Privacy Policy from time to time. The “Last updated” date at the top indicates the latest revision.

9) Contact

For privacy-related questions or requests: