Privacy Policy

How we protect your data and respect your privacy.

Effective date: 4 March 2026  |  Last updated: 6 March 2026

1. Overview

This privacy policy explains how ossio.dev ("we", "us", or "the Site"), operated by Daniel Ossio, collects, uses, and protects information when you visit our website. We are committed to complying with the Swiss Federal Act on Data Protection (nDSG / revDSG) and the EU General Data Protection Regulation (GDPR).

2. Data Controller

Daniel Ossio
Zug, Switzerland
Email: info@ossio.dev
Website: https://ossio.dev

3. Data We Collect

3.1 Contact Form Submissions

When you submit the contact form, we collect:

  • Your name
  • Your email address
  • Your message content

Purpose: To respond to your enquiry.
Legal basis: Legitimate interest (Art. 6(1)(f) GDPR) and your consent by submitting the form.
Retention: Contact data is retained for the duration necessary to respond and follow up on your enquiry, then deleted within 12 months unless a business relationship is established.

3.2 Server Log Files

Our hosting provider automatically collects standard server log data, including:

  • IP address (anonymised where possible)
  • Date and time of access
  • Requested URL and referrer
  • Browser type and operating system
  • HTTP status code

Purpose: Security, abuse prevention, and site reliability.
Legal basis: Legitimate interest (Art. 6(1)(f) GDPR).
Retention: Log files are automatically deleted after 30 days.

3.3 Analytics (Optional)

If you accept analytics cookies via the cookie banner, we use a self-hosted, cookie-free analytics system running entirely on our own server. Our analytics system:

  • Does not use cookies for tracking
  • Does not collect personal data
  • Does not track users across sites
  • Does not send any data to third parties
  • Is GDPR-compliant without requiring consent (we ask anyway as best practice)
  • Generates a daily-rotating, one-way hash from your IP and browser type — this hash cannot be reversed to identify you and is discarded every 24 hours
  • Collects only aggregate, non-identifiable data (page views, referral sources, country-level location, browser type, device class)
  • Stores all data on our own server — nothing leaves our infrastructure

Purpose: Understanding site traffic and improving content.
Legal basis: Your consent (Art. 6(1)(a) GDPR).

4. Cookies

We use the following cookies:

Cookie Purpose Duration Type
ossio_consent Stores your cookie consent preference 1 year Essential
PHPSESSID Rate limiting for contact form Session Essential

You can change or withdraw your cookie consent at any time by clearing your browser cookies or using your browser's cookie settings.

5. Third-Party Services

We do not use any third-party analytics or tracking services.

Note: All fonts (Inter, Orbitron), icons (Font Awesome), and analytics are self-hosted on our server — no data is sent to Google, Cloudflare, or any external service.

6. Your Rights

Under GDPR and nDSG, you have the right to:

  • Access — Request a copy of any personal data we hold about you
  • Rectification — Request correction of inaccurate data
  • Erasure — Request deletion of your data ("right to be forgotten")
  • Restriction — Request restricted processing of your data
  • Portability — Receive your data in a structured, machine-readable format
  • Objection — Object to processing based on legitimate interest
  • Withdraw consent — Withdraw any consent you have given at any time

To exercise any of these rights, contact us at info@ossio.dev.

7. International Data Transfers

All data processing occurs on our own server infrastructure. We do not transfer any data to third-party services or to servers outside of Switzerland and the EEA. All fonts, icons, and analytics are fully self-hosted.

8. Data Security

We implement appropriate technical and organisational measures to protect your data, including:

  • TLS/HTTPS encryption for all data in transit
  • Security headers (CSP, HSTS, X-Frame-Options)
  • Rate limiting on form submissions
  • Regular security reviews

9. Children's Privacy

This site is not directed at children under 16. We do not knowingly collect personal data from children.

10. Changes to This Policy

We may update this policy from time to time. The "Last updated" date at the top reflects the most recent revision. Continued use of the site after changes constitutes acceptance of the updated policy.

11. Supervisory Authority

If you believe your data protection rights have been violated, you have the right to lodge a complaint with:

  • Switzerland: Federal Data Protection and Information Commissioner (FDPIC) — edoeb.admin.ch
  • EU: Your local Data Protection Authority

12. Contact

For any privacy-related questions or requests:
Daniel Ossio
Email: info@ossio.dev
Website: https://ossio.dev

Ready to Get Started?

Contact Daniel Ossio to discuss your security needs.

Contact Now All Services