This is an English translation provided for convenience. The legally binding version of this privacy policy is the German one (Datenschutzerklärung under the GDPR).
Controller
Remote Native GmbH
Andreas Anding
Joergstr. 29, 80689 Munich
Phone: +49 89 95458654 · Email: info@projekt-freistaat.de
The controller is the natural or legal person who, alone or jointly with others, determines the purposes and means of the processing of personal data.
Data protection officer
Frank Beinhold
Maximiliankorso 9, 13465 Berlin
Email: ds@datenschutz-beinhold.de
Hosting & server log files
This website is hosted by IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, Germany; the server is located in Germany. On our behalf, IONOS automatically processes information in server log files that your browser transmits: browser type and version, operating system used, referrer URL, host name of the accessing computer, time of the server request and IP address. This data is not merged with other data sources and serves technically error-free operation and security. The legal basis is Art. 6 (1) (f) GDPR (legitimate interest in reliable provision). A data processing agreement (Art. 28 GDPR) is in place with IONOS.
Email and office communication (Microsoft 365)
For email and office communication — for example when you write to us at info@ or presse@projekt-freistaat.de — we use Microsoft 365 (Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland; Microsoft Corporation, USA). The content and metadata of your message are processed and stored to handle your request. The legal basis is Art. 6 (1) (b) GDPR (initiation/performance) or Art. 6 (1) (f) GDPR (efficient communication). A data processing agreement (Art. 28 GDPR) is in place with Microsoft; any transfers to the USA take place on the basis of the EU standard contractual clauses, supplemented by Microsoft's certification under the EU-US Data Privacy Framework.
SSL / TLS encryption
For security reasons, this site uses SSL/TLS encryption. You can recognize an encrypted connection by the “https://” in the address bar and the padlock symbol in your browser.
Fonts (locally hosted)
The fonts used are served locally from our server (self-hosted, via next/font). No connection is made to servers of Google or other third parties to deliver the fonts; no data is transmitted to third parties for this purpose.
Google Tag Manager
We use Google Tag Manager (provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland). The Tag Manager is a tool for managing tools; it does not itself create user profiles, store cookies or collect personal data on its own. Via the Tag Manager we embed the statistics services named below (Google Analytics, Microsoft Clarity). These are executed only after your consent (Art. 6 (1) (a) GDPR). We use Google Consent Mode v2: before consent, all consent-requiring storage and tracking functions are disabled by default (“denied”).
Consent & cookie banner
On your first visit, we ask for your consent to the statistics services via a banner. Necessary functions (theme and language setting, Brückner dialogue session) are excluded and run without consent, as they are required for operation (§ 25 (2) TTDSG). Your decision is stored locally in your browser. You can change or revoke your consent at any time with effect for the future via the “Cookie settings” link in the footer.
Active services & cookies — your status
The following overview shows live which services and cookies are currently active or disabled based on your consent. Necessary functions are always active. You can adjust your choice at any time via “Change settings”.
Google Analytics
After your consent, we use Google Analytics (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland) for anonymized reach measurement. Google Analytics uses cookies or comparable technologies and may transmit data to Google in the USA (on the basis of the EU standard contractual clauses). The legal basis is your consent (Art. 6 (1) (a) GDPR, § 25 (1) TTDSG). Without consent, Google Analytics is not executed.
Microsoft Clarity
After your consent, we use Microsoft Clarity (Microsoft Ireland Operations Limited; Microsoft Corporation, USA) to analyze usage behavior (e.g. aggregated heatmaps and session statistics). For this, Clarity may set cookies and transmit data to the USA (on the basis of the EU standard contractual clauses). The legal basis is your consent (Art. 6 (1) (a) GDPR, § 25 (1) TTDSG). Without consent, Clarity is not executed.
Brückner dialogue (AI chat)
On this website, you can conduct a text dialogue with the avatar “Reinhard Brückner”, openly declared as an AI. Your input is transmitted to our backend service and to our AI provider Anthropic, PBC (USA) to generate a response and is processed there. Any data transfer to the USA takes place on the basis of the EU standard contractual clauses. The avatar does not assess individual persons and responds solely on the basis of verified sources. Conversation histories may be stored in pseudonymous form (without registration, with a random session ID) for quality assurance. The legal basis is Art. 6 (1) (b) and (f) GDPR. Please do not enter any sensitive personal data in the chat.
Newsletter “Freistaat Briefing” & channel “For public administration”
If you sign up for the Freistaat Briefing or the quiet interest channel “For public administration”, we process your email address to send you diagnosis updates or information. Management is handled via our CRM provider GoHighLevel (HighLevel Inc., USA); any transfer to the USA takes place on the basis of the EU standard contractual clauses. Sign-up uses the double opt-in procedure. The legal basis is your consent under Art. 6 (1) (a) GDPR. You can revoke your consent at any time with effect for the future, for example via the unsubscribe link in every email. After unsubscribing, your email address is deleted from the list, unless statutory retention obligations preclude this.
Data processing & transfer to third countries
We use carefully selected service providers who process personal data exclusively on our behalf and in accordance with our instructions. Contracts under Art. 28 GDPR are in place with these processors — including IONOS (hosting), Microsoft (Microsoft 365, Clarity), Google (Tag Manager, Analytics), HighLevel (newsletter/administration CRM) and Anthropic (AI dialogue). Insofar as personal data is transferred to the USA or other third countries, this takes place on the basis of the EU standard contractual clauses (Art. 46 GDPR); Google LLC and Microsoft Corporation are additionally certified under the EU-US Data Privacy Framework.
Retention period
Unless a more specific retention period is stated within this privacy policy, your personal data remains with us until the purpose for the data processing ceases to apply. If you assert a legitimate request for deletion or revoke a consent, your data will be deleted, provided we have no other legally permissible grounds for storage.
Your rights
You have the right at any time to free information about your stored personal data, its origin and recipients and the purpose of the processing, as well as a right to rectification or deletion, restriction of processing, data portability and objection. You can revoke a consent given at any time for the future; the lawfulness of the processing carried out up to the revocation remains unaffected.
Right to lodge a complaint with the supervisory authority
In the event of violations of the GDPR, you have the right to lodge a complaint with a supervisory authority, in particular in the member state of your habitual residence, your place of work or the place of the alleged violation.
Currency of this privacy policy
This privacy policy is as of 06/2026. As the platform develops further or legal requirements change, it may become necessary to adjust it; the respective current version is available on this page.