GDPR Compliance
1. Introduction to GDPR
The General Data Protection Regulation (GDPR) is a comprehensive data protection law that came into effect on May 25, 2018. It applies to all organizations and individuals that process personal data of individuals in the European Union (EU), regardless of where they are located.
As a private individual operating a non-commercial website providing Domain/IP Lookup services, I am committed to respecting your privacy and protecting your personal data in accordance with GDPR requirements.
Data Controller: Network Security Association
Address: 8046 Zürich, Switzerland
Email: takedowntools@proton.me
Country: Switzerland
2. Legal Basis for Data Processing
Under GDPR Article 6, I process your personal data based on the following legal grounds:
Article 6(1)(a) - Consent
For any optional features or services where you have given explicit consent.
Article 6(1)(b) - Contract Performance
To provide the basic Domain/IP Lookup services as outlined in the website's terms of use.
Article 6(1)(f) - Legitimate Interest
For security measures and website functionality where my interests do not override your rights.
3. Your Rights Under GDPR
As a data subject under GDPR, you have the following rights regarding your personal data:
| Right | Description | How to Exercise |
|---|---|---|
| Right to Information | Right to be informed about how your data is processed | Information provided in this Privacy Policy |
| Right of Access | Right to obtain confirmation and access to your personal data | Contact me via email |
| Right to Rectification | Right to correct inaccurate or incomplete personal data | Contact me via email |
| Right to Erasure | Right to have your personal data deleted | Contact me via email |
| Right to Restrict Processing | Right to limit how your personal data is processed | Contact me via email |
| Right to Data Portability | Right to receive your data in a structured format | Contact me via email |
| Right to Object | Right to object to processing based on legitimate interests | Contact me via email |
4. Data Processing Activities
4.1 Domain and IP Lookup Services
- Data Processed: Search queries, IP addresses, domain names
- Legal Basis: Legitimate interest (Art. 6(1)(f))
- Retention: 30 days for logs, no personal data stored
- Recipients: No third-party sharing
4.2 Website Analytics
- Data Processed: Anonymous usage statistics for prevention of abuse and misuse
- Legal Basis: Legitimate interest (Art. 6(1)(f))
- Retention: 30 days
- Recipients: Self-hosted analytics
5. Data Security
As a private website operator, I implement appropriate technical and organizational measures to protect your personal data:
- Secure HTTPS connection
- Regular security updates
- Minimal data collection
- No third-party data sharing
- Regular data cleanup
6. Contact Information
For any questions about GDPR compliance or to exercise your rights, please contact me:
Email: takedowntools@proton.me
Response Time: Within 30 days of request
7. Supervisory Authority
You have the right to lodge a complaint with a supervisory authority if you believe I have not complied with GDPR requirements:
7.1 Swiss Supervisory Authority
Federal Data and Information Protection Commissioner (FDPIC)
Address: Feldeggweg 1, 3003 Bern, Switzerland
Website: www.edoeb.admin.ch
Email: contact@edoeb.admin.ch
Last Updated: August 18, 2025