Privacy Policy

This website contains the different privacy policies for our different websites, services and apps.

For oryelle.dev
For oryelle
For notion contact forms & email communications

For oryelle.dev

Effective Date: 25.04.2025

Last Updated: 25.04.2025

1. Introduction and Scope

Welcome to oryelle.dev. This Privacy Policy explains how we (the operator of oryelle.dev, referred to as “we”, “us”, or “our”) collect, use, disclose, and protect your personal data when you visit our Site.

This Policy applies only to https://oryelle.dev (the "Site") and does not cover any external sites or services you may reach via links on our Site or any subdomains of our Site.

We are committed to protecting your privacy and adhering to all applicable data protection laws, including the Swiss Federal Act on Data Protection (FADP) and, where applicable, the EU General Data Protection Regulation (GDPR).

This Policy applies to all users of our Site worldwide. By using oryelle.dev, you agree to the practices described in this Privacy Policy. If you do not agree, please discontinue use of the Site.

2. Data Controller and Contact Information

The data controller responsible for your personal data is the individual owner of oryelle.dev, based in Switzerland. If you have any questions or wish to exercise your data protection rights, please contact us at:

Email: [email protected]

We will respond to inquiries and requests related to this Privacy Policy as soon as possible and within any timeframes required by law.

3. Personal Data We Do Not Collect Directly

No Direct Collection: We do not directly collect personal information from you through this Site. oryelle.dev is a static website with no user registration, no contact or comment forms, no newsletters, and no cookies or tracking scripts implemented by us. We do not embed third-party content (such as social media plugins or analytics scripts) that would collect your data. We do not knowingly collect any personal data such as your name, address, email, or other contact details simply by you viewing our Site.

Voluntary Contact: The only way we would receive personal data from you directly is if you choose to contact us proactively (for example, by sending us an email or contacting us via external platforms linked on our Site). In such cases, we will use any personal data you provide (like your name or email address) only to communicate with you and address your inquiry. We will not use that information for any other purpose without your consent.

4. Data Collected Automatically (Cloudflare Services)

Although we do not collect data ourselves, certain technical information is automatically collected by our third-party service provider when you access oryelle.dev:

IP Address: When you visit the Site, your IP address (a numerical label identifying your device on the Internet) is automatically transmitted. This is necessary for your device to communicate with our Site.
Device and Browser Information: Basic technical information about your device and browser may be collected, such as your browser type/version, operating system, screen resolution, and language settings.
Usage Data: Metadata about your visit may be logged, including the date and time of access, pages visited, amount of data transferred, and the referring webpage (if you followed a link to reach our Site).

Cloudflare’s Role: We use Cloudflare for content delivery, security, and performance optimization of our Site. Cloudflare operates as a data processor on our behalf. This means that the above technical information is collected and processed primarily by Cloudflare’s systems as an intermediary between your device and our Site’s server. Cloudflare may incidentally collect this technical data to filter malicious traffic (for security protection), cache content (to improve load speed), and provide us with anonymized analytics (such as total visitor counts).

Importantly, this automatically collected data is limited to what is necessary for normal web traffic and security. We do not use this data to identify you as an individual, and we do not combine it with any other information to profile you. We do not receive any personal identifiers (like names or contact info) from Cloudflare.

No Cookies or Trackers: We do not set any cookies on your browser, and we do not use web beacons, fingerprinting, or other tracking technologies on oryelle.dev. Cloudflare’s services generally operate without the need for cookies for most visitors. In some cases, Cloudflare may use a security cookie (for example, to distinguish legitimate users from bots or to remember settings if you pass a security challenge), but such cookies, if used, are only for essential security purposes and not for tracking or advertising. We do not use Google Analytics or any advertising network on our Site.

Disclaimer Regarding Cloudflare Information

Any summaries, references, or descriptions of Cloudflare’s data handling or business practices in this document are provided solely for informational purposes and are not legally binding. For authoritative and legally binding terms, please refer directly to Cloudflare’s Privacy Policy.

Please note that Cloudflare may update its privacy practices or policies at any time without notice. Although we make reasonable efforts to reflect such changes in our own Privacy Policy as soon as possible, there may be a delay. We encourage you to review Cloudflare’s policy directly for the most accurate and current information.

5. Purpose of Data Processing

Any personal data that may be processed (primarily your IP address and technical data via Cloudflare) is used only for the following purposes:

Site Delivery and Performance: To efficiently deliver the content of our website to you and ensure it loads quickly worldwide. Cloudflare’s content delivery network (CDN) uses your IP address to route you to the nearest server and serve pages faster.
Security and Fraud Prevention: To protect our Site and users from malicious activity. Cloudflare uses technical information (such as IP addresses and request patterns) to detect and mitigate attacks like DDoS attempts or unauthorized access. This helps keep the Site safe, secure, and available.
Traffic Analytics and Strategy Development: To obtain aggregated, anonymous insights into how the Site is used — including visitor counts, page popularity, and geographic distribution. This data does not personally identify you, but helps us understand our audience, evaluate the reach and growth of our platform, and improve the Site’s usability and performance. We also use these insights to inform our internal strategy, including marketing direction, communications planning, and long-term product or content focus.

We do not use the data collected for behavior-based advertising, individual profiling, or personalized targeting. We do not sell, rent, or share your personal data with advertising networks or social media platforms.

6. Legal Bases for Processing

We process the limited personal data described above in accordance with the lawful bases established by applicable data protection laws:

Legitimate Interests: Our processing of technical data (such as IP addresses and log information via Cloudflare) is necessary for our legitimate interests in operating a secure and effective website. These interests include ensuring network security, providing the Site’s content to you upon request, and understanding usage at an aggregate level. We have assessed that these processing activities do not override your rights and freedoms, given their limited and non-intrusive nature, and they are expected when you access any website. Under Swiss law, these same interests provide a justified basis for processing your data in the context of running the Site.
Compliance with Legal Obligations: We may process or disclose personal data if required to fulfill our legal obligations. For example, if we are required by Swiss law, EU law, or a binding order from authorities to retain or hand over certain data (such as IP logs for an investigation), we will do so to the extent the law requires.
Consent: In general, we do not rely on consent for the data processing on this Site, because we do not engage in optional data collection. If in the future we ever seek to collect additional data from you for a specific purpose (e.g., an email newsletter signup), we will obtain your explicit consent where required. In such a case, you would have the right to withdraw consent at any time.

7. Disclosure of Personal Data to Third Parties

We do not sell or rent your personal data to third parties. The only third parties who may receive or process your data are:

Cloudflare, Inc.: As mentioned, Cloudflare acts as our service provider for infrastructure (a “data processor”). When you access the Site, your requests pass through Cloudflare’s global network. Cloudflare will have access to your IP address and technical request data in order to provide its services (content delivery, caching, security filtering, analytics). Cloudflare is contractually bound to handle such personal data only for the purposes we specify and in compliance with applicable data protection laws. Please refer to Cloudflare’s Privacy Policy for more details on how they handle data. We have taken steps to ensure any data shared with Cloudflare is protected (see Section 8 on International Data Transfers).
Legal and Safety Disclosures: We may disclose personal data if we are legally compelled to do so, or if we believe in good faith that such action is necessary to (i) comply with a legal obligation, subpoena, or request from law enforcement, (ii) protect and defend our rights or property, (iii) prevent or investigate possible wrongdoing in connection with the Site, or (iv) protect the personal safety of users of the Site or the public. In all cases, we will only disclose the minimum data necessary and will ensure any request is valid and lawful.
Evaluation and Strategic Review: From time to time, we may share aggregated or non-personally identifiable information—such as usage metrics, traffic statistics, and general performance insights—with third parties assisting in evaluating, reviewing, or supporting aspects of our operations, partnerships, or business direction. These disclosures are limited in scope and purpose and do not include any data that could be used to identify individual visitors.
Successors in Business (Business Transfers): If we ever plan to transfer ownership or operation of oryelle.dev (for example, through a merger, acquisition, or sale of the website or its assets), any data we hold (if any) may be transferred to the new owner as part of that deal. We would only do this under strict conditions that your data remains protected. The new owner would be bound to handle your data in a manner consistent with this Privacy Policy, unless you are notified of changes and given an opportunity to exercise your rights. We will post a clear notice on the Site if such a transfer occurs.

Other than the scenarios above, we do not share personal data with any third parties. In particular, we do not share data with advertising networks, social media platforms, or unrelated analytics providers.

8. International Data Transfers

By using Cloudflare’s services, some of your personal data (e.g. IP address and technical information) may be transferred to or through servers located in countries other than your own. In particular, Cloudflare is a U.S.-based company with servers and infrastructure distributed worldwide. This means your data might transit through or be stored on systems outside of Switzerland or the European Economic Area (EEA).

Whenever personal data is transferred out of Switzerland or the EEA, we will ensure that adequate safeguards are in place to protect it, as required by the GDPR and FADP. These safeguards may include:

Standard Contractual Clauses: We rely on the European Commission’s approved standard contractual clauses (SCCs) or equivalent clauses approved by Switzerland for transfers, which contractually oblige the recipient of the data to protect it to EU/Swiss standards. Cloudflare, for instance, has committed to SCCs for data transfers.
Adequacy Decisions: Where applicable, we may transfer data to countries that have been officially recognized by Switzerland or the EU as providing an adequate level of data protection.
Other Measures: Cloudflare and we implement technical measures such as encryption and robust security practices to safeguard data during transfer.

You can contact us (see Section 2) for more information about the safeguards we have in place for international data transfers. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy, no matter where it is processed.

9. Data Retention

We do not directly store any personal data from Site visitors on our own systems. Any personal data (like IP addresses and logs) is handled by Cloudflare as part of providing the service.

Cloudflare’s Retention: Cloudflare retains technical request logs for a limited period of time, primarily for troubleshooting and security analysis. By default, detailed logs of HTTP requests may only be stored transiently or for a short duration on Cloudflare’s systems (and longer retention is only enabled if a website operator actively opts in). We have not enabled any extended log retention. This means that your IP address and visit details are not kept by us for longer than necessary. Typically, Cloudflare purges most temporary logs within 24-48 hours, and aggregated analytics data may be kept longer but does not include personal identifiers. Cloudflare may retain some security-related data for slightly longer if an IP address was involved in a security incident (e.g., flagged as part of an attack), in order to blacklist or manage that threat.

Our Retention: Since we do not collect data directly, we do not maintain separate server logs containing personal data. In the event you contact us and provide personal information (such as via email), we will retain that information only for as long as needed to fulfill the purpose of communication. For example, if you email us with a question, we may keep your email and our response for our records; if you request deletion of that correspondence, we will delete it if feasible to do so.

We continuously review the necessity of any data retention. Personal data will be deleted or anonymized as soon as it is no longer needed for the purposes described in this Policy, unless we are required by law to keep it longer.

10. Data Security

We take data security seriously and have implemented appropriate technical and organizational measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction. These measures include:

Encryption: The Site is served over HTTPS (Hypertext Transfer Protocol Secure). This means all data transmitted between your browser and our Site (via Cloudflare) is encrypted in transit using industry-standard encryption protocols (SSL/TLS).
Cloudflare Security: Cloudflare provides built-in security features such as a Web Application Firewall (WAF), DDoS protection, and bot management. This helps prevent malicious traffic from reaching the Site and protects any information that does pass through their network.
Access Controls: We limit access to any personal data to only the owner/operator of the Site and to Cloudflare as the processing service. There are strict controls in place so that personal data (like IP logs) can only be accessed for legitimate operational reasons.
Monitoring and Updates: We keep the Site’s software and dependencies up-to-date to guard against security vulnerabilities. We also monitor for any potential security incidents and will act promptly if any anomaly is detected.

While we strive to protect your information, no website or Internet transmission is completely secure. However, we are committed to maintaining a high level of security. In the unlikely event of a data breach involving your personal data, we will follow all applicable breach notification laws. This may include notifying you and/or relevant authorities (such as the Swiss Federal Data Protection and Information Commissioner or EU supervisory authorities) if required by law.

11. Your Rights as a Data Subject

Under applicable data protection laws, you have several important rights regarding your personal data. We are committed to honoring these rights. These include:

Right of Access: You have the right to request confirmation if we are processing your personal data, and if so, to request a copy of the personal data we hold about you. This allows you to know what information we have, if any.
Right to Rectification: If you believe that any personal data we hold about you is incorrect or incomplete (for example, if you contacted us and we recorded your name or email incorrectly), you have the right to request that we correct or update it.
Right to Erasure: You have the right to request that we delete any personal data we hold about you. Since we generally do not store personal data of visitors, this typically applies only to data you may have provided (like an email inquiry). We will honor such requests where required by law, and in any event will not keep data longer than necessary.
Right to Restrict Processing: In certain circumstances, you can ask us to restrict or pause the processing of your personal data. For instance, if you contest the accuracy of data or have objected to processing (see below), you can request restriction until the issue is resolved.
Right to Object: When we process data based on our legitimate interests, you have the right to object to that processing on grounds relating to your particular situation. If you file an objection, we will consider it and stop or adjust processing unless we have a compelling legitimate ground to continue or if it is needed for legal claims. In the context of oryelle.dev, if you object to us (and Cloudflare) processing your IP and technical data for website delivery/security, we will evaluate your request — but please be aware that we must process certain basic data (like your IP) to actually deliver the Site to you. If you do not want any data processed, simply not using the Site is the only way to prevent the automatic technical exchange that occurs when browsing websites.
Right to Data Portability: To the extent we have personal data you provided to us in a structured, commonly used format, you have the right to request a copy of that data in a machine-readable format, or ask that we transfer it to another data controller when feasible. (In practice, this right is rarely applicable here, since we do not maintain user-provided accounts or extensive data. It could apply if, for example, you emailed us and want a copy of that correspondence.)
Right to Withdraw Consent: If we ever process your data based on consent, you have the right to withdraw that consent at any time. Withdrawal will not affect the lawfulness of any processing that happened prior to your withdrawal. (As noted, currently we do not rely on consent for processing; if that changes, we will make it clear when obtaining your consent what you are consenting to and how to withdraw.)
Right to Non-Discrimination: We will never discriminate or retaliate against you for exercising any of the above rights. Exercising your privacy rights will not affect the services you receive from us (except as needed to fulfill your request, such as deleting data would by necessity mean we no longer have it to use for delivering personalized service).

To exercise any of your rights, please contact us at the email or address provided in Section 2 (Data Controller and Contact Information). Please clearly state which right you wish to exercise and provide sufficient information for us to verify your identity (we may need to confirm you are the owner of the data in question, to ensure we don’t give your data to someone else). We will respond to your request as required by law – under GDPR, generally within one month, and under Swiss law, as soon as possible. There is no fee for making a request unless it is manifestly unfounded or excessive, in which case we may charge a reasonable fee or refuse the request (we will explain our reasoning in such case).

Your Right to Lodge a Complaint: If you believe we have processed your personal data unlawfully or not complied with your data protection rights, you have the right to lodge a complaint with a supervisory authority.

In Switzerland, you can contact the Federal Data Protection and Information Commissioner (FDPIC).
In the European Union, you can contact your local data protection authority or lead supervisory authority (for example, the authority in your country of residence).

We encourage you to contact us first to see if we can address your concerns directly, but you are free to reach out to these authorities at any time.

12. Third-Party Links

oryelle.dev may contain links to external websites or services that are not operated by us. For example, we may provide simple hyperlinks to our profiles or projects on platforms like GitHub, or other resources we reference. Please note the following about these links:

Independent Privacy Practices: If you click on a third-party link, you will be directed to that third party’s site. We do not control these external sites and are not responsible for their content, security, or privacy practices. Those sites may collect personal information from you and use it in different ways than we do.
No Endorsement: A link to a third-party site is not an endorsement of that site’s content, policies, or practices. It is provided for your convenience or reference only.
We Encourage Caution: We strongly advise you to review the Privacy Policy (and Terms of Service) of every third-party site you visit. For instance, if you follow a link to GitHub, please review their respective privacy policies to understand what data they collect and how they use it.

This Privacy Policy applies solely to oryelle.dev. Once you leave our Site (for example, by clicking an external link), we no longer have control over any data that the third party might collect from you. If you have questions about what data a third-party site collects, please consult that site’s policy directly.

13. Children’s Privacy

Our Site and services are not directed to children, and we do not knowingly collect personal data from anyone under the age of 16 (or the equivalent minimum age for privacy consent in your jurisdiction). If you are under 16, please do not use the Site or send us any personal information.

If we learn that we have inadvertently collected personal data from a child under 16 without appropriate consent, we will take steps to delete that information promptly. If you believe that a child under 16 may have provided us with personal data, please contact us immediately so that we can investigate and address the issue.

14. Changes to This Privacy Policy

We may update or revise this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons. When we make changes, we will:

Post the Updated Policy: The revised Privacy Policy will be posted on this page with a new “Last Updated” date.
Provide Notice: If the changes are significant, we will provide a more prominent notice of the update (such as a notice on our homepage or a notification banner) so that you are aware of the changes. In certain cases, if required by law, we may also notify you via other contact information if we have it (though in our case, we typically do not collect contact info of visitors).
Seek Consent if Required: If any update would materially change how we handle personal data in a way that requires your consent, we will obtain that consent before implementing the change.

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of oryelle.dev after any changes to this Policy constitutes acceptance of the updated terms.

15. Governing Law and Jurisdiction

This Privacy Policy, and any disputes relating to it or to our handling of personal data, are governed by the laws of Switzerland. By using this Site, you agree that any dispute regarding privacy or data protection shall be subject to the exclusive jurisdiction of the competent courts of Zurich, Switzerland.

However, we will also respect any mandatory rights or remedies you have under applicable law. For individuals in the European Union, this means that you retain the right to seek remedies through your local data protection authority or courts, as provided by the GDPR, in addition to the rights under Swiss law. Our intention is to resolve any privacy concerns in a fair and prompt manner, under the applicable legal framework.

16. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please do not hesitate to contact us:

Email: [email protected]

We value your privacy and will do our best to address any issue. Thank you for visiting oryelle.dev and for reviewing our Privacy Policy.

For oryelle

Effective Date: 25.06.2025

Last Updated: 25.06.2025

1. Introduction and Scope

This Privacy Policy explains how we (referred to as “we”, “us”, or “our”) collect, use, disclose, and protect your personal data when you use the oryelle frontend and backend docker containers.

This Policy applies only to the oryelle frontend and backend docker containers (the "Software").

This Policy applies to all users of our Software worldwide. By using the Software, you agree to the practices described in this Privacy Policy. If you do not agree, please discontinue use of the Software.

2. Data Controller and Contact Information

The data controller responsible for your personal data is the oryelle team, based in Switzerland. If you have any questions or wish to exercise your data protection rights, please contact us at:

Email: [email protected]

We will respond to inquiries and requests related to this Privacy Policy as soon as possible and within any timeframes required by law.

3. Data Collected

oryelle has two data collection modes:

No Data Collection: When using an offline license with Sentry disabled in your configuration, the oryelle backend collects absolutely no data.
Limited Telemetry via Sentry (Optional - enabled by default):
- If Sentry is not disabled in your configuration, we use Sentry for:
  - Error monitoring and crash reporting
  - Performance metrics and tracing
  - System diagnostics
- Privacy Safeguards:
  - All data is automatically scrubbed of Personal Identifiable Information (PII) if detectable
  - We maintain strict data minimization practices
  - Data is only used for improving software stability and performance

If you suspect any PII has been inadvertently collected, please contact us immediately. We will investigate promptly and take appropriate action, including notifying affected users if required by law.

4. Legal Bases for Processing

We process the limited personal data described above in accordance with the lawful bases established by applicable data protection laws:

Legitimate Interests: Our processing of the collected data is necessary for our legitimate interests in providing a secure, efficient, bug free and effective Software. We have assessed that these processing activities do not override your rights and freedoms, given their limited and non-intrusive nature, and they are expected when you use most software.
Compliance with Legal Obligations: We may process or disclose personal data if required to fulfill our legal obligations. For example, if we are required by Swiss law, EU law, or a binding order from authorities to retain or hand over certain data, we will do so to the extent the law requires.
Consent: In general, we do not actively ask for consent for the data processing, because users can specify themselves whether telemetry should be enabled in the oryelle configuration. If in the future we ever seek to collect additional data from you for a specific purpose, we will inform you.

5. Disclosure of Personal Data to Third Parties

We do not sell or rent your personal data to third parties. The only third parties who may receive or process your data are:

Sentry: As mentioned before, we use Sentry for telemetry purposes.
Legal and Safety Disclosures: We may disclose personal data if we are legally compelled to do so, or if we believe in good faith that such action is necessary to (i) comply with a legal obligation, subpoena, or request from law enforcement, (ii) protect and defend our rights or property, (iii) prevent or investigate possible wrongdoing in connection with the Software, or (iv) protect the personal safety of users of the Software or the public. In all cases, we will only disclose the minimum data necessary and will ensure any request is valid and lawful.
Evaluation and Strategic Review: From time to time, we may share aggregated or non-personally identifiable information—such as usage metrics and general performance insights—with third parties assisting in evaluating, reviewing, or supporting aspects of our operations, partnerships, or business direction. These disclosures are limited in scope and purpose and do not include any data that could be used to identify individuals.
Successors in Business (Business Transfers): If we ever plan to transfer ownership or operation of the Software (for example, through a merger, acquisition, or sale of the Software or Company or its assets), any data we hold (if any) may be transferred to the new owner as part of that deal. We would only do this under strict conditions that your data remains protected. The new owner would be bound to handle your data in a manner consistent with this Privacy Policy, unless you are notified of changes and given an opportunity to exercise your rights. We will post a clear notice if such a transfer occurs.

6. International Data Transfers

By using the Software, some of your personal data (e.g. IP address and technical information) may be transferred to or through servers located in countries other than your own. This means your data might transit through or be stored on systems outside of Switzerland or the European Economic Area (EEA).

Standard Contractual Clauses: We rely on the European Commission’s approved standard contractual clauses (SCCs) or equivalent clauses approved by Switzerland for transfers, which contractually oblige the recipient of the data to protect it to EU/Swiss standards. Cloudflare, for instance, has committed to SCCs for data transfers.
Adequacy Decisions: Where applicable, we may transfer data to countries that have been officially recognized by Switzerland or the EU as providing an adequate level of data protection.
Other Measures: Cloudflare and we implement technical measures such as encryption and robust security practices to safeguard data during transfer.

7. Data Retention

In the event you contact us and provide personal information (such as via email), we will retain that information only for as long as needed to fulfill the purpose of communication. For example, if you email us with a question, we may keep your email and our response for our records; if you request deletion of that correspondence, we will delete it if feasible to do so.

For telemetry data sent to Sentry (when enabled), we maintain an indefinite retention period. This extended retention is necessary for historical analysis of software issues, allowing us to track recurring problems, identify patterns over time, and maintain a comprehensive record of past incidents. While this data is kept longer than other types of data, it remains subject to the same privacy safeguards mentioned above, including PII scrubbing and strict access controls. You can disable telemetry at any time in your configuration if you prefer not to have this data collected.

8. Your Rights as a Data Subject

Under applicable data protection laws, you have several important rights regarding your personal data. We are committed to honoring these rights. These include:

Right of Access: You have the right to request confirmation if we are processing your personal data, and if so, to request a copy of the personal data we hold about you. This allows you to know what information we have, if any.
Right to Rectification: If you believe that any personal data we hold about you is incorrect or incomplete (for example, if you contacted us and we recorded your name or email incorrectly), you have the right to request that we correct or update it.
Right to Erasure: You have the right to request that we delete any personal data we hold about you. Since we generally do not store personal data of visitors, this typically applies only to data you may have provided (like an email inquiry). We will honor such requests where required by law, and in any event will not keep data longer than necessary.
Right to Restrict Processing: In certain circumstances, you can ask us to restrict or pause the processing of your personal data. For instance, if you contest the accuracy of data or have objected to processing (see below), you can request restriction until the issue is resolved.
Right to Object: When we process data based on our legitimate interests, you have the right to object to that processing on grounds relating to your particular situation. If you file an objection, we will consider it and stop or adjust processing unless we have a compelling legitimate ground to continue or if it is needed for legal claims. In the context of oryelle.dev, if you object to us (and Cloudflare) processing your IP and technical data for website delivery/security, we will evaluate your request — but please be aware that we must process certain basic data (like your IP) to actually deliver the Site to you. If you do not want any data processed, simply not using the Site is the only way to prevent the automatic technical exchange that occurs when browsing websites.
Right to Data Portability: To the extent we have personal data you provided to us in a structured, commonly used format, you have the right to request a copy of that data in a machine-readable format, or ask that we transfer it to another data controller when feasible. (In practice, this right is rarely applicable here, since we do not maintain user-provided accounts or extensive data. It could apply if, for example, you emailed us and want a copy of that correspondence.)
Right to Withdraw Consent: If we ever process your data based on consent, you have the right to withdraw that consent at any time. Withdrawal will not affect the lawfulness of any processing that happened prior to your withdrawal. (As noted, currently we do not rely on consent for processing; if that changes, we will make it clear when obtaining your consent what you are consenting to and how to withdraw.)
Right to Non-Discrimination: We will never discriminate or retaliate against you for exercising any of the above rights. Exercising your privacy rights will not affect the services you receive from us (except as needed to fulfill your request, such as deleting data would by necessity mean we no longer have it to use for delivering personalized service).

In Switzerland, you can contact the Federal Data Protection and Information Commissioner (FDPIC).
In the European Union, you can contact your local data protection authority or lead supervisory authority (for example, the authority in your country of residence).

We encourage you to contact us first to see if we can address your concerns directly, but you are free to reach out to these authorities at any time.

9. Third-Party Links

The Software may contain links to external websites or services that may not be operated by us. For example, we may provide simple hyperlinks to our profiles or projects on platforms like GitHub, or other resources we reference. Please note the following about these links:

Independent Privacy Practices: If you click on a third-party link, you will be directed to that third party’s site. We do not control these external sites and are not responsible for their content, security, or privacy practices. Those sites may collect personal information from you and use it in different ways than we do.
No Endorsement: A link to a third-party site is not an endorsement of that site’s content, policies, or practices. It is provided for your convenience or reference only.
We Encourage Caution: We strongly advise you to review the Privacy Policy (and Terms of Service) of every third-party site you visit. For instance, if you follow a link to GitHub, please review their respective privacy policies to understand what data they collect and how they use it.

This Privacy Policy applies solely to the Software. Once you leave the Software (for example, by clicking an external link), we no longer have control over any data that the third party might collect from you. If you have questions about what data a third-party site collects, please consult that site’s policy directly.

10. Children’s Privacy

Our Software and services are not directed to children, and we do not knowingly collect personal data from anyone under the age of 16 (or the equivalent minimum age for privacy consent in your jurisdiction). If you are under 16, please do not use the Software or send us any personal information.

11. Changes to This Privacy Policy

We may update or revise this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons. When we make changes, we will:

Post the Updated Policy: The revised Privacy Policy will be posted on this page with a new “Last Updated” date.
Provide Notice: If the changes are significant, we will provide a more prominent notice of the update (such as a notice on our homepage or a notification banner) so that you are aware of the changes. In certain cases, if required by law, we may also notify you via other contact information if we have it (though in our case, we typically do not collect contact info of visitors).
Seek Consent if Required: If any update would materially change how we handle personal data in a way that requires your consent, we will obtain that consent before implementing the change.

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of the Software after any changes to this Policy constitutes acceptance of the updated terms.

12. Governing Law and Jurisdiction

This Privacy Policy, and any disputes relating to it or to our handling of personal data, are governed by the laws of Switzerland. By using this Software, you agree that any dispute regarding privacy or data protection shall be subject to the exclusive jurisdiction of the competent courts of Zurich, Switzerland.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please do not hesitate to contact us:

Email: [email protected]

We value your privacy and will do our best to address any issue. Thank you for using oryelle and reviewing our Privacy Policy.

For notion contact forms & email communications

Effective Date: 25.06.2025

Last Updated: 25.06.2025

1. Introduction and Scope

This Privacy Policy explains how we (referred to as “we”, “us”, or “our”) collect, use, disclose, and protect your personal data when you contact us via notion forms or email.

This Policy applies only to the notion forms linked on oryelle.dev or the oryelle docker containers and emails sent to non-personal oryelle.dev emails (the "PoC" [Points of Contact]).

This Policy applies to all users of our PoCs worldwide. By using the PoC, you agree to the practices described in this Privacy Policy. If you do not agree, please do not use the PoC.

2. Data Controller and Contact Information

The data controller responsible for your personal data is the oryelle team, based in Switzerland. If you have any questions or wish to exercise your data protection rights, please contact us at:

Email: [email protected]

We will respond to inquiries and requests related to this Privacy Policy as soon as possible and within any timeframes required by law.

3. Data Collected

When you interact with our Points of Contact, we collect:

Form Submissions:
- All information you voluntarily provide in Notion forms
- Form metadata (submission timestamp, form identifier)
Email Communications:
- The content of your email message
- Email metadata including, but not limited to:
  - Sender's email address
  - Subject line
  - Timestamp
  - Email headers
  - Any attachments you include

We only collect this information when you choose to contact us through these channels.

4. Legal Bases for Processing

We process the limited personal data described above in accordance with the lawful bases established by applicable data protection laws:

Legitimate Interests: Our processing of the collected data is necessary for our legitimate interests in providing effective communication channels and customer support. We have assessed that these processing activities do not override your rights and freedoms, given their limited and expected nature when you choose to contact us.
Compliance with Legal Obligations: We may process or disclose personal data if required to fulfill our legal obligations. For example, if we are required by Swiss law, EU law, or a binding order from authorities to retain or hand over certain data, we will do so to the extent the law requires.
Consent: By submitting a form or sending us an email, you consent to our processing of the data you provide for the purpose of responding to and managing your communication. This consent can be withdrawn at any time by contacting us, though this may affect our ability to assist you further.

5. Disclosure of Personal Data to Third Parties

We do not sell or rent your personal data to third parties. The only third parties who may receive or process your data are:

Notion: As mentioned before, we use notion forms.
Legal and Safety Disclosures: We may disclose personal data if we are legally compelled to do so, or if we believe in good faith that such action is necessary to (i) comply with a legal obligation, subpoena, or request from law enforcement, (ii) protect and defend our rights or property, (iii) prevent or investigate possible wrongdoing in connection with the Software, or (iv) protect the personal safety of users of the Software or the public. In all cases, we will only disclose the minimum data necessary and will ensure any request is valid and lawful.
Evaluation and Strategic Review: From time to time, we may share aggregated or non-personally identifiable information—such as usage metrics and general performance insights—with third parties assisting in evaluating, reviewing, or supporting aspects of our operations, partnerships, or business direction. These disclosures are limited in scope and purpose and do not include any data that could be used to identify individuals.
Successors in Business (Business Transfers): If we ever plan to transfer ownership or operation of the Software (for example, through a merger, acquisition, or sale of the Software or Company or its assets), any data we hold (if any) may be transferred to the new owner as part of that deal. We would only do this under strict conditions that your data remains protected. The new owner would be bound to handle your data in a manner consistent with this Privacy Policy, unless you are notified of changes and given an opportunity to exercise your rights. We will post a clear notice if such a transfer occurs.

6. International Data Transfers

Standard Contractual Clauses: We rely on the European Commission’s approved standard contractual clauses (SCCs) or equivalent clauses approved by Switzerland for transfers, which contractually oblige the recipient of the data to protect it to EU/Swiss standards. Cloudflare, for instance, has committed to SCCs for data transfers.
Adequacy Decisions: Where applicable, we may transfer data to countries that have been officially recognized by Switzerland or the EU as providing an adequate level of data protection.
Other Measures: Cloudflare and we implement technical measures such as encryption and robust security practices to safeguard data during transfer.

7. Data Retention

When you contact us and provide personal information (such as via email), we retain that information for business purposes including but not limited to: maintaining records of our communications, analyzing patterns in inquiries to improve our services, and preserving information that may be relevant for future reference or business needs. For example, if you email us with a question, we keep your email and our response in our records to help inform how we handle similar inquiries in the future.

We periodically review our data retention practices. While we may retain personal data indefinitely where we determine it serves a legitimate business purpose, we will delete or anonymize data upon request if required by applicable law and if no legal basis exists for continued retention.

8. Your Rights as a Data Subject

Under applicable data protection laws, you have several important rights regarding your personal data. We are committed to honoring these rights. These include:

Right of Access: You have the right to request confirmation if we are processing your personal data, and if so, to request a copy of the personal data we hold about you. This allows you to know what information we have, if any.
Right to Rectification: If you believe that any personal data we hold about you is incorrect or incomplete (for example, if you contacted us and we recorded your name or email incorrectly), you have the right to request that we correct or update it.
Right to Erasure: You have the right to request that we delete any personal data we hold about you. Since we generally do not store personal data of visitors, this typically applies only to data you may have provided (like an email inquiry). We will honor such requests where required by law, and in any event will not keep data longer than necessary.
Right to Restrict Processing: In certain circumstances, you can ask us to restrict or pause the processing of your personal data. For instance, if you contest the accuracy of data or have objected to processing (see below), you can request restriction until the issue is resolved.
Right to Object: When we process data based on our legitimate interests, you have the right to object to that processing on grounds relating to your particular situation. If you file an objection, we will consider it and stop or adjust processing unless we have a compelling legitimate ground to continue or if it is needed for legal claims. In the context of oryelle.dev, if you object to us (and Cloudflare) processing your IP and technical data for website delivery/security, we will evaluate your request — but please be aware that we must process certain basic data (like your IP) to actually deliver the Site to you. If you do not want any data processed, simply not using the Site is the only way to prevent the automatic technical exchange that occurs when browsing websites.
Right to Data Portability: To the extent we have personal data you provided to us in a structured, commonly used format, you have the right to request a copy of that data in a machine-readable format, or ask that we transfer it to another data controller when feasible. (In practice, this right is rarely applicable here, since we do not maintain user-provided accounts or extensive data. It could apply if, for example, you emailed us and want a copy of that correspondence.)
Right to Withdraw Consent: If we ever process your data based on consent, you have the right to withdraw that consent at any time. Withdrawal will not affect the lawfulness of any processing that happened prior to your withdrawal. (As noted, currently we do not rely on consent for processing; if that changes, we will make it clear when obtaining your consent what you are consenting to and how to withdraw.)
Right to Non-Discrimination: We will never discriminate or retaliate against you for exercising any of the above rights. Exercising your privacy rights will not affect the services you receive from us (except as needed to fulfill your request, such as deleting data would by necessity mean we no longer have it to use for delivering personalized service).

In Switzerland, you can contact the Federal Data Protection and Information Commissioner (FDPIC).
In the European Union, you can contact your local data protection authority or lead supervisory authority (for example, the authority in your country of residence).

We encourage you to contact us first to see if we can address your concerns directly, but you are free to reach out to these authorities at any time.

9. Children’s Privacy

Our PoC are not directed to children, and we do not knowingly collect personal data from anyone under the age of 16 (or the equivalent minimum age for privacy consent in your jurisdiction). If you are under 16, please do not use the PoC or send us any personal information.

10. Changes to This Privacy Policy

We may update or revise this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons. When we make changes, we will:

Post the Updated Policy: The revised Privacy Policy will be posted on this page with a new “Last Updated” date.
Provide Notice: If the changes are significant, we will provide a more prominent notice of the update (such as a notice on our homepage or a notification banner) so that you are aware of the changes. In certain cases, if required by law, we may also notify you via other contact information if we have it (though in our case, we typically do not collect contact info of visitors).
Seek Consent if Required: If any update would materially change how we handle personal data in a way that requires your consent, we will obtain that consent before implementing the change.

11. Governing Law and Jurisdiction

This Privacy Policy, and any disputes relating to it or to our handling of personal data, are governed by the laws of Switzerland. By using the PoC, you agree that any dispute regarding privacy or data protection shall be subject to the exclusive jurisdiction of the competent courts of Zurich, Switzerland.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please do not hesitate to contact us:

Email: [email protected]

We value your privacy and will do our best to address any issue. Thank you for using oryelle and reviewing our Privacy Policy.

For oryelle.dev​

1. Introduction and Scope​

2. Data Controller and Contact Information​

3. Personal Data We Do Not Collect Directly​

4. Data Collected Automatically (Cloudflare Services)​

5. Purpose of Data Processing​

6. Legal Bases for Processing​

7. Disclosure of Personal Data to Third Parties​

8. International Data Transfers​

9. Data Retention​

10. Data Security​

11. Your Rights as a Data Subject​

12. Third-Party Links​

13. Children’s Privacy​

14. Changes to This Privacy Policy​

15. Governing Law and Jurisdiction​

16. Contact Us​

For oryelle​

1. Introduction and Scope​

2. Data Controller and Contact Information​

3. Data Collected​

4. Legal Bases for Processing​

5. Disclosure of Personal Data to Third Parties​

6. International Data Transfers​

7. Data Retention​

8. Your Rights as a Data Subject​

9. Third-Party Links​

10. Children’s Privacy​

11. Changes to This Privacy Policy​

12. Governing Law and Jurisdiction​

13. Contact Us​

For notion contact forms & email communications​

1. Introduction and Scope​

2. Data Controller and Contact Information​

3. Data Collected​

4. Legal Bases for Processing​

5. Disclosure of Personal Data to Third Parties​

6. International Data Transfers​

7. Data Retention​

8. Your Rights as a Data Subject​

9. Children’s Privacy​

10. Changes to This Privacy Policy​

11. Governing Law and Jurisdiction​

12. Contact Us​

For oryelle.dev

1. Introduction and Scope

2. Data Controller and Contact Information

3. Personal Data We Do Not Collect Directly

4. Data Collected Automatically (Cloudflare Services)

5. Purpose of Data Processing

6. Legal Bases for Processing

7. Disclosure of Personal Data to Third Parties

8. International Data Transfers

9. Data Retention

10. Data Security

11. Your Rights as a Data Subject

12. Third-Party Links

13. Children’s Privacy

14. Changes to This Privacy Policy

15. Governing Law and Jurisdiction

16. Contact Us

For oryelle

1. Introduction and Scope

2. Data Controller and Contact Information

3. Data Collected

4. Legal Bases for Processing

5. Disclosure of Personal Data to Third Parties

6. International Data Transfers

7. Data Retention

8. Your Rights as a Data Subject

9. Third-Party Links

10. Children’s Privacy

11. Changes to This Privacy Policy

12. Governing Law and Jurisdiction

13. Contact Us

For notion contact forms & email communications

1. Introduction and Scope

2. Data Controller and Contact Information

3. Data Collected

4. Legal Bases for Processing

5. Disclosure of Personal Data to Third Parties

6. International Data Transfers

7. Data Retention

8. Your Rights as a Data Subject

9. Children’s Privacy

10. Changes to This Privacy Policy

11. Governing Law and Jurisdiction

12. Contact Us