Privacy Policy – antifragile-portfolio.com

Last Updated: 11.02.2026

1. Data Protection at a Glance

This Privacy Policy informs you about the nature, scope, and purpose of the processing of personal data (hereinafter “data”) in connection with our website and its associated functions, content, and external online presences (e.g., social media profiles) (collectively referred to as the “online offering”).

Terms such as “processing” or “controller” correspond to the definitions in Article 4 of the General Data Protection Regulation (GDPR).

2. Controller

Dr. Faiz Muhammad Khan
Emmerstr. 09
31812 Bad Pyrmont, Germany
Email: crypto@antifragile-portfolio.com

3. Types of Data Processed

We process in particular the following categories of data:

• Identity data (e.g., name, address)

• Contact data (e.g., email address)

• Content data (e.g., text entries in forms)

• Usage data (e.g., visited pages, access times)

• Meta/communication data (e.g., IP address, device information)

4. Categories of Data Subjects

Visitors and users of our online offering (collectively referred to as “users”).

5. Purposes of Processing

• Providing the website and its functions/content

• Responding to contact inquiries and communication

• Security measures (e.g., abuse and fraud prevention)

• Reach measurement and analytics (only with consent)

6. Legal Bases

Unless otherwise specified, data processing is based on:

• Consent – Art. 6(1)(a) GDPR

• Contractual or pre-contractual measures – Art. 6(1)(b) GDPR

• Legal obligations – Art. 6(1)(c) GDPR

• Legitimate interests – Art. 6(1)(f) GDPR (e.g., IT security, stability, error analysis)

7. Security Measures

We implement appropriate technical and organizational measures pursuant to Art. 32 GDPR to ensure a level of security appropriate to the risk. These include protection of confidentiality, integrity, and availability of data as well as procedures to handle data subject rights and security incidents.

8. Cookies and Consent Management

We use cookies and similar technologies.

• Essential cookies are required for the operation of the website.

• Analytics cookies are only set after your consent via the cookie banner.

You may withdraw or change your consent at any time through the cookie settings.

Disabling essential cookies may limit website functionality.

9. Hosting and Server Log Files

Our website is hosted by a hosting provider. When you visit the website, server log files may be processed for security and technical purposes (e.g., IP address, date/time, accessed page, referrer, browser and operating system).

Legal basis: Art. 6(1)(f) GDPR (security and stability).
Retention: Generally up to 7 days, unless longer storage is required for security reasons.

10. Contact

If you contact us (e.g., by email or contact form), your data will be processed to handle the inquiry.

Legal basis: Art. 6(1)(b) GDPR (pre-contractual/contractual) or Art. 6(1)(f) GDPR (other inquiries).
Retention: Until the request is resolved, and thereafter according to legal retention requirements or up to 2 years.

11. Web Analytics (Google Analytics) – Only With Consent

If you give consent, we use Google Analytics to analyze the use of our website.

Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland

Google Analytics uses cookies that allow analysis of website usage. We have activated IP anonymization, meaning your IP address is shortened within the EU or EEA before transmission.

Data transfers to third countries (e.g., USA) may occur. Such transfers are safeguarded by EU Standard Contractual Clauses (SCCs).

Legal basis: Art. 6(1)(a) GDPR (consent).

Opt-out options:

• Change cookie settings on our website

• Browser plugin: https://tools.google.com/dlpage/gaoptout

12. Social Media Presences

We maintain online presences on social media platforms to communicate with users and provide information. Data processing may be carried out by the respective platform operators. Their privacy policies apply.

13. International Data Transfers

If service providers outside the EU/EEA are used, data processing takes place only in compliance with GDPR requirements, particularly through appropriate safeguards such as Standard Contractual Clauses (SCCs).

14. Data Retention and Deletion

Personal data will be deleted as soon as the purpose of processing ceases to apply and no legal retention obligations exist. If deletion is not possible, processing will be restricted.

15. Rights of Data Subjects

Under the GDPR, you have the following rights:

• Right of access (Art. 15)

• Right to rectification (Art. 16)

• Right to erasure (Art. 17)

• Right to restriction of processing (Art. 18)

• Right to data portability (Art. 20)

• Right to object (Art. 21)

• Right to withdraw consent (Art. 7(3))

You also have the right to lodge a complaint with a data protection supervisory authority.

16. Right to Object

You may object at any time to processing based on Art. 6(1)(f) GDPR for reasons arising from your particular situation. You may object to direct marketing at any time.

17. Changes to This Privacy Policy

We reserve the right to update this Privacy Policy whenever changes in data processing or legal requirements make this necessary.