Privacy Policy (Datenschutzerklärung) | The Architect Lab
← Back to home

Privacy Policy (Datenschutzerklärung)

Last updated: February 2026

1. Data Controller & European Operations

The Architect Lab

Emma Pulbrook
Solmsstr. 10
10961 Berlin, Germany

Email: emma@thearchitectlab.com

We operate under German Federal Data Protection Act (BDSG) and GDPR. Our website infrastructure is hosted on European servers.

2. What We Collect

a) Server Log Files (Automatic)

When you visit our website, Vercel (our hosting provider) automatically collects:

  • Browser type and version
  • Operating system
  • Referrer URL
  • IP address (anonymised)
  • Access time

Hosted on: Vercel with EU edge locations (Frankfurt, London, Paris)
Legal basis: Art. 6(1)(f) GDPR (legitimate interest in technical stability)
Retention: 7 days

b) Contact & Waitlist Forms

When you submit an inquiry or join a waitlist we process:

  • Email address
  • Company name (optional)
  • Website URL (if provided)
  • Form-specific information (e.g., markets, partner numbers)

Processed via: Airtable (US-based service under EU Standard Contractual Clauses)
Legal basis: Art. 6(1)(b) GDPR (pre-contractual measures)
Retention: Until you request deletion, or 3 years after last contact

3. Analytics & Cookies

Google Analytics 4 (GA4)

We use Google Analytics 4 to understand how visitors interact with our website. Analytics are only activated after you explicitly accept via our cookie banner.

What GA4 collects (only after consent):

  • Page views and navigation paths
  • Device type, browser, operating system
  • Referral sources (how you found us)
  • Anonymised location data (country/city level)

What we DON'T track:

  • Individual user profiles or identities
  • Cross-site activity
  • Advertising data
  • Precise locations

Configuration:

  • IP anonymisation enabled
  • Advertising features disabled
  • Google Signals disabled
  • Data retention: 14 months
  • No cross-site tracking

Provided by: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Data transfers: Google may process data on US servers under EU Standard Contractual Clauses (SCCs).
Google Privacy Policy
Legal basis: Art. 6(1)(a) GDPR (consent via cookie banner)

Cookie Consent

When you first visit our site, you'll see a cookie banner with two options:

  • Accept Analytics – Enables Google Analytics tracking
  • Decline – No analytics tracking, only technically necessary cookies

Your choice is stored in your browser and you can change it at any time by:

  • Clearing your browser cookies
  • Using browser privacy settings
  • Contacting us to request data deletion at emma@thearchitectlab.com

Technically Necessary Cookies

These cookies are required for site functionality (session management, security, remembering your cookie preference). They cannot be disabled.
Legal basis: Art. 6(1)(f) GDPR (legitimate interest)

4. Data Transfers Outside the EU

Airtable (Form Processing)

When you submit a form, data is processed by Airtable Inc. (US-based).

  • Safeguards: EU Standard Contractual Clauses (SCCs)
  • Purpose: Managing inquiries and waitlist administration only
  • Airtable Privacy: https://www.airtable.com/privacy

Google Analytics (Only with Consent)

Google Analytics data may be transferred to Google servers in the United States.

  • Safeguards: EU Standard Contractual Clauses (SCCs)
  • Purpose: Website analytics only (no advertising)
  • Only active: After explicit user consent
  • Google Privacy: https://policies.google.com/privacy

All other data processing occurs within the EU.

5. Why European Infrastructure Matters

For creative and media businesses working across DACH and UK markets, data jurisdiction affects operational stability.

Our approach:

  • Website hosted on EU servers (Vercel EU edge locations)
  • Consent-based analytics (not automatic tracking)
  • Minimal data collection
  • GDPR-native operations (not retrofitted compliance)
  • EU-standard Data Processing Agreements available for client work

This matters when you're managing:

  • Fashion brand operations across European markets
  • Agency work requiring multi-jurisdiction coordination
  • Production company contracts with EU data requirements
  • UK businesses navigating post-Brexit data complexity

6. Your Rights Under GDPR

You have the right to:

  • Access your data
  • Rectify inaccurate data
  • Erase your data ("right to be forgotten")
  • Restrict processing
  • Data portability
  • Object to processing
  • Withdraw consent at any time

To exercise these rights, email emma@thearchitectlab.com. We aim to respond within 30 days.

7. Data Security

We implement appropriate technical and organisational measures, including:

  • HTTPS encryption (SSL/TLS)
  • Secure form transmission
  • EU-based server infrastructure
  • Regular security updates
  • Access controls on backend systems
  • Consent-based tracking (analytics only with permission)

8. Contact & Complaints

Data Protection Contact:
Emma Pulbrook
emma@thearchitectlab.com

Supervisory Authority:
Berlin Commissioner for Data Protection and Freedom of Information
Friedrichstr. 219, 10969 Berlin
https://www.datenschutz-berlin.de

9. Changes to This Policy

We will notify users of material changes via website banner. For significant changes affecting your rights, we will seek renewed consent where required.

Last updated: February 2026