← Back

Privacy Policy

Last updated: April 2026

1. Data Controller

The controller responsible for data processing on this website is:

Lelia GbR
Rosenthaler Str. 36
Vorderhaus rechts, 3. OG
10178 Berlin, Germany
Email: design@lelia.io

2. What data we collect

This website uses Vercel Analytics, a web analytics service provided by Vercel Inc. (440 N Barranca Ave #4133, Covina, CA 91723, USA). Vercel Analytics collects only anonymised usage data:

  • Pages visited and time spent
  • Country of origin (country level only)
  • Device type, operating system, and browser
  • Referrer URL (the page that linked here)

No cookies are set, no IP addresses are stored, and no personal data is collected. Individual users cannot be identified.

3. Legal basis

Processing is based on your consent under Art. 6(1)(a) GDPR, given via our cookie banner. You may withdraw your consent at any time with future effect by clearing your browser storage or contacting us at design@lelia.io.

4. Third-country transfers

Vercel Inc. is based in the United States. Data transfers are covered by the EU Commission's Standard Contractual Clauses. For more information see Vercel's Privacy Policy.

5. Contact form

If you use the contact form on this website, the data you enter (name, email address, website URL, and message) is used solely to process your enquiry and is not shared with third parties. The legal basis is Art. 6(1)(b) GDPR (pre-contractual measures) and Art. 6(1)(f) GDPR (legitimate interest in responding to enquiries).

6. Your rights

You have the right to:

  • Access the data held about you (Art. 15 GDPR)
  • Rectification of inaccurate data (Art. 16 GDPR)
  • Erasure of your data (Art. 17 GDPR)
  • Restriction of processing (Art. 18 GDPR)
  • Data portability (Art. 20 GDPR)
  • Object to processing (Art. 21 GDPR)
  • Withdraw consent at any time (Art. 7(3) GDPR)
  • Lodge a complaint with a supervisory authority (Art. 77 GDPR)

To exercise your rights, contact: design@lelia.io

7. Hosting

This website is hosted by Vercel Inc. Server log files are generated automatically on each page request and may contain: IP address, date and time of access, URL accessed, browser type, and operating system. These logs are used solely to ensure operation and defend against attacks, and are deleted automatically within 7 days.