This website (montyris.com) is purely informational. It does not set cookies, does not use analytics or tracking, does not embed third-party content that communicates with external servers from your browser, and does not collect any data that you submit — because there are no forms, logins, newsletters, or comment fields on this site.

The only personal data processed in connection with your visit is the standard server-access log kept by our hosting provider, which includes your IP address. The details are explained below.

The data controller responsible for any personal data processed in connection with this website is:

This website processes the following categories of personal data:

1. Server access logs. Our hosting provider (OVH SAS, France) automatically records standard server-access information for every request made to this site, including the visitor's IP address, the date and time of the request, the requested URL, the HTTP response status, the referring URL (if any), and the user-agent string of the browser. This processing happens at the infrastructure layer and is performed by OVH under its own data-processing agreement.
   Purpose: security monitoring, fraud prevention, and technical troubleshooting.
   Legal basis: Article 6(1)(f) GDPR — legitimate interest in operating a secure website.
   Retention: governed by OVH's logging policy; typically up to 12 months.
2. Email correspondence. If you voluntarily send us an email (for example, to the address published on this site), we will process your email address, name if provided, and the content of your message for the purpose of responding to you.
   Purpose: replying to your enquiry.
   Legal basis: Article 6(1)(b) GDPR — pre-contractual or contractual communication — and Article 6(1)(f) — legitimate interest in handling business correspondence.
   Retention: the shorter of two years or the duration of an ongoing commercial relationship, unless a longer period is required by law (for example, tax-retention rules in the Netherlands).

This website does not set any cookies and does not use local storage or session storage. You do not need to accept a cookie banner because there are no non-essential cookies to accept or reject.

You can verify this yourself by opening your browser's developer tools while visiting this site (Application → Cookies in Chrome; Storage → Cookies in Firefox and Safari).

The only third party involved in the operation of this website is:

• OVH SAS — infrastructure hosting (France, EU). OVH acts as a processor on our behalf under its standard Data Processing Agreement. OVH is a Tier-1 European cloud provider and stores data within the European Economic Area.

No data is shared with analytics providers, advertising networks, social media networks, or any other third party. No data is transferred outside the European Economic Area.

Under the EU General Data Protection Regulation (Regulation 2016/679) and the Dutch Implementation Act (UAVG), you have the following rights in respect of your personal data:

• The right of access — to obtain a copy of the personal data we hold about you.
• The right to rectification — to correct inaccurate or incomplete data.
• The right to erasure — to have your data deleted, where applicable.
• The right to restrict processing — to limit how we use your data.
• The right to object — in particular, to processing based on legitimate interest.
• The right to data portability — to receive your data in a machine-readable format.
• The right to withdraw consent — where processing is based on consent, at any time without affecting prior lawful processing.

To exercise any of these rights, email info@montyris.com. We will respond within one month of receiving your request, as required by Article 12(3) GDPR.

You also have the right to lodge a complaint with the Dutch data-protection authority, the Autoriteit Persoonsgegevens, if you believe your data has been handled unlawfully.

This website is served exclusively over HTTPS using TLS encryption provided by our hosting infrastructure. The website's content is static — there is no database, no server-side application logic, and no user accounts — which significantly reduces its attack surface and the scope of data at risk.

If the website starts collecting additional data in the future — for example, through analytics, a contact form, or a newsletter — this notice will be updated before that processing begins. The date at the top of this page reflects the last revision.