Security Baseline
How we think about access control, backups, monitoring, infrastructure hardening and managed operations.
Open security pageTrust should be easy to verify
OpenDucks IT keeps the important operational, legal and security information collected here so customers, partners and reporters can quickly find the right channel.
EU-firstPreference for EU infrastructure and GDPR-conscious operations.
ClearReadable policies, contact routes and service responsibilities.
ResponsiveAbuse and security reports are reviewed through defined channels.
Find the right information
Privacy & GDPR
Website, contact and service-related privacy information, including how reports and inquiries are handled.
Read privacy policyLegal Center
Terms, service-specific conditions, shop terms, data-processing documents and compliance references.
Open legal centerAbuse Reporting
Report spam, phishing, malware, attacks, illegal content or other misuse involving OpenDucks services.
Report abuseService Status
Check public service availability and operational status information for OpenDucks-hosted systems.
Open status pageContact Routes
Reach the right mailbox for general questions, legal requests, security topics or abuse reports.
View contact detailsOperational Approach
Controls vary by service, but the operating model stays practical: define responsibility, document access, monitor what matters and keep escalation paths reachable.
Security and privacy are considered during setup, not added as decoration later.
Managed services can include backups, monitoring and documented handover.
Severe abuse reports may trigger restriction, suspension, removal or authority escalation.
Trust download pack
Core pack
Central entry points for procurement, vendor review and security questionnaires.
Legal CenterData Regions
Status & Monitoring
Imprint / Impressum
Provider identification, address, management, VAT ID and mandatory legal notices.
Open documentAbuse Reporting
Misuse reports, abuse contact and reporting form.
Open documentTrust Center
Security, privacy, abuse handling, legal documents and status links in one place.
Open documentPrivacy Policy / Datenschutzerklaerung
General privacy policy for website and contact processing.
Open documentData Processing Agreement / AVV
Art. 28 GDPR agreement for services where OpenDucks IT processes customer data.
Open documentTechnical & Organisational Measures / TOMs
Security controls, access control, backups, monitoring and operational safeguards.
Open documentSubprocessors
Third-party providers involved in hosting, operations, payment or support workflows.
Open documentGeneral Terms and Conditions / AGB
German AGB PDF and English web version for IT services, hosting, cloud, managed services, payment default and acceptable use.
Open documentFair access
Trust also means caring about who can afford reliable tools
We provide reduced pricing for NGOs, students, care work, education projects and organizations serving a good cause. Manual discounts can be documented when a case is important but does not fit a standard category.
Reporting Channels
Quick question
Use WhatsApp for short general questions or to find the right next contact route.
WhatsApp ChatSecurity issue
Use the security contact if you found a vulnerability, misconfiguration or suspicious exposure.
security@openducks.orgAbuse issue
Use the abuse form for misuse, illegal content, attacks, spam, phishing or harmful activity.
Abuse formLegal request
Use the legal contact for formal requests, privacy questions or contractual matters.
legal@openducks.orgFor immediate danger to a person, contact local emergency services or law enforcement directly. OpenDucks contact channels are not emergency hotlines.