Record of Processing Activities (RoPA) – kontra.tel Date: 2026-02-14

Controller: Markus Vallin Finland

Processing Activity: Website monitoring and security logging for
kontra.tel and subdomains.

Categories of Data: - IP addresses - Timestamps - URLs - HTTP metadata -
User agents - Derived geo/network/company-level data

Purpose: Security monitoring, abuse detection, operational reliability,
general analytics.

Legal Basis: GDPR Article 6(1)(f) – Legitimate Interest

Retention: - 90 days for benign IP data - Extended retention for
security-risk IPs subject to review

Recipients: Hosting provider and limited IP enrichment services (if
applicable).

Security Measures: - TLS encryption - Restricted administrative access -
Automated deletion controls