1. Controller

The controller responsible for data processing on this website is:

2. General Information on Data Processing

The protection of your personal data is important to us. We process your data exclusively on the basis of legal provisions, in particular the General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG), and the German Telecommunications-Telemedia Data Protection Act (TTDSG). This privacy policy informs you about the type, scope, and purpose of the processing of personal data on our website.

3. Hosting

Our website is hosted by Vercel Inc., 340 S Lemon Ave #4133, Walnut, CA 91789, USA.

When you visit our website, Vercel automatically collects information in so-called server log files that your browser automatically transmits. This includes: browser type and version, operating system used, referrer URL, hostname of the accessing computer, time of the server request, and IP address.

Data transfer to the USA is based on the EU-US Data Privacy Framework.

The legal basis for data processing is Art. 6(1)(f) GDPR (legitimate interest). Our legitimate interest lies in the stable and secure provision of our website.

4. Contact Form

When you contact us via our contact form, the data you provide will be stored for the purpose of processing your inquiry. The following data is collected:

• Name
• Email address
• Phone number
• Company name
• Your message

Data Storage (Supabase)

Data submitted via the contact form is stored in a database hosted by Supabase Inc., 970 Toa Payoh North #07-04, Singapore 318992. Data transfer is based on the EU Standard Contractual Clauses.

Email Notification (Microsoft Outlook)

Additionally, the data is forwarded to our team by email. We use Microsoft Outlook for this purpose. Microsoft also processes data in the USA. Data transfer is based on the EU-US Data Privacy Framework.

The legal basis for processing is Art. 6(1)(b) GDPR (pre-contractual measures) or Art. 6(1)(f) GDPR (legitimate interest in responding to business inquiries).

Data will be deleted once it is no longer required for the purpose for which it was collected. For personal data from contact forms, this is no later than five years, unless statutory retention obligations apply.

5. Email Contact

When you contact us by email, your details, including the contact data you provide, will be stored for the purpose of processing the inquiry and for possible follow-up questions.

The legal basis for processing is Art. 6(1)(b) GDPR (pre-contractual measures) or Art. 6(1)(f) GDPR (legitimate interest).

Data will be deleted once it is no longer required for the purpose for which it was collected, but no later than five years.

6. Server Log Files

Each time our website is accessed, information is automatically collected by the web server and stored in server log files:

• IP address of the requesting computer
• Date and time of access
• Name and URL of the retrieved file
• Website from which access was made (referrer URL)
• Browser used and, if applicable, operating system
• Name of your internet service provider

This data is evaluated exclusively to ensure trouble-free operation of the website and to improve our offering. This data is not merged with other data sources.

The legal basis is Art. 6(1)(f) GDPR (legitimate interest). Our legitimate interest lies in the security and stability of our website.

7. Cookies

Our website uses only technically necessary cookies that are required for the operation of the website. These cookies do not store any personal data and are automatically deleted at the end of your browser session.

The legal basis for the use of technically necessary cookies is Art. 6(1)(f) GDPR (legitimate interest) and Section 25(2) TTDSG.

8. Locally Hosted Fonts

This website uses web fonts for uniform display of typefaces. The fonts are installed locally on our server. No connection to external servers is made.

9. Data Sharing

Your personal data will not be transferred to third parties unless:

• You have given your express consent pursuant to Art. 6(1)(a) GDPR.
• The transfer is necessary pursuant to Art. 6(1)(f) GDPR for the establishment, exercise, or defense of legal claims.
• There is a legal obligation to transfer pursuant to Art. 6(1)(c) GDPR.
• This is legally permissible and necessary pursuant to Art. 6(1)(b) GDPR for the performance of contractual relationships.

10. Data Security

We use SSL (Secure Socket Layer) encryption in connection with the highest level of encryption supported by your browser during website visits. You can tell whether an individual page of our website is transmitted in encrypted form by the closed display of the key or lock symbol in your browser's status bar.

11. Your Rights

You have the following rights with respect to personal data concerning you:

Right of Access (Art. 15 GDPR)

You have the right to request information about your personal data processed by us.

Right to Rectification (Art. 16 GDPR)

You have the right to request immediate rectification of inaccurate personal data or completion of incomplete personal data stored by us.

Right to Erasure (Art. 17 GDPR)

You have the right to request the erasure of your personal data stored by us, unless processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise, or defense of legal claims.

Right to Restriction of Processing (Art. 18 GDPR)

You have the right to request the restriction of processing of your personal data.

Right to Data Portability (Art. 20 GDPR)

You have the right to receive your personal data that you have provided to us in a structured, commonly used, and machine-readable format, or to request transmission to another controller.

Right to Object (Art. 21 GDPR)

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is based on Art. 6(1)(e) or (f) GDPR. We will then no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights, and freedoms, or the processing serves the establishment, exercise, or defense of legal claims.

12. Right to Lodge a Complaint with a Supervisory Authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of personal data concerning you infringes the GDPR.

The supervisory authority responsible for us is: