The following privacy notices apply to the use of our online offering (hereinafter referred to as the “website”).
We place great importance on data protection.
The collection and processing of your personal data is carried out in accordance with the applicable data protection regulations, in particular the General Data Protection Regulation (GDPR).
Responsible
The controller responsible for the collection, processing, and use of your personal data in accordance with Article 4 No. 7 GDPR is:
INOSYS Innovative Computersysteme GmbH
Äußere Aumühlstraße 13
97076 Würzburg, Germany
If you wish to object to the collection, processing, or use of your data by us in accordance with this privacy policy, either in whole or for individual measures, you can address your objection to the controller.
You can save or print this privacy policy at any time.
General Purposes of Processing
We use personal data for the purpose of operating the website and to ensure a smooth and transparent process for all parties involved.
Which Data We Use and Why
Access Data:
We collect information about you when you use this website.
We automatically gather information about your usage behavior and your interaction with us and record data about your computer or mobile device.
We collect, store, and use data for every access to our website (so-called server log files).
Access data includes:
-
Name and URL of the accessed file
-
Date and time of the access
-
Transferred data volume
-
Message about successful retrieval (HTTP response code)
-
Browser type and version
-
Operating system
-
Referrer URL (i.e., the previously visited page)
-
Websites accessed by the user’s system via our website
-
Internet service provider of the user
-
IP address and the requesting provider
We use this log data without associating it with you personally or creating profiles for statistical analysis to operate, secure, and optimize our website.
We also use it to anonymously measure traffic, usage volume, and type, for billing purposes (e.g., to track clicks from partner links), to provide personalized or location-based content, analyze traffic, detect errors, and improve our services.
This constitutes a legitimate interest in accordance with Art. 6(1)(f) GDPR.
We reserve the right to retrospectively review log data if there is a justified suspicion of unlawful use based on specific indications.
We store IP addresses for a limited period in log files if necessary for security purposes, service provision, or billing, e.g., when using one of our offers.
We also store IP addresses if there is a concrete suspicion of a criminal offense in connection with the use of our website.
Cookies
Our website does not use cookies for advertising, analysis, or tracking purposes.
Data Processed to Fulfill Contractual Obligations
We process personal data, such as names and email addresses.
Data is deleted after the expiry of statutory retention periods.
The legal basis for processing is Art. 6(1)(b) GDPR, as this data is required to fulfill our contractual obligations.
Contact Form
If you contact us via the contact form, the information you provide (e.g., name, email address, message) will be processed to handle your inquiry.
Processing is based on:
-
Art. 6(1)(b) GDPR (pre-contractual measures),
-
Your consent (Art. 6(1)(a) GDPR),
-
Or our legitimate interest in responding to your inquiry (Art. 6(1)(f) GDPR).
This data is not shared without your consent.
Hosting by IONOS
Our website is hosted by IONOS SE, Elgendorfer Straße 57, 56410 Montabaur, Germany.
When you visit our site, IONOS automatically collects:
-
IP address
-
Date and time of access
-
Accessed page/file
-
Browser type and version
-
Operating system
-
Referrer URL
This data is processed on the basis of Art. 6(1)(f) GDPR to ensure secure and stable operation.
We have a data processing agreement with IONOS pursuant to Art. 28 GDPR.
Plugins
Security Plugin:
We use the “Headers Security Advanced & HSTS WP” plugin to enhance security. It adds HTTP security headers (e.g., HSTS, Content-Security-Policy).
No personal data is collected or stored.
This is based on our legitimate interest under Art. 6(1)(f) GDPR in secure website delivery.
Multilingual Support via Polylang
We use the Polylang plugin to offer multilingual content.
No personal data is processed.
No cookies are set and no external content is loaded.
Embedding YouTube Videos
We embed YouTube videos, provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Videos are embedded using YouTube’s extended data protection mode.
A connection to YouTube servers is only established when you actively click on a video. Only then may data such as your IP address be transmitted to YouTube.
We use the privacy-friendly “youtube-nocookie.com” embed variant to avoid setting cookies or collecting personal data on page load.
This use is in the interest of presenting our online services attractively and constitutes a legitimate interest under Art. 6(1)(f) GDPR.
Email Contact
If you contact us (e.g., via contact form or email), we process your data to handle your request and any follow-up questions.
If data processing is for pre-contractual measures or contract performance, the legal basis is Art. 6(1)(b) GDPR.
Other personal data is only processed if you have consented (Art. 6(1)(a) GDPR) or we have a legitimate interest (Art. 6(1)(f) GDPR), such as replying to your email.
Data Retention
Unless otherwise specified, we store personal data only as long as necessary to fulfill its purpose.
In some cases, legal obligations (e.g., tax or commercial law) require us to retain data longer. In such cases, data is stored only for legal compliance and deleted afterward.
Your Rights as a Data Subject
Under the applicable laws, you have various rights regarding your personal data. If you wish to assert these rights, please send your request by e-mail or by post, clearly identifying yourself, to the address given in section 1.
Below you will find an overview of your rights:
-
Right to confirmation and information:
To know if we process your data and receive a copy and details (e.g., purposes, categories, recipients, duration, rights, source, automated decision-making, safeguards for third-country transfers). -
Right to rectification:
To have incorrect or incomplete personal data corrected. -
Right to erasure (“right to be forgotten”):
To have data deleted, especially if it’s no longer necessary, consent is withdrawn, processing is unlawful, or legal obligations require deletion. -
Right to restriction of processing:
When accuracy is disputed, processing is unlawful but you oppose deletion, data is no longer needed but required for legal claims, or a pending objection exists. -
Right to data portability:
To receive your data in a structured, commonly used, machine-readable format and have it transferred to another controller where technically feasible. -
Right to object:
To object to processing based on legitimate interest or for direct marketing, including related profiling. -
Right to withdraw consent:
At any time, without affecting the lawfulness of prior processing. -
Right to lodge a complaint with a supervisory authority:
Especially in your place of residence, work, or the place of the alleged violation, if you believe the processing is unlawful.
Data Security
We take data protection seriously and secure your data as per applicable legal requirements and technical standards.
Your personal data is encrypted during transmission (SSL).
However, internet data transfer (e.g., email) can have security gaps. Complete protection from third-party access is not possible.
We maintain technical and organizational measures under Art. 32 GDPR and continually update them.
We cannot guarantee uninterrupted availability of our services. Servers are regularly and carefully backed up.
Sharing Data with Third Parties / No Data Transfer Outside the EU
We generally use your personal data only within our company.
If we use third parties for contract fulfillment, they only receive the necessary data.
In case of outsourcing (“data processing agreement”), processors are contractually obligated to comply with data protection laws and protect data subject rights.
No transfer to or processing by entities outside the EU takes place or is planned.
Data Protection Officer
If you have questions or concerns about data protection, please contact the controller named above under “Responsible.”