Privacy Policy

1. Controller

The controller responsible for data processing on this website is:

2. Data Collection and Storage of Personal Data

We collect and use your personal data only to the extent permitted by law or with your consent.

2.1 When Visiting the Website

Each time you access our website, we automatically collect the following data:

• IP address of the accessing device
• Date and time of access
• Name and URL of the accessed file
• Website from which the access originated (referrer URL)
• Browser used and, if applicable, the operating system

2.2 During Registration

To use our platform, we require the following data:

• First and last name
• Email address
• Password (stored encrypted)
• Company data (optional)
• Billing address

3. Purpose of Processing

We use your data for the following purposes:

• Provision and improvement of our services
• Communication with you
• Billing and payment processing
• Compliance with legal obligations
• Protection against misuse and fraud
• Analysis and optimization of our website

4. Legal Basis

The processing of your personal data is based on:

• Art. 6(1)(b) GDPR: Performance of a contract
• Art. 6(1)(c) GDPR: Legal obligation
• Art. 6(1)(f) GDPR: Legitimate interests
• Art. 6(1)(a) GDPR: Consent

5. Data Transfers

Your personal data is only transferred to third parties if:

• You have explicitly consented
• It is necessary for contract execution
• There is a legal obligation
• It is necessary to protect legitimate interests

6. Cookies and Tracking

Our website uses cookies to improve user experience:

6.1 Necessary Cookies

These cookies are essential for the basic functions of the website and cannot be disabled.

6.3 Cookie Preferences

You can change your cookie settings at any time via the "Cookie Settings" link in the footer and revoke your consent.

7. Retention Period

We store your data only as long as necessary for the respective purposes:

• Contract data: Until contract termination + 10 years
• Billing data: 10 years (tax retention period)
• Communication data: 3 years
• Website logs: 7 days

8. Your Rights

You have the following rights regarding your personal data:

• Right of access (Art. 15 GDPR)
• Right to rectification (Art. 16 GDPR)
• Right to erasure (Art. 17 GDPR)
• Right to restriction of processing (Art. 18 GDPR)
• Right to data portability (Art. 20 GDPR)
• Right to object (Art. 21 GDPR)
• Right to withdraw consent

9. Data Security

We implement technical and organizational security measures to protect your data against accidental or intentional manipulation, loss, destruction, or unauthorized access.

• SSL/TLS encryption for all data transmissions
• Regular security updates
• Access control and authorization concepts
• Regular backups
• Employee training

10. Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority regarding the processing of your personal data. The competent supervisory authority is the one in your usual place of residence or our company headquarters.