Table of Contents
1.1 We appreciate your visit to our website and thank you for your interest. Below we inform you about the processing of personal data when using our website. Personal data refers to any data that can be used to personally identify you.
1.2 The controller responsible for data processing on this website is Haro GbR, Friedhofstr. 21, 71577 Großerlach, Germany, Tel.: +49 176 23909862, Email: operations@battery-pages.com.
1.3 A data protection officer has not been appointed as there is no legal requirement to do so. For data protection inquiries, please contact the email address provided above.
2.1 Server log files
When you access our website, we collect the following data, which are technically necessary for us to display the website to you:
The processing is carried out according to Art. 6 (1) point (f) GDPR on the basis of our legitimate interest in ensuring the stability and security of our website. The data will not be shared or otherwise used. However, we reserve the right to subsequently review the server log files if there are concrete indications of illegal use. The data are stored for 30 days and then automatically deleted.
2.2 SSL/TLS encryption
Data transmission on our website is protected by up-to-date SSL/TLS technology to secure your data against unauthorized access. You can recognize an encrypted connection by the string “https://” in your browser’s address bar.
3.1 Our website is hosted by Hetzner Online GmbH, a provider with server locations within the EU. All data collected by us is stored and processed on these servers.
We have concluded a data processing agreement (DPA) pursuant to Art. 28 GDPR with Hetzner, which ensures the protection of our website visitors’ data and prohibits unauthorized disclosure to third parties.
3.2 When using our SaaS services, the data you enter will be processed on our platform. This includes:
Legal basis: Art. 6 (1) point (b) GDPR (contract fulfilment).
3.3 Use of Amazon Web Services (AWS S3)
To store media files (e.g. images uploaded by customers via the admin portal), we use the Amazon Simple Storage Service (S3) provided by Amazon Web Services EMEA SARL, 38 avenue John F. Kennedy, L-1855 Luxembourg.
Storage is used to ensure reliable availability and management of content within our admin portal, especially in the context of website creation and management by our customers. Website publication does not take place directly via AWS: When a site is published, the media files are automatically retrieved from AWS, processed internally, and then delivered via our servers at Hetzner Online GmbH.
Legal basis:
A Data Processing Agreement pursuant to Art. 28 GDPR has been concluded with Amazon Web Services, ensuring the implementation of appropriate technical and organizational measures to protect personal data.
After termination of the contractual relationship, media files stored on AWS are deleted no later than 90 days, unless statutory retention obligations require otherwise.
Further information on AWS’s data protection practices is available at: https://aws.amazon.com/de/compliance/gdpr-center/
Some providers we use are based in the USA or transfer data to servers in the USA. For these providers, the EU-US Data Privacy Framework (DPF) applies. This framework ensures compliance with the European data protection standards for data transfers to the USA, based on an adequacy decision by the European Commission.
Participating companies commit to adhering to the strict data protection standards of the EU. You can find a current list of certified providers and further information about the EU-US Data Privacy Framework on the European Commission’s website.
The transfer of personal data to these providers is based on Art. 45 GDPR. Where individual providers additionally use standard contractual clauses, these transfers are based on Art. 46 GDPR. Further details can be found in the descriptions of the respective providers within this privacy policy.
Our website uses exclusively technically necessary cookies, which do not store personal data and therefore do not require consent.
Technically necessary cookies:
No cookie banner is required, as consent is not mandatory.
6.1 Trustpilot
For sending review reminders, we use the services of the following provider:
Trustpilot A/S, Pilestræde 58, 1112 Copenhagen, Denmark.
Exclusively on the basis of your explicit consent in accordance with Art. 6 (1) point (a) GDPR, we transmit your email address and, if applicable, further customer data to the provider, enabling them to contact you via email to request a review.
You can withdraw your consent at any time with future effect, either by contacting us or directly the provider.
We have concluded a data processing agreement (DPA) with the provider, ensuring the protection of our visitors’ data and prohibiting unauthorized disclosure to third parties.
6.2 Calendly
To provide an online appointment booking service, we use Calendly, LLC, BB&T Tower, 271 17th St NW, Atlanta, GA 30363, USA.
First and last names, email addresses, and optionally phone numbers are processed to schedule appointments according to Art. 6 (1) point (b) GDPR (contract performance), or based on Art. 6 (1) point (f) GDPR (legitimate interest) to manage appointments efficiently. Data will be deleted after the appointment or upon expiration of the agreed period.
We have concluded a data processing agreement (DPA) according to Art. 28 GDPR with Calendly. Data transfer to the USA takes place in accordance with the EU-US Data Privacy Framework (see section “4. Data transfer to the USA”).
6.3 Google Calendar
For online appointment bookings, we use Google Calendar provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, Ireland.
First and last names, email addresses, and optionally phone numbers are processed to efficiently manage appointments based on Art. 6 (1) point (b) GDPR (contract performance) or Art. 6 (1) point (f) GDPR (legitimate interest). Data will be deleted after the appointment.
We have concluded a DPA according to Art. 28 GDPR with Google. Data transfer to the USA takes place in accordance with the EU-US Data Privacy Framework (see section “4. Data transfer to the USA”).
6.4 WhatsApp Business
You can contact us via WhatsApp Business (WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland).
When you contact us via WhatsApp, we store and use your mobile phone number and, if provided, your first and last name, based on Art. 6 (1) point (b) GDPR (contract performance) or Art. 6 (1) point (f) GDPR (legitimate interest) to process your request. Your data is only used to respond to your inquiry and is not shared with third parties.
WhatsApp gains access to phone numbers stored in the address book of the mobile device we use. However, we store contact details exclusively of users who actively contacted us.
We have concluded a DPA according to Art. 28 GDPR with WhatsApp. Data transfer to the USA takes place in accordance with the EU-US Data Privacy Framework (see section “4. Data transfer to the USA”).
For more information, please see WhatsApp’s privacy policy.
6.5.1 General contact
When you contact us via the contact form or email, we store your details to process your inquiry.
6.5.2 Job applications
When you apply for a job with us, we store your application documents to carry out the application process.
In accordance with Art. 6 (1) point (b) GDPR, personal data is collected and processed to the extent necessary when you provide us with this data during the registration of a customer account. The specific data required for account registration can be found on the input form of the relevant form on our website.
You can delete your customer account at any time by sending a message to the address of the controller mentioned above. After deletion of your customer account, your data will be deleted, provided all contracts concluded via the account have been fully processed, there are no statutory retention obligations, and we do not have any legitimate interest in further storage.
To assist you with support inquiries, troubleshooting, or technical issues, it may be necessary for us to temporarily access your customer account. Such access occurs solely for resolving technical problems and improving service quality.
This access is based on our legitimate interest according to Art. 6 (1) point (f) GDPR in efficient problem-solving and customer support. In cases where access is required for contract fulfillment, processing additionally occurs in accordance with Art. 6 (1) point (b) GDPR.
Access is strictly limited to authorized employees and is logged. Unauthorized use or disclosure of data does not occur. Objecting to this access may lead to restrictions in the handling of your support requests.
9.1 Subscription to our email newsletter
If you subscribe to our email newsletter, we will regularly send you information about our offers. The only mandatory data for sending the newsletter is your email address. Providing additional data is voluntary and used to address you personally. We use the double opt-in procedure to send newsletters. This means you will only receive the newsletter once you explicitly confirm your consent by clicking on a verification link sent to the provided email address.
By activating the confirmation link, you grant us permission to use your personal data in accordance with Art. 6 (1) point (a) GDPR. In this context, we store your IP address provided by your Internet Service Provider (ISP) as well as the date and time of your subscription, in order to document your consent and trace possible misuse of your email address at a later time. The data collected by us when subscribing to the newsletter will be used strictly for this purpose.
You can unsubscribe from the newsletter at any time via the unsubscribe link provided in each newsletter email or by sending us a message by email. After unsubscribing, your email address will be immediately removed from our newsletter distribution list, unless you have explicitly consented to further use of your data, or we reserve the right to use your data beyond this purpose, which is legally permitted and about which we inform you in this declaration.
9.2 Sending email newsletters to existing customers
If you have provided your email address to us during the purchase of goods or services, we reserve the right to regularly send you offers for similar goods or services from our product range by email. In accordance with § 7 para. 3 UWG (German Unfair Competition Act), we do not need to obtain your separate consent for this purpose. Data processing is based solely on our legitimate interest in personalized direct advertising pursuant to Art. 6 (1) point (f) GDPR. If you initially objected to the use of your email address for this purpose, we will not send you any emails.
You have the right to object to the use of your email address for the aforementioned advertising purpose at any time with effect for the future, either by clicking the unsubscribe link in every email or by informing us via email. Once we receive your objection, the use of your email address for advertising purposes will immediately cease.
9.3 Mailgun
Our email newsletters are sent through the following provider:
Sinch Sweden AB, Lindhagensgatan 74, 11218 Stockholm, Sweden.
Based on our legitimate interest in efficient and user-friendly newsletter marketing, we share your data provided during the newsletter subscription with this provider pursuant to Art. 6 (1) point (f) GDPR to carry out newsletter dispatch on our behalf.
Additionally, data is transmitted to:
Mailgun Technologies, 112 E. Pecan Street #1135, San Antonio, Texas, 78205, USA.
Subject to your explicit consent pursuant to Art. 6 (1) point (a) GDPR, the provider conducts statistical performance analyses of newsletter campaigns using web beacons or tracking pixels embedded in the emails. These technologies measure email open rates and interactions with newsletter content. Additionally, device information (such as access time, IP address, browser type, and operating system) is collected and analyzed but not merged with other data.
You may withdraw your consent to newsletter tracking at any time with effect for the future.
We have concluded a Data Processing Agreement with Mailgun in accordance with Art. 28 GDPR. Data transfers to the USA are based on the EU-US Data Privacy Framework (see section “4. Data transfer to the USA”).
10.1 For the purpose of contract fulfillment, we collaborate with the following service provider(s) who fully or partially assist us in executing concluded contracts. Certain personal data will be transferred to these service providers in accordance with the information provided below.
10.2 Use of Payment Service Providers
10.2.1 Stripe as Payment Service Provider
We use the following provider for payment processing:
Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland
Stripe offers various online payment methods (e.g. credit card, SEPA direct debit). All payment processing is carried out exclusively via Stripe.
10.2.2 Technical Stripe Account Setup During Registration
When registering a customer account, a technical Stripe account is automatically created in the background to prepare future payment processing and ensure smooth contract handling. In doing so, personal data such as your email address, user ID, and IP address may be transmitted to Stripe.
This processing is based on:
– Article 6(1)(b) GDPR (pre-contractual measures), and
– our legitimate interest in providing an automated and user-friendly payment infrastructure pursuant to Article 6(1)(f) GDPR.
No payment obligation arises from this technical setup. The Stripe account remains inactive until the user actively selects a paid plan.
For more information on data protection at Stripe, please visit: https://stripe.com/privacy
10.2.3 Data Transfer During the Payment Process
If you choose a paid payment method (e.g. credit card), the payment data you provide (name, address, card details, transaction number, etc.) as well as your order information will be transmitted to Stripe in accordance with Article 6(1)(b) GDPR.
If you select a payment method where Stripe makes advance payments (e.g. invoice purchase, direct debit), Stripe may also process additional personal data (e.g. name, address, date of birth, phone number, and possibly alternative payment information) and perform a credit check. For this purpose, Stripe may use further information such as the shopping cart, order history, payment behavior, and, if applicable, score values based on mathematical-statistical procedures including address data.
The processing of data is carried out based on our legitimate interest in assessing payment ability in accordance with Article 6(1)(f) GDPR.
You may object to this processing of your data at any time by contacting us or Stripe. However, Stripe may still be entitled to process your personal data if this is necessary for contractual payment processing.
10.3 Electronic Cancellation Option for Long-term Contracts with Consumers
Consumers who have entered into long-term contracts subject to payment (such as subscription agreements) via this website have the possibility to terminate these agreements electronically via a dedicated cancellation button in compliance with applicable cancellation periods.
Activating this button leads to a confirmation page, where consumers can provide further details regarding the cancellation, clearly identify themselves, and subsequently submit their cancellation electronically.
Following termination of the contract, your data will be deleted within 90 days, unless there are legal or contractual retention obligations preventing deletion.
The collection and transfer of personal data to us in this context is carried out pursuant to Art. 6 (1) point (b) GDPR and only to the extent necessary for the proper processing of the cancellation. Also, on the basis of Art. 6 (1) point (b) GDPR, the provided personal data will be used to electronically confirm receipt of your cancellation and the cancellation date in text form. An additional legal basis for this processing is Art. 6 (1) point (c) GDPR, as we are legally obliged to provide an electronic cancellation option for consumer contracts concluded via electronic commerce concerning payable long-term obligations.
We use Hotjar exclusively within our admin portal. Access to the admin portal requires registration and consent to our Terms and Conditions, which include detailed regulations on the use of these services. These services are not used on our public website.
11.1 Hotjar
This website (admin portal) uses the web analytics service of the following provider:
Hotjar Ltd, Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta.
Using cookies and/or similar technologies (tracking pixels, web beacons, algorithms for reading device and browser information), the service collects and stores pseudonymized visitor data, including information about the device used (such as IP address and browser details), for statistical analysis of user behavior on our website and the creation of pseudonymized user profiles. Among other things, this enables the evaluation of movement patterns (so-called heatmaps) showing the duration of page visits and interactions with page content (e.g., text entries, scrolling, clicks, and mouse-overs). Due to pseudonymization, a direct personal reference is generally excluded. There is no merging of these data with clearly identifiable personal data collected by other means.
All processing described above, particularly the reading or storage of information on the user’s device, is only performed if you have provided your explicit consent in accordance with Art. 6 (1) point (a) GDPR. You can withdraw your consent at any time with effect for the future by disabling this service through the “cookie consent tool” provided on the website.
We have concluded a data processing agreement (DPA) with the provider to ensure the protection of our visitors’ data and to prevent unauthorized disclosure to third parties.
We use various external services and plugins on our website to ensure the user-friendliness, security, and functionality of our offering. Below, we provide detailed information about each service, its purpose, legal basis, and the scope of data processing.
12.1 Vimeo
Our website uses plugins provided by Vimeo.com, Inc., 330 West 34th Street, New York, NY 10001, USA, for displaying and playing videos.
When you access a page containing a Vimeo video, your browser automatically establishes a direct connection to Vimeo’s servers, transmitting your IP address and technical browser information. We use Vimeo in a privacy-friendly mode (“Do Not Track”/dnt=1), so Vimeo does not set tracking cookies. However, Vimeo may use technically necessary cookies to ensure the functionality of the video player, which are not used for advertising or analytics purposes.
This use is based on our legitimate interest (Art. 6 (1) point (f) GDPR) in providing you with optimal multimedia content.
Data transfers to the USA are carried out in accordance with the EU-US Data Privacy Framework (see Section “4. Data transfers to the USA”).
Further information is available in Vimeo’s Privacy Policy.
12.2 Google Sign-In
We offer a sign-in feature via Google Sign-In, a service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”).
When using this sign-in feature, your browser establishes a direct connection to Google’s servers, transmitting your IP address and browser information to Google. If you register with your Google account, Google will transmit general profile information (such as user ID, name, email address) to us only after your explicit consent (Art. 6 (1) point (a) GDPR). We use this data to set up your user account.
You may revoke your consent at any time with future effect.
Data transfers to the USA are carried out in accordance with the EU-US Data Privacy Framework (see Section “4. Data transfers to the USA”). Further information is available in Google’s Privacy Policy.
12.3 Trusted Shops Trustbadge
To integrate our Trusted Shops trust badge and display external customer reviews, we use the Trustbadge provided by Trusted Shops AG, Subbelrather Str. 15C, 50823 Cologne, Germany.
When you visit pages containing this Trustbadge, your browser transmits technical information (such as IP address and browser data) directly to Trusted Shops.
If, after completing an order, you choose to activate the buyer protection from Trusted Shops, we will transmit your order information (order total, order number, purchased products) and your email address to Trusted Shops, exclusively after obtaining your explicit consent (Art. 6 (1) point (a) GDPR).
Trusted Shops and we are joint controllers pursuant to Art. 26 GDPR. Further details can be found here.
12.4 Trustpilot
We integrate customer reviews provided by Trustpilot A/S, Pilestræde 58, 1112 Copenhagen, Denmark, on our website.
When loading these elements, your browser transmits technical information (such as your IP address and browser details) to Trustpilot. This processing is based on our legitimate interest (Art. 6 (1) point (f) GDPR) in transparently communicating customer reviews.
12.5 Cloudflare Turnstile
To ensure that accesses to our website are not made by automated programs (bots or malicious software), we use Cloudflare Turnstile provided by Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA.
Cloudflare processes technical data such as your IP address and browser information. This security measure is technically necessary for the operation of our website and is based on our legitimate interest (Art. 6 (1) point (f) GDPR) in protecting our website.
Data transfer to the USA is carried out in accordance with the EU-US Data Privacy Framework (see section “4. Data transfer to the USA”).
Since Cloudflare Turnstile is a security measure essential for operating our website, this service cannot be disabled via a cookie banner.
12.6 Google Meet
We use Google Meet provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland, to conduct video conferences and webinars.
During such meetings, we process your registration and session data (such as name, email, IP address), and if applicable, video, audio, and chat contributions. The data processing is performed for contract fulfillment (Art. 6 (1) point (b) GDPR) or based on our legitimate interest (Art. 6 (1) point (f) GDPR) in effectively conducting these meetings.
We have concluded a Data Processing Agreement (DPA) with Google pursuant to Art. 28 GDPR. Data transfer to the USA takes place under the EU-US Data Privacy Framework (see section “4. Data transfer to the USA”). Further information on Google’s privacy practices can be found here.
12.7 Zoom
We use Zoom, a service provided by Zoom Video Communications Inc., 55 Almaden Blvd, Suite 600, San Jose, CA 95113, USA, for video conferencing and webinars.
Zoom processes your registration and session data (such as name, email address, IP address), as well as video, audio, and chat contributions. The legal basis for processing is either contract fulfillment (Art. 6 (1) point (b) GDPR) or our legitimate interest (Art. 6 (1) point (f) GDPR) in efficiently conducting meetings.
We have entered into a Data Processing Agreement (DPA) with Zoom pursuant to Art. 28 GDPR. Data transfers to the USA are made according to the EU-US Data Privacy Framework (see section “4. Data transfer to the USA”).
12.8 Typeform
For conducting surveys or using online forms, we utilize services provided by TYPEFORM SL, Carrer Bac de Roda, 163, local, 08018 Barcelona, Spain.
This provider allows us to design and evaluate surveys and online forms. In addition to form inputs, your IP address and browser information are processed. The legal basis is either contract fulfillment (Art. 6 (1) point (b) GDPR) or your explicit consent (Art. 6 (1) point (a) GDPR).
We have concluded a Data Processing Agreement (DPA) with Typeform, ensuring the protection of our visitors’ data and prohibiting unauthorized disclosure to third parties.
12.9 Applications (by email or online form)
On our website, you have the option to apply for open positions via email or through an online form.
In the course of the application process, personal data necessary for evaluating your application is processed, such as name, contact details, CV, certificates, and, if applicable, special categories of personal data (e.g., health information or disability status). Processing is performed to conduct the application procedure pursuant to Art. 6 (1) point (b) GDPR (in Germany, in conjunction with § 26 BDSG). Should special categories of personal data be processed, this occurs additionally based on Art. 9 (2) point (b) GDPR (employment and social security law) or Art. 9 (2) point (h) GDPR (preventive or occupational medicine).
Your application data is treated confidentially and used exclusively for processing your application. If your application does not result in employment, we will delete your application data no later than 6 months after the conclusion of the application process. This retention period serves in particular to ensure transparency and fulfill our obligations under the General Equal Treatment Act (AGG).
In the event of successful employment, we will transfer your data to your personnel file for the execution of the employment relationship in accordance with Art. 6 (1) point (b) GDPR (in conjunction with § 26 BDSG).
13.1 Lexware Office
For bookkeeping purposes, we use the cloud-based accounting software service provided by:
Haufe-Lexware GmbH & Co. KG, Munzinger Straße 9, 79111 Freiburg, Germany.
The provider processes incoming and outgoing invoices, and, if applicable, bank transactions of our company, to automatically capture invoices, match them to transactions, and generate accounting records in a partially automated process.
If personal data is processed in this context, the processing is based on our legitimate interest in the efficient organization and documentation of our business operations pursuant to Art. 6 (1) point (f) GDPR.
13.2 Sentry
This website uses a service for automatic transmission of error reports provided by:
Functional Software Inc., 45 Fremont Street, 8th Floor, San Francisco, CA 94105, USA.
In case of technical complications or functional impairments related to the operation of the website, this service automatically sends error reports to the provider, containing information on the source and origin of the respective error. Transmitted data may include server information as well as usage parameters, such as IP address, browser used, timestamps, and accessed URLs.
Depending on the nature of the error, these reports may occasionally contain further personal customer data that we have collected and stored in connection with contract performance (in particular first and last name, address, email address). This is especially possible when the error occurs in relation to software-based processing of customer data.
If personal data is involved in the transmitted information, processing is based on our legitimate interest in efficient error analysis to improve the reliability and functionality of our website pursuant to Art. 6 (1) point (f) GDPR.
Data transfer to the USA is carried out according to the EU-US Data Privacy Framework (see section “4. Data transfer to the USA”).
14.1 Under applicable data protection law, you have the following rights vis-à-vis the controller regarding the processing of your personal data (rights of access and intervention), with reference to the relevant legal basis for exercising these rights:
• Right of access pursuant to Art. 15 GDPR;
• Right to rectification pursuant to Art. 16 GDPR;
• Right to erasure (“right to be forgotten”) pursuant to Art. 17 GDPR;
• Right to restriction of processing pursuant to Art. 18 GDPR;
• Right to notification pursuant to Art. 19 GDPR;
• Right to data portability pursuant to Art. 20 GDPR;
• Right to withdraw consent pursuant to Art. 7 (3) GDPR;
• Right to lodge a complaint with a supervisory authority pursuant to Art. 77 GDPR.
To exercise any of these rights, please contact operations@battery-pages.com.
14.2 RIGHT TO OBJECT
IF WE PROCESS YOUR PERSONAL DATA IN THE CONTEXT OF A BALANCING OF INTERESTS BASED ON OUR OVERRIDING LEGITIMATE INTEREST, YOU HAVE THE RIGHT AT ANY TIME TO OBJECT TO THIS PROCESSING FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION, WITH EFFECT FOR THE FUTURE.
IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL STOP PROCESSING THE DATA CONCERNED. HOWEVER, WE RESERVE THE RIGHT TO CONTINUE PROCESSING IF WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR PROCESSING THAT OVERRIDE YOUR INTERESTS, FUNDAMENTAL RIGHTS AND FREEDOMS, OR IF THE PROCESSING SERVES TO ASSERT, EXERCISE, OR DEFEND LEGAL CLAIMS.
IF WE PROCESS YOUR PERSONAL DATA FOR DIRECT MARKETING PURPOSES, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF YOUR PERSONAL DATA FOR SUCH MARKETING. YOU MAY EXERCISE THE OBJECTION AS DESCRIBED ABOVE.
IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL CEASE PROCESSING THE DATA CONCERNED FOR DIRECT MARKETING PURPOSES.
The duration for which personal data is stored is determined based on the respective legal grounds, the processing purpose, and – where applicable – any statutory retention periods (e.g., commercial and tax retention obligations).
After termination of a contract, customer data will be deleted within 90 days, unless statutory or contractual retention obligations require otherwise.
Personal data processed based on explicit consent pursuant to Art. 6 (1) lit. a GDPR is stored until you withdraw your consent.
Where statutory retention periods exist for data processed within the scope of contractual or contract-like obligations pursuant to Art. 6 (1) lit. b GDPR, such data will be routinely deleted upon expiry of these retention periods, provided they are no longer necessary for contract performance or contract initiation and/or we have no legitimate interest in continued storage.
Personal data processed based on Art. 6 (1) lit. f GDPR is stored until you exercise your right to object under Art. 21 (1) GDPR, unless we can demonstrate compelling legitimate grounds for processing that override your interests, rights, and freedoms, or if the processing serves to establish, exercise, or defend legal claims.
Personal data processed for direct marketing purposes pursuant to Art. 6 (1) lit. f GDPR will be stored until you exercise your right to object pursuant to Art. 21 (2) GDPR.
Unless otherwise stated in the other information within this declaration about specific processing situations, stored personal data will be deleted once it is no longer necessary for the purposes for which it was collected or otherwise processed.
Last updated 01.03.2025
