Below you will find information about the types of personal data we process, to what extent, and for what purposes.

Personal data refers to information that can be used to identify you as an individual, such as your name, address, email address, or user behavior.

Data subjects are individuals with whom we have a relationship in the context of providing our services, visitors to our website, and users of our entire online offering.

Name and address of the data controller:

Secuvise GmbH
Nordendstr. 3
80799 Munich, Germany

Email: info@secuvise.com
Tel.: +49 89 21556467

 

Types of Data We Collect and Store

  • Master data (e.g., names and addresses)
  • Contact data (e.g., phone numbers and email addresses)
  • Usage data (e.g., access times, pages visited)
  • Metadata (e.g., browser type, IP address, operating system)
  • Content data (e.g., your text entries in contact forms)

Die Kategorien der dadurch betroffenen Personen:

  • Kunden
  • Vertragspartner
  • Interessenten
  • Nutzer (Webseite/Onlineangebote)

Categories of Affected Individuals

  • Customers
  • Contractual partners
  • Interested parties
  • Users (website/online services)

Purposes of Data Collection

  • Information dissemination
  • Communication
  • Customer service
  • Contract fulfillment
  • Direct marketing/marketing
  • (Technical) provision of online services
  • Security measures to protect our (online) services

Legal Basis for Processing Personal Data

Processing is carried out exclusively on the following legal grounds:

  • Consent (Art. 6(1)(a) GDPR):
    “The data subject has given consent to the processing of his or her personal data for one or more specific purposes.”
  • Contract performance and pre-contractual measures (Art. 6(1)(b) GDPR):
    “Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.”
  • Legal obligations (Art. 6(1)(c) GDPR):
    “Processing is necessary for compliance with a legal obligation to which the controller is subject.”
  • Legitimate interests (Art. 6(1)(f) GDPR):
    “Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject.”

Transfer to Third Parties and Third Countries

Your data generally remains within our company. Disclosure or transfer to third parties takes place only:

  • on the basis of a legal provision,
  • with your consent,
  • if we are legally obliged to do so, or
  • based on a legitimate interest pursuant to Art. 6(1)(f) GDPR.

Our data processors are contractually bound by a data processing agreement pursuant to Art. 28 GDPR to implement necessary technical and organizational measures to safeguard the rights of data subjects.

Transfer to third countries (outside the EU/EEA) occurs only to countries:

  • with an adequacy decision by the European Commission, or
  • that offer appropriate safeguards pursuant to Art. 46 GDPR,
  • that ensure an adequate level of protection as defined by Art. 45 et seq. GDPR,
  • under officially recognized contractual obligations such as the Standard Contractual Clauses, or
  • where an exception under Art. 49 GDPR applies.

Data Retention

Your personal data will be routinely deleted or restricted (i.e., blocked) after the applicable legal retention periods (e.g., commercial and tax law) have expired, unless the data is still required to fulfill a contract or there is a legitimate interest on our part to continue storing it.

Website Use and Log Files

When you visit our website, the following information is automatically transmitted by your browser to our provider’s server:

  • IP address of your device
  • Date and time of access
  • Name and URL of accessed files
  • Website from which the access occurred (referrer URL)
  • Browser used and, where applicable, your device’s operating system
  • Name of your access provider

This data is not merged with other data sources. The IP address is anonymized.

Data is collected to ensure proper use of the website, to optimize the site, and to ensure the security of our IT systems. These purposes also constitute our legitimate interest in data processing pursuant to Art. 6(1)(f) GDPR.

Data is deleted automatically after a maximum of 7 days. In cases of misuse, relevant data will be retained for evidence purposes until the matter is resolved.

Hosting by IONOS

We use the hosting services of IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, to provide the website based on processing on our behalf. All data collected via our website is processed on servers operated by IONOS.

You can find more information about IONOS’s data protection at:
https://www.ionos.de/terms-gtc/datenschutzerklaerung

Any further processing on servers other than those of IONOS takes place only as specified below.

Contact

The use of our website is generally possible without providing personal data.

If you contact us via contact form, comment, email, or phone, the data you provide will be treated confidentially and will not be passed on without your consent.

The purpose of processing is based on:

  • voluntary provision by the data subject (Art. 6(1)(a) GDPR),
  • performance of a contract or pre-contractual measures (Art. 6(1)(b) GDPR), or
  • legitimate interest in effective handling of your request (Art. 6(1)(f) GDPR).

The data will be deleted once it is no longer needed for the purpose it was collected for.

For emails, this is the case when the conversation with the user has ended—i.e., when it can be inferred from the circumstances that the matter has been resolved.

You may object to the processing of your personal data at any time. In that case, the conversation cannot be continued, and all data stored in connection with the contact will be deleted.

Contract and Business Partners

We process the data of our contractual and business partners primarily to fulfill our contractual obligations and for communication. Data is also processed for proper and economical business operations and to protect our rights.

Processing is therefore based on:

contract performance or pre-contractual measures (Art. 6(1)(b) GDPR),

legal obligations (Art. 6(1)(c) GDPR), or

legitimate interests (Art. 6(1)(f) GDPR).

Data is shared with third parties only if required by law or stated in the contract or this privacy policy.

Your Rights

As a data subject, you may assert the following rights under the GDPR:

  • Right of access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to withdraw consent (Art. 7(3) GDPR)
  • Right to object (Art. 21 GDPR)
  • Right to lodge a complaint (Art. 77 GDPR) with a supervisory authority, either at your place of residence or workplace, or at our company’s location.

You may assert these rights via email or post using the contact details above. Requests will be handled within one month.

Data Security

We use SSL encryption (Secure Socket Layer) in conjunction with the highest level of encryption supported by your browser, typically 256-bit. If your browser does not support 256-bit encryption, we use 128-bit v3 technology. You can recognize encrypted pages by the closed padlock icon in your browser’s status bar.

We also implement suitable technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or total loss, destruction, or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.