Privacy Policy

1. Data Protection Overview
General Information
The following notes provide a simple overview of what happens to your personal data when you visit this website. Personal data refers to all data that can be used to personally identify you. Detailed information on the subject of data protection can be found in the privacy policy below.

Data Collection on This Website
Who is responsible for data collection on this website?
The data processing on this website is carried out by the website operator. Their contact details can be found in the section “Information about the Responsible Party” in this privacy policy.

How do we collect your data?
Some data is collected when you provide it to us. This may include information you enter in a contact form.
Other data is collected automatically or with your consent when you visit the website. This primarily includes technical data (e.g., browser type, operating system, or time of page access). The collection of this data occurs automatically when you access the website.

What do we use your data for?
Part of the data is collected to ensure the error-free provision of the website. Other data may be used to analyze user behavior. If contracts can be concluded or initiated via the website, the transmitted data will also be processed for contract offers, orders, or other inquiries.

What rights do you have regarding your data?
You have the right to obtain, free of charge, information about the origin, recipient, and purpose of your stored personal data at any time. You also have the right to request correction or deletion of this data. If you have given consent to data processing, you may revoke this consent at any time for the future. You also have the right, under certain circumstances, to request the restriction of processing of your personal data. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.
For this purpose and for further questions on data protection, you can contact us at any time.

2. Hosting
We host our website content with the following provider:

External Hosting
This website is hosted externally. The personal data collected on this website is stored on the servers of the host provider(s). This may include IP addresses, contact requests, meta and communication data, contract data, contact details, names, website access data, and other data generated through the website.

External hosting is carried out for the purpose of fulfilling contracts with our potential and existing customers (Art. 6 (1)(b) GDPR) and in the interest of secure, fast, and efficient provision of our online services by a professional provider (Art. 6 (1)(f) GDPR).
If consent has been requested, processing is carried out exclusively based on Art. 6 (1)(a) GDPR and § 25 (1) TDDDG, insofar as the consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting) within the meaning of the TDDDG. Consent may be revoked at any time.

Our hosting provider(s) will process your data only to the extent necessary to fulfill their service obligations and in accordance with our instructions.

We use the following hosting provider:
HOSTINGER operations, UAB
Švitrigailos str. 34, Vilnius 03230, Lithuania

Data Processing Agreement
We have concluded a data processing agreement (DPA) with the above provider. This legally required contract ensures that personal data of our website visitors is processed only according to our instructions and in compliance with the GDPR.

3. General Notes and Mandatory Information
Data Protection
The operators of this website take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with statutory data protection regulations and this privacy policy.

When you use this website, various personal data are collected. Personal data are data that can be used to identify you personally. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this happens.

We note that data transmission over the Internet (e.g., via email communication) can have security vulnerabilities. Complete protection of data from access by third parties is not possible.

Information about the Responsible Party
The party responsible for data processing on this website is:

Tim Westermann
Nappenhornerkoppel 20
25355 Barmstedt
Germany
Phone: [Phone number of the responsible party]
Email: tim@twaisystems.com

The responsible party is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g., names, email addresses, etc.).

Storage Duration
Unless a specific storage period has been stated in this privacy policy, your personal data will remain with us until the purpose for the data processing no longer applies. If you request deletion or withdraw your consent, your data will be deleted unless we are legally required to retain it (e.g., tax or commercial retention periods). In such cases, the data will be deleted after these periods expire.

Legal Basis for Data Processing
If you have given consent, we process your personal data based on Art. 6 (1)(a) GDPR or, in the case of special categories of data, Art. 9 (2)(a) GDPR. If you have expressly consented to the transfer of personal data to third countries, processing is also based on Art. 49 (1)(a) GDPR.
If data processing is necessary for the performance of a contract or pre-contractual measures, we process your data on Art. 6 (1)(b) GDPR. If required by legal obligations, the processing is based on Art. 6 (1)(c) GDPR.
Data processing may also be based on our legitimate interests under Art. 6 (1)(f) GDPR. Specific legal bases are outlined in the relevant sections of this privacy policy.

Recipients of Personal Data
In our business activities, we work with various external parties, which may require the transfer of personal data. Data is only shared when necessary for contract fulfillment, required by law (e.g., to tax authorities), based on legitimate interests, or if another legal basis permits it. When using processors, we only transfer personal data under a valid data processing agreement.

Revocation of Your Consent to Data Processing
Many data processing operations are only possible with your explicit consent. You can revoke consent at any time. The legality of processing carried out before revocation remains unaffected.

Right to Object (Art. 21 GDPR)
You have the right to object, at any time, for reasons relating to your particular situation, to the processing of your personal data based on Art. 6 (1)(e) or (f) GDPR, including profiling based on those provisions.
If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for processing that override your interests, rights, and freedoms, or the processing is for the establishment, exercise, or defense of legal claims.

If your data is processed for direct marketing, you may object at any time to the processing of your data for such marketing purposes, including profiling related to direct marketing. After you object, your data will no longer be used for direct marketing.

Right to Lodge a Complaint with the Supervisory Authority
In the event of violations of the GDPR, you have the right to lodge a complaint with a supervisory authority, in particular in your habitual residence, place of work, or place of the alleged violation.

Right to Data Portability
You have the right to receive data that we process based on your consent or contract in a commonly used, machine-readable format or have it transferred directly to another controller, where technically feasible.

Right of Access, Rectification, and Erasure
You have the right to access your stored personal data, its origin and recipients, and the purpose of processing, as well as a right to rectification or deletion within the applicable legal framework.

Right to Restriction of Processing
You may request restriction of processing of your personal data under certain conditions, such as when:
– You dispute the accuracy of your personal data.
– Processing was unlawful, but you prefer restriction instead of deletion.
– We no longer need the data, but you need it for legal claims.
– You have objected under Art. 21 (1) GDPR, pending verification of overriding interests.

If processing is restricted, the data may only be processed—with the exception of storage—with your consent or for legal claims or protection of another’s rights.

SSL or TLS Encryption
This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or requests sent to us as the site operator. You can recognize an encrypted connection by the change in the browser’s address line from “http://” to “https://” and by the lock icon in your browser line.

When SSL or TLS encryption is active, the data you transmit to us cannot be read by third parties.

Source:
https://www.e-recht24.de