Privacy Policy

Privacy Policy

I. Controller

Daniel Bauer – ELAAX IT Service
Am Baunsberg 1
34270 Schauenburg
Germany
Phone: +49 (0) 5601 / 5800011
Email: info@elaax.de
Website: www.elaax.de

II. General information on data processing

As a rule, we process users’ personal data only to the extent necessary to provide a functional website and our services. Any further processing takes place only with the user’s consent or on a legal basis.

Legal bases for processing:

• Art. 6(1)(a) GDPR – Consent

• Art. 6(1)(b) GDPR – Performance of a contract or pre-contractual measures

• Art. 6(1)(c) GDPR – Legal obligation

• Art. 6(1)(f) GDPR – Legitimate interest

Personal data is deleted as soon as the purpose for storage no longer applies, unless statutory retention obligations prevent deletion.

III. Hosting and server log files

Our website is operated on a dedicated root server at netcup GmbH, Daimlerstraße 25, 76185 Karlsruhe, Germany.
The server location is in Austria.

When accessing our website, the following data is processed automatically:

• Browser type and version

• User’s operating system

• Referrer URL

• User’s IP address

• Date and time of the server request

These log files are stored to ensure technical operation, defend against attacks, and maintain system security. No evaluation for marketing purposes takes place.
Legal basis: Art. 6(1)(f) GDPR
Retention period: max. 30 days

IV. Use of cookies

Our website uses cookies to ensure technical functionality and to perform statistical analyses. Technically necessary cookies enable basic functions (e.g., session identification). For analytics cookies (Google Analytics, Matomo), processing takes place only with consent pursuant to Art. 6(1)(a) GDPR.

You can delete or disable cookies in your browser at any time. However, complete deactivation may impair the website’s functionality.

V. Web analytics

1. Google Analytics

This website uses functions of the web analytics service Google Analytics, provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google uses cookies to enable an analysis of website usage. The information generated (including your IP address) is generally transmitted to a Google server in the USA.

Legal basis: Art. 6(1)(a) GDPR (consent)
Third-country transfer: based on EU Standard Contractual Clauses (SCC)
More information: https://policies.google.com/privacy</code></p>;

2. Matomo (self-hosted)

For statistical analysis we use Matomo on our own server. Matomo operates without external data transfer and stores IP addresses only in anonymized form.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in user-friendly statistics)

VI. Contact form and email contact

When using the contact form or sending us an email directly, the following data may be processed:

• First name, last name

• Email address

• Phone number

• If applicable, address and voluntary additional information

Purpose: processing your inquiry and any follow-up activities.
Legal bases: Art. 6(1)(a) GDPR (consent), Art. 6(1)(b) GDPR (pre-contractual communication).
Data is deleted as soon as the purpose no longer applies and no statutory retention obligations exist.

VII. Use of Google reCAPTCHA

To protect forms against automated access, we use Google reCAPTCHA by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. In doing so, technical data (e.g., IP address, mouse movements, browser data) is transmitted to Google.

Legal basis: Art. 6(1)(a) GDPR (consent)
Purpose: preventing misuse through automated access
Transfer: to the USA based on EU Standard Contractual Clauses (SCC)
More information: https://policies.google.com/privacy</code></p>;

VIII. Payment processing

Online payment systems are currently not offered. Payments are made exclusively via traditional bank transfer after invoicing.

IX. SSL/TLS encryption

This site uses SSL/TLS encryption to protect the transmission of confidential content (e.g., inquiries, form data). You can recognize an encrypted connection by “https://” and the lock symbol in your browser’s address bar.

X. Social media

We maintain profiles on the following platforms:

• LinkedIn – LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland
  Privacy policy: https://www.linkedin.com/legal/privacy-policy</code></p>;

• YouTube – Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
  Privacy policy: https://policies.google.com/privacy</code></p>;

XI. Rights of data subjects

Under the GDPR you have the following rights:

• Right of access (Art. 15 GDPR)

• Right to rectification (Art. 16 GDPR)

• Right to erasure (“right to be forgotten”, Art. 17 GDPR)

• Right to restriction of processing (Art. 18 GDPR)

• Right to data portability (Art. 20 GDPR)

• Right to object (Art. 21 GDPR)

• Right to withdraw consent (Art. 7(3) GDPR)

• Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)

XII. Data Protection Officer

A Data Protection Officer is not required pursuant to Art. 37 GDPR.

XIII. Validity and amendments to this privacy policy

This privacy policy is currently valid and was last updated: October 2025.
We reserve the right to adjust this policy due to technical or legal changes.
The current version is always available at: https://www.elaax.de/datenschutz</code></p>;

Note: This is a translation from the German version. The German version is authoritative.