Privacy Policy
Privacy Policy for Website Visitors of Creolytix
1. Content
Below we explain how we handle your personal data when you visit creolyitx.io. We also inform you about your rights under the General Data Protection Regulation (GDPR).
2. Responsible person and data protection officer
The controller within the meaning of the GDPR for the processing of your data is
Creolytix GmbH
Münchener Straße 19
82362 Weilheim i.OB
Germany
E-mail address: connect@creolytix.io
For data protection questions please contact: dataprotection@creolytix.io
3. Contact form
We offer a contact form. You are required to enter your name, company and email address. We use the information to respond to your request and delete the data after the request has been finally processed, usually after 90 days. The legal basis is the initiation of a contractual relationship with leads and the execution of the contractual relationship with customers, as well as our legitimate interest in providing an online contact form.
The data in the contact form is transmitted in encrypted form, but there is no end-to-end encryption. As an alternative to the contact form, you can also contact us by e-mail, for example.
4. Free-Trials
You can apply for a free trial version of the Creolytix Security Platform on our website (Free Trial). The information in the form is used to initiate and execute the contract and is used to provide the Creolytix Security Platform as a free trial. As a rule, we delete your data twelve months after the end of the free trial.
5. Use of Your E-Mail Address
If we have received your email address in connection with the sale of a product or service, we may use the e-mail address to send you advertising about our own similar goods and services. You can object to this at any time without giving reasons, e.g. by sending an e-mail to the above-mentioned e-mail address.
5. Web server logging
Our web servers – as well as all other web servers – collect technical data each time a page is accessed. However, we do not assign this data to any person.
When you call access an individual page, our web servers record this in a log file by default:
- Referrer (previously visited website)
- Requested web page or file
- Browser type and browser version
- Operating system used
- Device type used
- Time of access
- IP address in anonymized form (only used to determine the location of access)
The log file data is used by us exclusively for statistical analysis (e.g. number of visitors to individual pages), for technical optimization of the website (e.g. adaptation to particularly frequently used devices) and to ensure the functionality of our services (e.g. error analysis, ensuring system security and protection against misuse) and deleted after 7 days or shortened in such a way that no personal reference can be established.
Insofar as log file data qualifies as personal data in individual cases, the legal basis for the processing of log file data is our legitimate interest (error analysis, ensuring system security and protection against misuse).
6. Additional Information
6.1. Mandatory information
All fields with required information are marked with an asterisk (“*”) on our website. Without this information, it is not possible to use the corresponding function.
6.2. Data recipient
Within the our company, your data will be received by the relevant departments, e.g. the product or marketing department.
We may use technical service providers within the EU for the technical operation of the website, e.g. for development, maintenance and hosting.
Transfers to countries outside the European Economic Area will only take place if this is expressly stated.
6.3. Criteria for the storage period
We determine the storage period for your data based on the specific purposes for which we use the data. In addition, we are subject to statutory retention and documentation obligations, which arise in particular from the German Commercial Code (HGB) and the German Fiscal Code (AO). Finally, the storage period is also determined by the statutory limitation periods, which are generally three years in accordance with Sections 195 et seq. of the German Civil Code (BGB), for example.
7. Explanation of Terms
7.1. Terms
In the following, we explain some of the legal and technical terms used in this data protection notice.
Personal data: Personal data is any information relating to an identified or identifiable natural person.
Processing: Processing of personal data is any process in connection with personal data, e.g. collection via an online form, storage on our servers or use for making contact.
IP address: The IP address is a number that your internet provider assigns to your end device either temporarily or permanently. With a complete IP address, it is possible, for example, to identify the owner of the connection in individual cases using additional information from your internet access provider.
Legal basis:The GDPR only permits the processing of personal data if a legal basis exists. We are legally obliged to inform you of the legal basis for the processing of your data. We explain the terminology used below.
Legal basis | Term | Explanation |
Art. 6 para. 1 lit. a) GDPR |
Consent | This legal basis permits processing if and insofar as you have given us your consent. When you visit our website, we may show you a window in which you can give us your consent to certain data processing. You can withdraw your consent at any time or give it subsequently. |
Art. 6 para. 1 lit. b) GDPR |
Contract | Accordingly, we may process personal data if this is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract. |
Art. 6 para. 1 lit. f) GDPR |
legitimate interests | In accordance with this legal basis, we are permitted to process data insofar as this is necessary to protect our legitimate interests (or those of third parties) and your conflicting interests do not outweigh this. |
8. Your rights
By law, we are obliged to inform you of your rights under the GDPR. We explain these rights below. You are entitled to these rights under the conditions of the respective data protection laws. The following description does not grant you any further rights.
8.1. Access
You have the right to request confirmation from us as to whether we process personal data concerning you; if this is the case, you have a right to information about this personal data and to the information listed in detail in Art. 15 GDPR.
8.2. Correction
You have the right to obtain from us without undue delay the rectification of inaccurate personal data concerning you and, where applicable, the completion of incomplete personal data, Art. 16 GDPR.
8.3. Deletion
You have the right to demand that we delete personal data concerning you immediately if one of the reasons listed in Art. 17 GDPR applies, e.g. if the data is no longer required for the purposes pursued.
8.4. Restriction of Processing
You have the right to demand that we restrict processing if one of the conditions listed in Art. 18 GDPR is met, e.g. if you have objected to processing, for the duration of our review.
8.5. Data portability
You have the right, under certain conditions, to receive data concerning you that you have provided to us in a structured, commonly used and machine-readable format, to transmit it and, where technically feasible, to have it transmitted, Art. 20 GDPR.
8.6. Complaint
Irrespective of other administrative or judicial remedies, you have the right to lodge a complaint with a supervisory authority if you are of the opinion that the processing of your personal data by us violates the GDPR, Art. 77 GDPR. You may exercise this right before a supervisory authority in the Member State of your habitual residence, place of work or place of the alleged infringement. The contact details of the supervisory authorities in Germany can be found here.
8.7. Withdrawal (of Consent)
If you have given us your data protection consent, you have the right to withdraw it at any time with effect for the future. This also applies to data protection consents that you gave us before the GDPR came into force.
8.8. Objection
You also have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on lit. (e) or (f) of Article 6(1) GDPR. We will then no longer process this data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the establishment, exercise or defense of legal claims (Art. 21 GDPR).
If your personal data is used by us for direct marketing (e.g. by e-mail), you have the right to object to the use of your data for these purposes at any time. This also applies to profiling insofar as it is associated with direct advertising. Profiling means the use of personal data to analyze or predict certain personal aspects (e.g. interests).