Privacy

Privacy policy

The EU General Data Protection Regulation (GDPR) obliges us to provide you with detailed and comprehensive information about the processing of your personal data and your rights as a "data subject".

The following data protection information provides an overview of the collection and processing of your data on our websites. The complete information can be found in our privacy policy.

→ Detailed privacy policy
→ Your rights

 

What information do we collect from you?

1. When you visit our website.
The IP address is recorded in a log file. This serves to ensure operation and protect against attacks. These log files are deleted after seven days.

2. Based on your entries on our website.
On a contact form: your first and last name and your e-mail address and, if applicable, company, industry, telephone and WhatsApp number as well as your message to us.

3. How do we collect your data?
We automatically log the data that we collect every time you access it; otherwise only on the basis of your inputs.

What do we use your data for?

  1. for the provision, optimisation and security of our website
  2. only with your consent to receive your message and to process your order
  3. for the pursuit of legal interests.

We do not use your data for profiling, advertising or disclosure to third parties.

However, personal data may be passed on to third parties when you visit our homepage if third-party services integrated on our websites are used. You can find detailed information on this in our privacy policy. (see below)

What rights do you have?

  1. Information about data that is stored about you
  2. Deletion of your personal data, provided that there are no legal retention obligations to the contrary (e.g. in the case of invoices for your orders for legally compliant accounting)
  3. Rectification of your data
  4. Objection to the storage or use of your data

Further details on your rights can be found under the respective sub-points in the detailed privacy policy. (see below)

Due to the regulations of the GDPR, we are not obliged to appoint a data protection officer. If you have any questions about the protection of your data and to exercise your rights, please contact:

1st Flow Energy Solutions GmbH
Riegeler Straße 14
79364 Malterdingen / Germany

E-Mail: info@1stflow-energy.com

 

Privacy policy

With this privacy policy, we provide you with detailed and complete information about the type, scope and purpose of the processing of personal data on our websites. Personal data is all data that has a personal connection, such as name, gender, e-mail address, address or usage behavior.

The responsible party for data processing (responsible body) is the operator of the website, in this case:

1st Flow Energy Solutions GmbH, represented by Frank Fuchs

Website hosting

Our website is hosted by an Internet service provider. This means that our websites are stored on the server of this provider and are thus available on the Internet.
Third-party labeling: The hosting is carried out by the Internet service provider Telekom Deutschland GmbH, Landgrabenweg 151, 53227 Bonn.

1. Description and scope of data processing

The provider processes contact data, content data, usage data, inventory data, meta and communication data as well as contract data on our behalf.

The legal basis for this is our legitimate interest in the secure and efficient provision of our online services (order processing agreement between us and the Internet service provider Art. 6 para. 1 lit. f GDPR in conjunction with Art. 28 GDPR).

If you visit our websites without making any entries yourself, only the personal data that your browser transmits to the server will be collected by the provider. These are:

  • IP address
  • Date and time of your access to our websites
  • Time zone deviation from Greenwich Mean Time (GMT)
  • Access status (HTTP status)
  • Amount of data transferred
  • Internet service provider of the accessing system
  • Browser type and version you are using
  • Operating system you are using Website from which you came to our website
  • All pages and subpages that you visit on our website

This data is stored in log files on the server of our Internet service provider.

2. Legal basis for data processing

The legal basis for this is regulated by Art. 6 para. 1 sentence 1 lit. f GDPR.

3. Purpose of data processing

The data processing is necessary for our website to be displayed correctly and to ensure the stability of the websites and security.

4. Duration of storage

The above data will be stored for the 7 days and then deleted.

5. Objection and removal option

Since the processing of the aforementioned data is absolutely necessary for the provision of our websites, you have no right to object in this case. If you want to prevent the data processing described, you can refrain from visiting our websites.

Cookies

Our website uses cookies. These are text files that consist of a series of numbers and letters.

1. Description and scope of data processing

This website only uses technically necessary, temporary cookies:

Two technically necessary cookies are used in contact forms:

  • PHPSESSID – helps to recognize the user on the target page
  • csrf_https-contao_csrf_token – helps prevent cross-site request forgery (CSRF) attacks

These cookies are set when the form is submitted to enable form submission.

No consent is required for technically necessary cookies.

2. Legal basis for data processing

The legal basis for the use of this data via the use of cookies is Art. 6 para. 1 sentence 1 lit. f GDPR.

3. Purpose of data processing

With the described use of the data via cookies, we can guarantee the functionality of our website.

4. Duration of storage, objection and deletion: Your options for controlling and deleting cookies

The cookies are stored on your device. This gives you full control over their storage and deletion. You can use the settings of your browser to determine whether cookies are stored at all, temporarily or permanently. However, if you disable cookies for our websites in general, you may not be able to use all of the website's functions to their full extent.

Contact form, e-mail and postal contact

If you use our contact form, contact us by post or e-mail, you can transmit personal data to us.

1. Description and scope of data processing

This data can be:

  • Name
  • Address
  • E-mail-Address
  • Telephone number
  • Sex
  • and other data that you may enter in free message fields or your e-mail

To ensure that your data cannot be read by others, we technically ensure secure encryption using suitable and appropriate procedures. This can be done, for example, via Let's Encrypt or SSL certificates.

We only store the data that we need to communicate with you.

2. Legal basis for data processing

The legal basis for data processing is Art. 6 (1) (a) GDPR.

3. Purpose of data processing

We store and process the aforementioned data automatically. They are processed exclusively for correspondence with you.
This data will not be passed on to third parties.

4. Possibility of objection and removal as well as duration of storage

If you want your data stored by us to be deleted, you can object to the data processing at any time. However, if we no longer need the data for correspondence with you, it will also be deleted – we will check the necessity of further storage every 2 years.

If you want to prevent us from storing and processing such data about you, you can refrain from using the contact form or sending e-mails to us.

Links to other websites and social media providers (such as "Facebook" or "Instagram")

Our offer may contain links to external websites of third parties, the content of which we have no influence on. Therefore, we cannot assume any liability for this third-party content. The respective provider or operator of the pages is always responsible for the content of the linked pages. The linked pages were checked for possible violations of the law at the time of linking. Illegal content was not recognizable at the time of linking. However, a permanent control of the content of the linked pages is not reasonable without concrete indications of a violation of the law. If we become aware of any violations of the law, we will remove such links immediately.

We do not store any data on the use of the external links provided on our websites by visitors to our website.

Please note, however, that when visiting the website via one of these links, personal data could be stored by the provider/operator of the target page. The disclosure obligations according to the GDPR are the responsibility of the respective site operator. When you visit the site, they must provide you with comprehensive information about the collection and use of your personal data and inform you of your rights.

If you have a user account/account with the social media provider visited via the link set on our websites, the provider may collect personal data. According to the GDPR, the provider is obliged to provide you with comprehensive information about this data collection and processing and to present your rights in this context. Even if you do not have a user account/account with the social media provider visited via the link set on our websites, personal data concerning you may be stored and processed by the provider.

With our technical and organizational possibilities, we cannot conclusively check or prevent this with reasonable effort. However, because we take the privacy of our website visitors very seriously, we immediately remove links to such providers from affected social media services as soon as there is a reasonable suspicion that this may be the case.

As soon as there are legal requirements or legal decisions that clearly regulate these cases and the responsibility of us as a site operator in these cases, we will adapt our data protection measures and notices accordingly and, if necessary, refrain from integrating these external links.

 

Your rights

If we process your personal data, you are a data subject within the meaning of the GDPR and therefore you have the following rights:

A. Right to information (Art. 15 GDPR)

You can ask us to confirm to you whether personal data concerning you is being processed by us.

When we process your data, we need to provide the following information:

  • all purposes of the processing of personal data
  • the categories of personal data we process
  • the recipients or categories of recipients to whom we have disclosed or will disclose personal data concerning you Duration of storage of your personal data or, if it is not possible to provide specific information on this, our criteria for determining the storage period
  • the existence of your rights to rectification and erasure, restriction of processing and objection to processing by us in relation to your personal data
  • Your right to lodge a complaint with a supervisory authority
  • all available information about the origin of the data, if the personal data stored or processed by us was not collected by you
  • Your right not to be subject to a decision based solely on automated processing – including profiling – that produces legal effects concerning you or similarly significantly affects you (Art. 22 GDPR)..

You have the right to request information as to whether your personal data is transferred to a third country or to international organisations. In this context, you can request to be informed about suitable safeguards in connection with the data transfer (in accordance with Art. 46 GDPR). We also expressly refer to the right to data portability (Art. 20 GDPR).

B. Right to rectification (Art. 16 GDPR)

You have the right to rectify and/or complete your personal data stored by us vis-à-vis us as the controller, if your personal data processed by us is incorrect or incomplete. We, as controllers, must then make the correction/completion immediately.

C. RRight to restriction of data processing (Art. 18 GDPR)

Under the conditions described below, you can request restrictions on the processing of personal data concerning you:

  • If you contest the accuracy of the data, for a period of time that allows us to verify the accuracy of the personal data.
  • If the processing of your data is unlawful, you reject the deletion of the data, but want the data to be restricted.
  • If we no longer need your personal data for processing purposes, but you need this data to establish, exercise or defend legal claims.
  • If you have objected to data processing, but it has not yet been clarified whether legitimate reasons that would allow further data processing despite the objection outweigh your rights.

D. Right to erasure (Art. 17 GDPR)

Obligation to delete

You can request that we delete personal data concerning you without delay.

If we have made the personal data concerning you public and are obliged to delete the data in accordance with Art. 17 para. 1 GDPR, we must take appropriate technical and organisational measures to inform the controllers who process your personal data that you, as a data subject, have requested the deletion of the links to the personal data and copies of this personal data.

Exceptions

However, the right to erasure does not apply if we are entitled to process the personal data for the following purposes:

  • to comply with a legal obligation
  • to assert, exercise or defend legal claims
  • on the exercise of the right to freedom of expression and information
  • for reasons of public interest referred to in Art. 17 (3) (c) and (d) GDPR.

E. Right to information (Art. 19 GDPR)

If you exercise a right to rectification, erasure or restriction of the processing of personal data against us as the controller, we are obliged to notify those to whom personal data concerning you have been disclosed, the correction, erasure of the data or restriction of processing of the data. However, if this is impossible or would involve disproportionate effort, we are not obliged to do so.

You are also entitled to be informed by us about the recipients of the personal data concerning you.

F. Right to data portability (Art. 20 GDPR)

You have the right to request that we provide you with the personal data concerning you in a commonly used, machine-readable format or to forward it to another controller.

G. Right to object (Art. 21 GDPR)

You have the right to object at any time to the processing of personal data concerning you on grounds relating to a particular situation in which you find yourself.

We will then no longer process the personal data concerning you unless we can demonstrate compelling legitimate grounds for doing so that outweigh your interests, rights and freedoms. This also applies if the processing serves to assert, exercise or defend legal claims.

Of course, you have the right to object to the processing of your personal data for advertising or data analysis purposes at any time.
Please send your objection to the address mentioned in the privacy policy above.

H. Right of withdrawal (Art. 7 para. 3 GDPR

You have the right to withdraw your consent to the processing of your data at any time. The revocation does not affect the lawfulness of the processing carried out on the basis of the consent before the revocation.

I. Right to lodge a complaint (Art. 77 GDPR)

In accordance with Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority. To do so, you can contact the supervisory authority of your usual place of residence, your place of work or our company headquarters.

You will then be informed by the supervisory authority about the status and results of your complaint. (including the possibility of legal remedies under Art. 78 GDPR)

Competent supervisory authority for the Federal Republic of Germany:

Federal Commissioner for Data Protection and Freedom of Information
Bundesbeauftragte für den Datenschutz und die Informationsfreiheit

Graurheindorfer Str. 153

53117 Bonn


Telefon: +49(0)228-997799-0

E-Mail: poststelle@bfdi.bund.de

Stand dieser Kontaktinformationen ist der 01.08.2021

Safety measures

We take technical and organisational security measures that comply with the current state of the art and the provisions of data protection laws and regulations in order to protect your data against manipulation, loss or unauthorised access by third parties.

Up-to-dateness and modification of this privacy policy

This privacy policy is as of 01.12.2024. Due to changing legal or official regulations, it may be necessary to adapt the privacy policy. We constantly check this within the framework of our legal obligations and implement it accordingly within the framework of legally prescribed deadlines.