Privacy Policy
Data Controller
The data controller responsible for data processing on this website is:
[Company Name] GmbH
[Street Address]
[Postal Code] [City], Germany
Email: [datenschutz@example.com]
Data Collection and Processing
Server Log Files
When you visit this website, the web server automatically collects and stores information in server log files, which your browser transmits to us. This includes:
- IP address (anonymized)
- Browser type and version
- Date and time of access
- Pages visited
Legal basis: Art. 6(1)(f) GDPR (legitimate interest in ensuring the technical operation and security of the website).
Authentication Data
If you register or log in to use the management area of this platform, we process the following data via our self-hosted identity provider (Keycloak):
- Username
- Email address
- Assigned role (e.g. operator, supplier)
Legal basis: Art. 6(1)(b) GDPR (performance of a contract or pre-contractual measures).
Cookies
This website uses only technically necessary cookies. No tracking or analytics cookies are used. For details, see our Cookie Information page.
Data Transfer to Third Parties
No personal data is transferred to third parties. All infrastructure (database, authentication, file storage) is self-hosted. No external analytics, CDN, or tracking services are used.
Data Retention
Server log files are deleted after 30 days. Account data is retained for the duration of the account. Session data is deleted upon logout or session expiry.
Your Rights
Under the GDPR, you have the following rights regarding your personal data:
- Right of access (Art. 15 GDPR)
- Right to rectification (Art. 16 GDPR)
- Right to erasure (Art. 17 GDPR)
- Right to restriction of processing (Art. 18 GDPR)
- Right to data portability (Art. 20 GDPR)
- Right to object (Art. 21 GDPR)
Right to Lodge a Complaint
You have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data violates the GDPR.