Skip to main content
DE

Privacy Policy

1. Data Protection at a Glance

General Information

The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data refers to any information that can be used to identify you personally. For detailed information on data protection, please refer to the complete privacy statement below.

Data Collection on This Website

Who is Responsible for Data Collection?

Data processing on this website is conducted by the website operator. Contact details can be found in the "Responsible Party" section of this privacy statement.

How Do We Collect Your Data?

Your data is collected in two ways: first, when you voluntarily provide it to us (such as through contact forms).

Second, data is automatically collected or collected with your consent when visiting the website through our IT systems. This primarily includes technical data such as browser type, operating system, and page access time. Data collection occurs automatically upon entering this website.

What Do We Use Your Data For?

We use data to ensure proper website functionality. Some data may be analysed to understand user behaviour. If contracts are concluded or initiated through the website, transmitted data may be processed for contract offers, orders, or other service requests.

What Rights Do You Have Regarding Your Data?

You have the right to receive free information about the origin, recipients, and purpose of your stored personal data at any time. You may request correction or deletion of this data. If you provided consent for processing, you may withdraw it at any time for the future. You also have the right to request processing restrictions under certain circumstances, and may lodge complaints with the appropriate supervisory authority.

For these and other data protection questions, you may contact us at any time.

Analysis Tools and Third-Party Tools

Your browsing behaviour may be statistically evaluated during website visits. This is done primarily through analysis programs.

Detailed information about these analysis programs is provided in the complete privacy statement below.

2. Hosting

Our website content is hosted with the following provider:

Strato

The provider is Strato AG, Otto-Ostrowski-Straße 7, 10249 Berlin (hereinafter "Strato"). When you visit our website, Strato collects various log files including your IP addresses.

Further information can be found in Strato's privacy statement: https://www.strato.de/datenschutz/.

Strato usage is based on Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in the most reliable possible presentation of our website. If appropriate consent was requested, processing occurs exclusively under Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, insofar as consent includes cookie storage or access to user device information (such as device fingerprinting) under TDDDG. Consent is revocable at any time.

Data Processing Agreement

We have concluded a Data Processing Agreement (DPA) for using the above-mentioned service. This is a legally required contract ensuring that the provider processes our website visitors' personal data only according to our instructions and in compliance with GDPR.

3. General Information and Mandatory Disclosures

Data Protection

The operators of this website take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with statutory data protection regulations and this privacy statement.

When you use this website, various personal data is collected. Personal data means any information that can be used to personally identify you. This privacy statement explains what data we collect and why we use it, as well as how and for what purpose.

We note that data transmission via the internet (such as email communication) may contain security vulnerabilities. Complete protection of data from third-party access is not possible.

Responsible Party

The responsible party for data processing on this website is:

PFPRO IT Services
Gaußstraße 65
66123 Saarbrücken
Deutschland

Phone: +49 151 22948112
Email: me@pfpro.de

The responsible party is the natural or legal person who alone or jointly with others determines the purposes and means of processing personal data (such as names, email addresses, etc.).

Storage Duration

Unless a specific storage period is stated elsewhere in this privacy statement, your personal data remains with us until the purpose for data processing no longer applies. If you assert a legitimate deletion request or revoke consent for processing, your data will be deleted unless we have other legally permissible reasons for retention (such as tax or commercial law retention periods). In such cases, deletion occurs after those reasons cease.

General Information on Legal Bases for Data Processing

If you have consented to data processing, we process your personal data under Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR when special data categories under Art. 9 para. 1 GDPR are processed. For explicit consent to transfer personal data to third countries, processing is also based on Art. 49 para. 1 lit. a GDPR. If you consented to cookie storage or device access (such as device fingerprinting), processing additionally occurs under § 25 para. 1 TDDDG. Consent is revocable at any time. If your data is required for contract fulfilment or pre-contractual measures, we process it under Art. 6 para. 1 lit. b GDPR. Furthermore, we process your data if required to fulfil legal obligations under Art. 6 para. 1 lit. c GDPR. Data processing may also occur based on our legitimate interests under Art. 6 para. 1 lit. f GDPR. Applicable legal bases are identified in subsequent sections of this privacy statement.

Recipients of Personal Data

In conducting our business, we work with various external parties. Sometimes this requires sharing personal data with these external parties. We only share personal data with external parties when necessary for contract fulfilment, legally required (such as sharing with tax authorities), when we have a legitimate interest under Art. 6 para. 1 lit. f GDPR, or when another legal basis permits data sharing. When using data processors, we only share customer personal data under a valid Data Processing Agreement. For joint processing, a joint processing agreement is concluded.

Withdrawal of Consent for Data Processing

Many data processing activities are only possible with your explicit consent. You may revoke previously granted consent at any time. The lawfulness of data processing before revocation remains unaffected by the revocation.

Right to Object to Data Collection in Special Cases and Direct Marketing (Art. 21 GDPR)

IF DATA PROCESSING IS BASED ON ART. 6 PARA. 1 LIT. E OR F GDPR, YOU HAVE THE RIGHT AT ANY TIME, FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION, TO OBJECT TO PROCESSING YOUR PERSONAL DATA; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE APPLICABLE LEGAL BASIS FOR PROCESSING CAN BE FOUND IN THIS PRIVACY STATEMENT. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR AFFECTED PERSONAL DATA UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR PROCESSING THAT OUTWEIGH YOUR INTERESTS, RIGHTS, AND FREEDOMS, OR PROCESSING SERVES TO ASSERT, EXERCISE, OR DEFEND LEGAL CLAIMS (OBJECTION UNDER ART. 21 PARA. 1 GDPR).

IF YOUR PERSONAL DATA IS PROCESSED FOR DIRECT MARKETING PURPOSES, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO PROCESSING OF YOUR PERSONAL DATA FOR SUCH MARKETING; THIS ALSO APPLIES TO PROFILING INSOFAR AS IT IS CONNECTED WITH SUCH DIRECT MARKETING. IF YOU OBJECT, YOUR PERSONAL DATA WILL NO LONGER BE USED FOR DIRECT MARKETING PURPOSES (OBJECTION UNDER ART. 21 PARA. 2 GDPR).

Right to Lodge a Complaint with the Supervisory Authority

In case of GDPR violations, affected persons have the right to lodge a complaint with a supervisory authority, particularly in the member state of their habitual residence, workplace, or place of alleged violation. This right to complain exists without prejudice to other administrative or judicial remedies.

Right to Data Portability

You have the right to receive data that we process based on your consent or in fulfilment of a contract in an automated, machine-readable format, and to transmit it to yourself or a third party. If you request direct transmission of data to another responsible party, this occurs only if technically feasible.

Information, Correction, and Deletion

Within the scope of applicable legal provisions, you have the right at any time to free information about your stored personal data, its origin and recipients, and the purpose of processing, as well as potentially a right to correction or deletion of this data. For these and other data protection questions, you may contact us at any time.

Right to Restrict Processing

You have the right to request restriction of processing of your personal data. You may contact us at any time regarding this. The right to restrict processing exists in the following cases:

  • If you dispute the accuracy of your personal data stored with us, we generally need time to verify this. During the verification period, you have the right to request restriction of processing of your personal data.
  • If processing of your personal data was/is unlawful, you may request data processing restriction instead of deletion.
  • If we no longer need your personal data but you need it to assert, defend, or claim legal rights, you have the right to request processing restriction instead of deletion.
  • If you have lodged an objection under Art. 21 para. 1 GDPR, a balance must be made between your and our interests. While it remains unclear whose interests prevail, you have the right to request restriction of processing of your personal data.

If you have restricted processing of your personal data, such data may — except for storage — only be processed with your consent or to assert, exercise, or defend legal claims, or to protect the rights of another natural or legal person, or for important public interest reasons of the European Union or a member state.

SSL or TLS Encryption

This website uses SSL or TLS encryption for security reasons and to protect transmission of confidential content, such as orders or enquiries you send to us as the website operator. An encrypted connection is recognised when the browser address bar changes from "http://" to "https://" and by the lock symbol in your browser bar.

When SSL or TLS encryption is activated, data you transmit to us cannot be read by third parties.

Opposition to Advertising Emails

We hereby object to the use of contact information published under legal disclosure requirements for sending unsolicited advertising and informational materials. The website operators expressly reserve the right to take legal action in the event of unsolicited transmission of advertising information, such as spam emails.

4. Data Collection on This Website

Cookies

Our websites use so-called "cookies". Cookies are small data packages that cause no damage to your device. They are either stored temporarily for the duration of a session (session cookies) or permanently (persistent cookies) on your device. Session cookies are automatically deleted after your visit ends. Persistent cookies remain on your device until you delete them yourself or automatic deletion by your web browser occurs.

Cookies may originate from us (first-party cookies) or from third companies (third-party cookies). Third-party cookies enable integration of certain third-party services within websites (such as cookies for payment processing).

Cookies serve various functions. Many cookies are technically necessary, as certain website functions would not work without them (such as shopping cart functionality or video display). Other cookies may be used to analyse user behaviour or for advertising purposes.

Cookies required for electronic communication processes, provision of certain functions you request (such as shopping cart functionality), or website optimisation (such as cookies measuring web audience) are stored under Art. 6 para. 1 lit. f GDPR, unless another legal basis is stated. The website operator has a legitimate interest in storing necessary cookies for technically error-free and optimised service delivery. If consent for cookie storage and similar recognition technologies was requested, processing occurs exclusively under this consent (Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG); consent is revocable at any time.

You may configure your browser to notify you when cookies are set, allow cookies only in individual cases, exclude cookie acceptance for specific cases or generally, or enable automatic cookie deletion when closing the browser. Disabling cookies may limit this website's functionality.

The cookies and services used on this website can be found in this privacy statement.

Consent with Usercentrics

This website uses Usercentrics' consent technology to obtain your consent for storing certain cookies on your device or using certain technologies, and to document this in a compliant manner. The provider of this technology is Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich, website: https://usercentrics.com/de/ (hereinafter "Usercentrics").

When you enter our website, the following personal data is transmitted to Usercentrics:

  • Your consent(s) or withdrawal of consent(s)
  • Your IP address
  • Information about your browser
  • Information about your device
  • Time of your website visit
  • Geolocation

Furthermore, Usercentrics stores a cookie in your browser to attribute your given consents or their withdrawal to you. Data collected this way is stored until you request deletion, delete the Usercentrics cookie yourself, or the purpose for data storage no longer applies. Mandatory legal retention obligations remain unaffected.

The Usercentrics banner on this website was configured with eRecht24 assistance. You can recognise this by the eRecht24 logo appearing in the banner. To display the eRecht24 logo in the banner, a connection to eRecht24's image server is established. Your IP address is also transmitted but stored only in anonymised form in server logs. eRecht24's image server is located in Germany with a German provider. The banner itself is provided exclusively by Usercentrics.

Usercentrics is used to obtain legally required consent for using certain technologies. The legal basis is Art. 6 para. 1 lit. c GDPR.

Data Processing Agreement

We have concluded a Data Processing Agreement (DPA) for using the above-mentioned service. This is a legally required contract ensuring that the provider processes our website visitors' personal data only according to our instructions and in compliance with GDPR.

Server Log Files

The website provider automatically collects and stores information in so-called server log files that your browser automatically transmits to us. These include:

  • Browser type and version
  • Operating system used
  • Referrer URL
  • Hostname of the accessing computer
  • Server request time
  • IP address

Consolidation of this data with other data sources does not occur.

Data collection is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in technically error-free presentation and optimisation of his website — server log files must be collected for this purpose.

Contact Form

When you submit enquiries through our contact form, your information from the enquiry form, including contact data you provide, is stored to process your enquiry and for follow-up questions. We do not share this data without your consent.

Data processing is based on Art. 6 para. 1 lit. b GDPR if your enquiry relates to contract fulfilment or is necessary for pre-contractual measures. In all other cases, processing is based on our legitimate interest in effectively handling enquiries directed to us (Art. 6 para. 1 lit. f GDPR) or your consent (Art. 6 para. 1 lit. a GDPR) if requested; consent is revocable at any time.

Data you enter in the contact form remains with us until you request deletion, revoke your consent to storage, or the purpose for data storage ceases (for example, after completing your enquiry). Mandatory legal provisions — particularly retention periods — remain unaffected.

Enquiry by Email, Phone, or Fax

When you contact us by email, phone, or fax, your enquiry including all resulting personal data (name, enquiry) is stored and processed to handle your concern. We do not share this data without your consent.

Data processing is based on Art. 6 para. 1 lit. b GDPR if your enquiry relates to contract fulfilment or is necessary for pre-contractual measures. In all other cases, processing is based on our legitimate interest in effectively handling enquiries directed to us (Art. 6 para. 1 lit. f GDPR) or your consent (Art. 6 para. 1 lit. a GDPR) if requested; consent is revocable at any time.

Data you send to us through contact enquiries remains with us until you request deletion, revoke your consent to storage, or the purpose for data storage ceases (for example, after handling your concern). Mandatory legal provisions — particularly statutory retention periods — remain unaffected.

5. Analytics and Advertising

Matomo

This website uses the open-source web analytics service Matomo.

With Matomo's assistance, we can collect and analyse data about how website visitors use our website. This enables us to determine, among other things, when page accesses occur and from which region. We also collect various log files (such as IP address, referrer, browsers and operating systems used) and can measure whether website visitors perform specific actions (such as clicks, purchases, etc.).

This analysis tool is used under Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in analysing user behaviour to optimise both its web offering and advertising. If appropriate consent was requested, processing occurs exclusively under Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, insofar as consent includes cookie storage or device information access (such as device fingerprinting) under TDDDG. Consent is revocable at any time.

IP Anonymisation

In Matomo analysis, we use IP anonymisation. Your IP address is shortened before analysis so it cannot be uniquely attributed to you.

Hosting

We host Matomo with the following third-party provider:

Name and contact of the service provider

6. Plugins and Tools

Google Fonts (Local Hosting)

This website uses so-called Google Fonts provided by Google for uniform font display. Google Fonts are installed locally. No connection to Google servers occurs.

More information about Google Fonts can be found at https://developers.google.com/fonts/faq and in Google's privacy statement: https://policies.google.com/privacy?hl=de.

Google Maps

This website uses the Google Maps mapping service. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland. Using this service, we can embed map material on our website.

To use Google Maps functionality, your IP address must be stored. This information is typically transmitted to a Google server in the USA and stored there. The website operator has no influence over this data transmission. When Google Maps is active, Google may use Google Fonts for uniform font display. When calling Google Maps, your browser loads required web fonts into your browser cache to correctly display text and fonts.

Google Maps usage serves our interest in appealing presentation of our online offerings and easy identification of locations specified on our website. This constitutes a legitimate interest under Art. 6 para. 1 lit. f GDPR. If appropriate consent was requested, processing occurs exclusively under Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, insofar as consent includes cookie storage or device access (such as device fingerprinting) under TDDDG. Consent is revocable at any time.

Data transfer to the USA is based on EU Commission Standard Contractual Clauses. Details can be found at: https://privacy.google.com/businesses/gdprcontrollerterms/ and https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.

More information about user data handling can be found in Google's privacy statement: https://policies.google.com/privacy?hl=de.

The company holds certification under the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the USA intended to ensure compliance with European data protection standards in US data processing. Every company certified under the DPF commits to maintaining these data protection standards. You can obtain further information from the provider at the following link: https://www.dataprivacyframework.gov/participant/5780.

As of: 2025/11