Privacy Policy

Information on data protection according to GDPR

Data Protection at a Glance

General Information

The following information provides a simple overview of what happens to your personal data when you visit our website. Personal data is any data that can be used to personally identify you. Detailed information on data protection can be found in our privacy policy listed below this text.

Data Collection on Our Website

Who is responsible for data collection on this website?

Data processing on this website is carried out by the website operator. Their contact details can be found in the legal notice of this website.

How do we collect your data?

Your data is collected firstly by you providing it to us. This could be data that you enter in a contact form, for example. Other data is collected automatically or with your consent when you visit the website through our IT systems. This is primarily technical data (e.g., internet browser, operating system, or time of page access). This data is collected automatically as soon as you enter our website.

What do we use your data for?

Part of the data is collected to ensure error-free provision of the website. Other data may be used to analyze your user behavior.

What rights do you have regarding your data?

You have the right to receive information about the origin, recipient, and purpose of your stored personal data free of charge at any time. You also have the right to request the correction or deletion of this data. If you have given consent to data processing, you can revoke this consent at any time for the future. You also have the right to request the restriction of processing of your personal data under certain circumstances. Furthermore, you have the right to lodge a complaint with the competent supervisory authority. You can contact us at any time regarding this and other questions about data protection.

Responsible Party

The responsible party for data processing on this website is xelonic technology GmbH. Full contact details can be found in our imprint.

The responsible party is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data (e.g., names, email addresses, etc.).

Data Protection Officer

We have not appointed a data protection officer as we are not among the cases specified in Art. 37 GDPR. For data protection questions, you can contact us directly.

Data Collection on Our Website

Use of Cookies

This website uses cookies to provide certain functions and improve user experience. For detailed information about the types of cookies we use, how we use them, and how you can manage your cookie preferences, please refer to our separate Cookie Policy.

Server Log Files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • Browser type and browser version
  • Operating system used
  • Referrer URL
  • Hostname of the accessing computer
  • Time of server request
  • IP address (anonymized after 7 days)

This data is not merged with other data sources. The collection of this data is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of their website - server log files must be recorded for this purpose.

Server log files are stored for a maximum of 30 days and then automatically deleted. Storage beyond this period only occurs if necessary to investigate security incidents.

Inquiry by Email or Phone

If you contact us by email or phone, your inquiry including all resulting personal data (name, inquiry) will be stored and processed by us for the purpose of handling your request. We do not pass on this data without your consent. The processing of this data is based on Art. 6 para. 1 lit. b GDPR if your inquiry is related to the fulfillment of a contract or is necessary for carrying out pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of inquiries directed to us (Art. 6 para. 1 lit. f GDPR) or on your consent (Art. 6 para. 1 lit. a GDPR) if this has been requested. The data you send to us via contact requests will remain with us until you request deletion, revoke your consent to storage, or the purpose for data storage no longer applies (e.g., after your request has been processed). Mandatory legal provisions - especially legal retention periods - remain unaffected.

Analytics and Third-Party Services

Cloudflare Services

We use multiple Cloudflare services to improve website performance and security:

Cloudflare Web Analytics (Cookieless)

A privacy-friendly, cookieless analytics service from Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA.

Processed Data:

  • Page views and time spent
  • Referrer information
  • Browser type (without version)
  • Operating system (without version)
  • Device type (Desktop/Mobile)
  • Country (no precise geolocation)

Special Features:

  • No cookies or local storage
  • No IP address storage
  • No personal data
  • GDPR compliant

Cloudflare Turnstile

A privacy-preserving CAPTCHA alternative for bot protection.

Processed Data:

  • Browser interaction patterns
  • Challenge completion data
  • IP address (for verification only, not stored)
  • Browser and device characteristics

Special Features:

  • No cookies required
  • Privacy-focused design
  • Minimal user interaction
  • Accessibility compliant

Legal Basis: Art. 6 para. 1 lit. f GDPR (legitimate interest in website security and preventing abuse).

More Information: https://www.cloudflare.com/privacypolicy/

Matomo Analytics (Cookieless)

We use Matomo, a privacy-friendly web analytics software that works without cookies. Matomo is operated on our own servers, so no data is transmitted to third parties.

Processed Data:

  • Anonymized IP address (last 2 bytes removed)
  • Date and time of access
  • Title and URL of visited pages
  • Referring website URL
  • Screen resolution
  • Local time
  • Browser and operating system (User Agent)

Legal Basis: Art. 6 para. 1 lit. f GDPR (legitimate interest in statistical analysis of user behavior for optimization purposes).

Retention Period: Data is stored for a maximum of 6 months.

Objection: You can object to data collection by Matomo at any time by activating the "Do Not Track" function in your browser.

Google Analytics

With your explicit consent, we use Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Processed Data:

  • IP address (anonymized)
  • Browser information
  • Operating system information
  • Device information
  • Usage data (pages visited, clicks, scroll behavior)
  • Date and time of visit
  • Geographic location (country/city)

Cookies: _ga (2 years), _gid (24 hours), _gat (1 minute)

Legal Basis: Art. 6 para. 1 lit. a GDPR (your consent).

Data Transfer: Data may be transferred to Google servers in the USA. Google is certified under the EU-US Data Privacy Framework.

Opt-Out: https://tools.google.com/dlpage/gaoptout

LinkedIn Insight Tag

With your explicit consent, we use the LinkedIn Insight Tag from LinkedIn Corporation, 1000 W Maude Ave, Sunnyvale, CA 94085, USA.

Purpose: Conversion tracking, retargeting, and website analytics

Cookies: li_sugr (90 days), UserMatchHistory (30 days), bcookie (2 years)

Legal Basis: Art. 6 para. 1 lit. a GDPR (your consent).

Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out

For more detailed information about cookies and their management, please refer to our separate Cookie Policy.

Automated Decision-Making

We do not use automated decision-making including profiling pursuant to Art. 22 GDPR that has legal effects on you or similarly significantly affects you.

International Data Transfers

If we process data in a third country (outside the European Union or the European Economic Area) or if this happens as part of the use of third-party services, this only occurs if it is necessary to fulfill our (pre-)contractual obligations, based on your consent, due to a legal obligation, or based on our legitimate interests.

Current Data Transfers to Third Countries:

  • USA: Google Analytics (only with your consent), LinkedIn Insight Tag (only with your consent)
  • Legal Basis: EU-US Data Privacy Framework, Standard Contractual Clauses

We only transfer your data to third countries for which an adequacy decision by the EU Commission exists or where we can provide appropriate safeguards (e.g., EU standard contractual clauses).

Your Rights

Right to Information

You have the right to receive information about your personal data stored with us at any time.

Right to Rectification

You have the right to have incorrect personal data corrected.

Right to Erasure

You have the right to have your personal data deleted, provided there are no legal retention obligations.

Restriction of Processing

You have the right to request the restriction of processing of your personal data.

Data Portability

You have the right to receive your personal data in a structured, common, and machine-readable format.

Right to Object

You have the right to object at any time to the processing of your personal data based on Art. 6 para. 1 lit. e or f GDPR.

Withdrawal of Consent

If processing is based on your consent, you have the right to withdraw it at any time. The lawfulness of processing carried out until withdrawal remains unaffected.

Right to Complain

You have the right to lodge a complaint with a data protection supervisory authority about the processing of your personal data by us. The supervisory authority responsible for us is: Berlin Commissioner for Data Protection and Freedom of Information Alt-Moabit 59-61 10555 Berlin Tel.: +49 30 13889-0 Email: [email protected]

Data Security

SSL/TLS Encryption

This site uses SSL/TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator. You can recognize an encrypted connection by the fact that the browser address line changes from "http://" to "https://" and by the lock symbol in your browser line. When SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Changes to This Privacy Policy

We reserve the right to adapt this privacy policy so that it always complies with current legal requirements or to implement changes to our services in the privacy policy, e.g., when introducing new services. The new privacy policy will then apply to your next visit.

Last Updated: August 2025