Data protection
Introduction
At SecurityDocs GmbH (hereinafter referred to as “the Company”, “we” or “us”), the protection of your personal data is of paramount importance. This privacy policy outlines the processing of personal data in connection with our services and website, in accordance with the EU General Data Protection Regulation (GDPR).
A. General Information
(1) Terminology
The terminology used is consistent with Article 4 of the GDPR, including:
Personal data: Any information relating to an identified or identifiable natural person.
Processing: Any operation involving personal data (e.g., collection, storage, deletion).
Controller: The entity determining the purposes and means of the processing.
Processor: A third party acting under the instructions of the controller.
Consent: Freely given, specific, informed and unambiguous indication of the data subject’s wishes.
(2) Controller
SecurityDocs GmbH
Rheinpromenade 9
40789 Monheim am Rhein
Germany
Email: info@securitydocs.de
Phone: +49 2173 264138
Further details can be found in our legal notice.
(3) Data Protection Officer
For any questions regarding data protection, contact:
Email: info@securitydocs.de
(4) Legal Bases for Processing
Data processing is carried out only where a lawful basis under Art. 6(1) GDPR exists, including:
Consent (lit. a)
Contract performance or pre-contractual steps (lit. b)
Legal obligation (lit. c)
Vital interests (lit. d)
Public interest (lit. e)
Legitimate interests (lit. f)
(5) Storage Period and Deletion
Personal data is retained only for as long as necessary for the stated purpose or as required by law, and then deleted or anonymized.
(6) Data Security
We implement appropriate technical and organizational measures to ensure data security in accordance with Art. 32 GDPR.
(7) Processors
External service providers are contractually obligated to comply with data protection laws under Art. 28 GDPR.
(8) Third-Country Transfers
Data may be transferred to third countries only if appropriate safeguards exist, e.g., adequacy decisions or standard contractual clauses.
(9) Automated Decision-Making
We do not use automated decision-making, including profiling, as defined in Art. 22 GDPR.
(10) Voluntary Data Provision
There is no legal obligation to provide data; however, non-provision may limit service availability.
(11) Legal Disclosure Requirements
We may be legally required to disclose personal data to public authorities.
(12) Data Subject Rights
Under GDPR, you have the right to:
Access (Art. 15)
Rectification (Art. 16)
Erasure (Art. 17)
Restriction (Art. 18)
Data portability (Art. 20)
Object (Art. 21)
Withdraw consent (Art. 7(3))
Lodge a complaint (Art. 77)
(13) Updates to This Policy
We regularly review and update this privacy policy. The current version is available at www.securitydocs.de/privacy.
B. Data Processing on Our Website
(1) Server Log Data
When accessing our website, the following data is collected:
Anonymized IP address
Date and time of access
Browser type/version
Operating system
Referrer URL
Access status
Purpose: Security, stability, error analysis
Legal basis: Art. 6(1)(f) GDPR
(2) Contact Forms
Data entered into contact forms is used to respond to inquiries.
Legal basis: Art. 6(1)(b) or (f) GDPR
(3) Cookies & Tracking
Cookies are used for functionality and, upon consent, for analytics and marketing.
Necessary cookies: Art. 6(1)(f)
Analytics/marketing cookies: Art. 6(1)(a)
(4) Integrated Tools
Google Analytics 4
Usage analysis with IP anonymization; third-country transfers possible.
Legal basis: Consent under Art. 6(1)(a) GDPR
YouTube (enhanced privacy mode)
Data is transmitted only upon video playback.
Legal basis: Art. 6(1)(f) or (a) GDPR
Social Media (e.g., Meta, LinkedIn)
Joint controllership may apply for insights data.
Legal basis: Art. 6(1)(f) GDPR
