Legal

Privacy Policy

How we collect, use, and protect your personal data.

Privacy Policy Details

Last updated:

1. Controller

The data controller responsible for your personal data is:

Kyxrelynvel
Sonnenberger Str. 80A, 65193 Wiesbaden, Germany
Phone: +49 611 89040808
Email: partners@kyxrelynvel.site

2. Scope and Purpose

This Privacy Policy applies to all personal data collected through our website at kyxrelynvel.ddd. We process personal data in compliance with the General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG), and other applicable data protection laws.

We collect and process personal data only when there is a lawful basis to do so, and only to the extent necessary for the stated purpose.

3. Data We Collect

We may collect the following categories of personal data:

  • Contact data provided through the contact form: name, email address, and message content.
  • Technical data: IP address, browser type and version, operating system, referral URL, and pages visited (collected automatically via server logs or analytics tools).
  • Cookie data: as described in our Cookie Policy.

4. Legal Basis for Processing

We process your data based on the following legal grounds under GDPR Art. 6:

  • Art. 6(1)(a) — Consent: For analytics and marketing cookies, where you have given explicit consent.
  • Art. 6(1)(b) — Contractual necessity: When processing is required to respond to your enquiry.
  • Art. 6(1)(c) — Legal obligation: Where required by applicable law.
  • Art. 6(1)(f) — Legitimate interests: For website security and operational analytics, where our interests are not overridden by your rights.

5. Retention Periods

We retain your personal data only as long as necessary for the purposes for which it was collected:

  • Contact form data: up to 24 months from the date of submission, unless a longer period is required by law.
  • Server log data: up to 7 days, then automatically deleted.
  • Cookie data: as defined in the Cookie Policy.

6. Data Sharing and Third Parties

We do not sell or rent your personal data to third parties. We may share data with trusted service providers (processors) who assist us in operating the website, subject to appropriate data processing agreements. All processors are required to maintain the security of your data and may not use it for their own purposes.

Where data is transferred outside the European Economic Area (EEA), we ensure adequate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission.

7. Contact Requests

If you contact us via the contact form, we process the information you provide solely to handle your request and any necessary follow-up communication. Providing this data is voluntary, but without the required fields we may be unable to process your enquiry.

8. Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Right of access (Art. 15): Request a copy of the data we hold about you.
  • Right to rectification (Art. 16): Request correction of inaccurate or incomplete data.
  • Right to erasure (Art. 17): Request deletion of your data under certain conditions.
  • Right to restriction (Art. 18): Request that we limit processing of your data.
  • Right to data portability (Art. 20): Request your data in a structured, commonly used format.
  • Right to object (Art. 21): Object to processing based on legitimate interests.
  • Right to withdraw consent (Art. 7(3)): Withdraw consent at any time without affecting prior lawful processing.

To exercise any of these rights, contact us at the address listed in Section 1. We will respond within 30 days. You also have the right to lodge a complaint with the supervisory authority: Der Hessische Beauftragte für Datenschutz und Informationsfreiheit, Gustav-Stresemann-Ring 1, 65189 Wiesbaden, Germany, https://datenschutz.hessen.de/.

9. Automated Decision-Making

We do not use your personal data for automated decision-making, including profiling, within the meaning of Art. 22 GDPR.

10. Children and Minors

This website is intended for a general audience and is not directed at children under 16 years of age. We do not knowingly collect personal data from children under 16 without appropriate legal basis.

11. Security Measures

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, or destruction. Our website uses HTTPS encryption for all data in transit.

12. Links to Other Websites

Our website may contain links to external sites. We are not responsible for the privacy practices or content of those sites and encourage you to review their privacy policies independently.

13. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be published on this page with an updated date. Continued use of the website after changes constitutes acceptance of the revised policy.