Nisius

🇩🇪 DE|🇺🇸 EN

Privacy Policy

Preamble With the following privacy policy, we would like to inform you about the types of your personal data (hereinafter also referred to as “data”) that we process, for what purposes, and to what extent. The privacy policy applies to all processing of personal data carried out by us, both in the context of providing our services and in particular on our websites, in mobile applications, and within external online presences, such as our social media profiles (hereinafter collectively referred to as “Online Offer”).

The terms used are not gender-specific.

Status: December 10, 2025

Controller

dummy placeholder

Imprint: Legal Notice

Relevant Legal Bases Relevant legal bases under the GDPR: In the following, you will find an overview of the legal bases of the GDPR on which we process personal data. Please note that in addition to the regulations of the GDPR, national data protection regulations may apply in your or our country of residence or domicile.

  • Consent (Art. 6 (1) (a) GDPR): The data subject has given consent to the processing of his or her personal data for one or more specific purposes.
  • Performance of a contract and prior requests (Art. 6 (1) (b) GDPR): Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.
  • Legitimate Interests (Art. 6 (1) (f) GDPR): Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data.

Security Measures We take appropriate technical and organizational measures in accordance with the legal requirements, taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons, to ensure a level of security appropriate to the risk.

  • SSL/TLS encryption (HTTPS): To protect your data transmitted via our online services, we use SSL/TLS encryption technology. You can recognize such encrypted connections by the prefix https:// in the address bar of your browser.

International Data Transfers Data processing in third countries: If we process data in a third country (i.e., outside the European Union (EU) or the European Economic Area (EEA)) or if this occurs in the context of the use of third-party services or the disclosure or transfer of data to other persons, bodies or companies, this is only done in accordance with the legal requirements. For data transfers to the USA, we primarily rely on the Data Privacy Framework (DPF), which was recognized by the EU Commission as a secure legal framework on July 10, 2023. Additionally, we use Standard Contractual Clauses with providers to ensure your data is protected.

Provision of the Online Offer and Web Hosting We process user data to provide our online services. For this purpose, we process the user’s IP address, which is necessary to transmit the content and functions of our online services to the user’s browser or device.

  • Processed data types: Usage data (e.g., websites visited, interest in content, access times), Meta/communication data (e.g., device information, IP addresses).
  • Service Providers used:
    • ALL-INKL: Hosting services; Service provider: ALL-INKL.COM – Neue Medien Münnich, Hauptstraße 68, 02742 Friedersdorf, Germany.
    • WordPress.com: Hosting/Software for websites and blogs; Service provider: Aut O’Mattic A8C Ireland Ltd., Dublin, Ireland.
    • Wordfence: Security and firewall functions; Service provider: Defiant, Inc., 800 5th Ave Ste 4100, Seattle, WA 98104, USA. (Basis: Standard Contractual Clauses).

Use of Cookies Cookies are small text files that are stored on your device. We use cookies in accordance with legal regulations.

  • Consent: If we ask for your consent to use cookies, the legal basis is your declared consent.
  • Legitimate Interest: Otherwise, cookies that are necessary for the functionality and security of our online offer are used based on our legitimate interests.
  • Storage duration: We distinguish between temporary cookies (session cookies, deleted after closing the browser) and permanent cookies (remain stored).
  • Consent Management: We use a consent management solution to obtain and manage your consent for cookies (e.g., for analytics).

Contact and Inquiry Management When contacting us (e.g., via contact form, email), the data of the inquiring persons are processed insofar as this is necessary to answer the contact inquiries and any requested measures.

Web Analysis, Monitoring, and Optimization Web analysis (also referred to as “reach measurement”) is used to evaluate the visitor flows of our online offer and can include behavior, interests, or demographic information about the visitors, such as age or gender, as pseudonymous values.

  • Google Analytics: We use Google Analytics to measure and analyze the use of our online offer based on a pseudonymous user identification number.
    • Service Provider: Google Ireland Limited, Dublin, Ireland.
    • Legal Basis: Consent (Art. 6 (1) (a) GDPR).
    • Data Transfer to USA: Based on the Data Privacy Framework (DPF) and Standard Contractual Clauses.
    • IP Anonymization: Your IP address is shortened (masked) within the EU before being transferred to US servers.
    • Opt-Out: You can revoke your consent at any time via our cookie settings or by using the Google Analytics Opt-Out Browser Add-on.

Deletion of Data The data processed by us will be deleted in accordance with the legal provisions as soon as the consents permitted for processing are revoked or other permissions cease to apply (e.g., the purpose of processing this data no longer applies or they are not required for the purpose). So far as data are not deleted because they are required for other and legally permissible purposes, their processing is limited to these purposes.

Rights of Data Subjects As a data subject, you have various rights under the GDPR, in particular:

  • Right of Access (Art. 15 GDPR)
  • Right to Rectification (Art. 16 GDPR)
  • Right to Erasure (“Right to be forgotten”) (Art. 17 GDPR)
  • Right to Restriction of Processing (Art. 18 GDPR)
  • Right to Data Portability (Art. 20 GDPR)
  • Right to Object (Art. 21 GDPR)

You can exercise these rights at any time by contacting us at the contact details provided above.

Lädt...