Privacy Policy

This privacy policy explains how verixon processes personal data under the GDPR, the German Federal Data Protection Act, and the German rules on cookies and similar technologies. It applies to the current website and may be supplemented by service-specific notices or contracts where required.

Controller

The controller within the meaning of Art. 4(7) GDPR is verixon. The current contact details, postal address, and communication channels are listed in the Imprint on this website. If you have privacy-related questions, requests, or objections, you may contact verixon via the contact details published there.

Categories of Data Processed

Depending on how you use the website and services, verixon may process server log data, IP address, browser and device information, contact details, communication content, consent records, newsletter registration data, analytics identifiers, and other data you actively provide. verixon processes only the data required for the respective purpose and legal basis.

Informational Website Use and Server Logs

When you visit the website for informational purposes, verixon and the hosting provider process technically necessary data such as IP address, date and time, requested URL, referrer, user agent, operating system, and HTTP status information. This processing is required to deliver the website, ensure stability and security, detect abuse, and troubleshoot errors. The legal basis is Art. 6(1)(f) GDPR, based on the legitimate interest in secure and technically reliable website operation.

Contact Requests and Business Communication

If you contact verixon by email or through other direct communication channels, the submitted data and the communication content are processed to handle the request, respond to follow-up questions, and document the business communication. The legal basis is Art. 6(1)(b) GDPR if the request concerns pre-contractual measures or contract performance, and otherwise Art. 6(1)(f) GDPR based on the legitimate interest in structured communication and request handling.

Cookies, Similar Technologies, and Consent

verixon uses cookies and similar technologies for technically necessary functionality, consent management, analytics, and newsletter-related or marketing-related features. Where storing information on your device or accessing information from your device is not strictly necessary, this takes place only on the basis of your consent in accordance with Section 25(1) TDDDG and Art. 6(1)(a) GDPR. Strictly necessary technologies may be used without consent if the legal requirements of Section 25(2) TDDDG are met. You can manage your preferences via the cookie consent settings.

Google Analytics

verixon uses Google Analytics to evaluate reach, user flows, and website performance. Google Analytics is used only on the basis of your consent under Art. 6(1)(a) GDPR and Section 25(1) TDDDG. In this context, data may be processed by Google Ireland Limited and, depending on configuration and support access, by Google LLC in the United States. Where third-country transfers occur, verixon relies on the legal transfer mechanism applicable at the time of processing, for example an adequacy decision and/or standard contractual clauses. You may withdraw your consent at any time with effect for the future through the cookie consent settings.

Newsletter and Direct Communication

If verixon offers a newsletter, registration data such as email address, timestamp, IP-related proof data, and consent status is processed to send the newsletter and document the registration. The legal basis is generally Art. 6(1)(a) GDPR. verixon may use a double-opt-in procedure to verify registrations and may log consent for accountability purposes. You may unsubscribe at any time with effect for the future. If newsletter analytics such as open or click measurement are used, this is based on the applicable legal basis and, where required, on consent.

Hosting, Processors, and Recipients

verixon may use hosting providers, email providers, analytics providers, newsletter providers, development service providers, and other technical processors to operate the website and services. Where third parties act as processors, they are engaged on the basis of Art. 28 GDPR. Personal data is disclosed only where necessary for the respective purpose, legally required, or otherwise permitted by law.

International Data Transfers

If personal data is transferred to recipients outside the European Union or the European Economic Area, verixon ensures that such transfer is based on a valid legal mechanism, for example an adequacy decision by the European Commission, standard contractual clauses, or another lawful transfer basis. This may become relevant in particular when using US-based providers such as Google services.

Retention Periods

Personal data is stored only for as long as necessary for the respective purpose, for contractual processing, for legitimate documentation interests, or to comply with statutory retention periods, in particular under commercial and tax law. Once the purpose no longer applies and no statutory retention obligation or other legal basis exists, the data is deleted or anonymized.

Your Rights

Subject to the statutory requirements, you have the right of access, rectification, erasure, restriction of processing, data portability, and objection under Arts. 15 to 21 GDPR. Where processing is based on consent, you may withdraw that consent at any time with effect for the future. This does not affect the lawfulness of processing carried out before the withdrawal.

Right to Object

If verixon processes your data on the basis of Art. 6(1)(f) GDPR, you may object to the processing on grounds relating to your particular situation. If personal data is processed for direct marketing purposes, you have the right to object at any time to such processing, including profiling insofar as it is related to direct marketing.

Supervisory Authority

You also have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, your place of work, or the place of the alleged infringement. In Germany, this is usually the competent state data protection authority.

Updates to this Policy

verixon may update this privacy policy if the website, legal requirements, provider setup, analytics configuration, newsletter process, or cookie implementation changes. The latest version published on this website applies.