Data Protection

We are pleased about your visit to our website and your interest in our company. We take the utmost care in handling your data. The following information provides a compact and simple overview of what happens to your data when you visit our website. The processing of your data is carried out in accordance with the relevant legal provisions.

Controller

Forensik.IT GmbH
Machtlfingerstraße 26
81379 Munich
Germany

Contact for Data Protection Inquiries

We have appointed a data protection officer. For questions on data protection, you can reach them at: datenschutz@confidentdata.de

The internal reporting office of Forensik.IT GmbH can be reached at fit_hinweise@protonmail.com.

Validity and Changes to the Privacy Policy

This privacy policy is valid and dated 14th of September 2022. Due to the further development of our website or the implementation of new technologies and features, it may become necessary to change this privacy policy. We reserve the right to make corresponding changes at any time.

Hosting

Use of an External Hosting Provider

We use an external service provider for hosting our website.

Provider:
Hetzner Online GmbH
Industriestr. 25
91710 Gunzenhausen
Germany

Purpose: Reliable accessibility and presentation of our website.

Legal basis: The use of our hosting provider is based on our legitimate interest in the most reliable accessibility and presentation of our website possible, pursuant to Art. 6 para. 1 lit. f GDPR.

Data processing agreement: We have concluded a data processing agreement (DPA) with our hosting provider, which ensures that the personal data of our website visitors is only processed according to our instructions and in compliance with the GDPR.

SSL/TLS encryption: To protect the security of your data during transmission, we use SSL/TLS encryption via HTTPS.

Data Processing on the Website

Contact Requests

Purpose: Processing of the request.

Type of data processing: Inquiries by email, telephone, or fax including all resulting personal data are stored and processed for the purpose of handling the request. Data will not be shared without your consent. Your data is not stored on our mail server. Your inquiry is transmitted directly to us via email.

Legal basis: The processing of your inquiry is based on our legitimate interest in pursuing our business interests pursuant to Art. 6 (1) lit. f GDPR. If your contact is made to request an offer, processing is carried out for the implementation of pre-contractual measures pursuant to Art. 6 (1) lit. b GDPR.

Provision of your data voluntary or required: The provision of your data is neither legally nor contractually required. However, without this information, processing of the request is not possible.

Storage period: Your data will be deleted no later than 6 months after processing the request. If a contractual relationship arises, we are subject to legal retention periods and delete your data after six or ten years.

Online Contact Form

By providing an online contact form, we would like to enable you to contact us easily. The information you provide will be stored for the purpose of processing the request and for possible follow-up questions, taking into account the above-mentioned storage period.

No storage of server log files: When visiting our website, we do not collect any personal browser data in the form of server log files.

No use of cookies, analytics technologies, third-party tools or other external plug-ins: We explicitly point out that no cookie or analytics technologies, third-party tools or other external plug-ins are currently integrated on our website.

Data Security

We use technical and organizational security measures to protect your personal data against misuse, loss, destruction or access by unauthorized persons. The security measures taken (such as encryption procedures, firewall and virus protection, backup and recovery procedures) correspond to the current state of the art and are continuously updated.

We would like to point out, however, that there is always a certain residual risk in communication via the Internet, which depends on the respective usage behavior of the user and over which we therefore have no influence.

Tracking and Other SEO Tools

Forensik.IT GmbH does not store or process any data that arises when visiting the website www.forensik.it. No cookies are set. SEO tools (such as Google Analytics) are not used.

Data Protection Rights and Information on the Right to Object

Your Rights

Every data subject has the right of access under Art. 15 GDPR, the right to rectification under Art. 16 GDPR, the right to erasure under Art. 17 GDPR, the right to restriction of processing under Art. 18 GDPR, the right to object under Art. 21 GDPR, and the right to data portability under Art. 20 GDPR.

The restrictions under §§ 34 and 35 BDSG apply to the right of access and the right to erasure.

You may revoke your consent to the processing of personal data at any time. This also applies to the revocation of declarations of consent that were given to us before the General Data Protection Regulation came into force, i.e. before May 25, 2018. Please note that the revocation only takes effect for the future. Processing that took place before the revocation is not affected.

In addition, there is a right to lodge a complaint with a competent data protection supervisory authority (Art. 77 GDPR in conjunction with § 19 BDSG). A list of supervisory authorities (for the non-public sector) with addresses can be found at: https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html

Information on the Right to Object under Art. 21 GDPR

Individual right to object and recipient of the request:

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Art. 6 (1) lit. f GDPR (data processing on the basis of a balancing of interests); this also applies to profiling based on this provision within the meaning of Art. 4 No. 4 GDPR.

If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for processing that override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

The objection can be made informally with the subject "Objection" stating your name, address or other identifying features to the contact details provided in the imprint.

Routine Deletion of Data

We generally only store your data for the period necessary to achieve the storage purpose or as required by the European legislator or other legislators in laws or regulations to which we are subject.

For Germany, there is a particular obligation to retain records for 6 years pursuant to § 257 (1) of the German Commercial Code (in particular commercial books, inventories, opening balances, annual financial statements, business letters, accounting vouchers). Pursuant to § 147 (1), (3) of the German Fiscal Code, 10 years for books, records, management reports, accounting vouchers, documents relevant for taxation, and 6 years in particular for commercial and business letters.

When the storage purpose no longer applies or a legally prescribed storage period expires, your personal data will be routinely deleted in accordance with legal requirements.