Date: September 14, 2025
1. Controller
FreshX Technology OHG
Rosmarinweg 2a, 50859 Cologne, Germany
Phone: +49 176 10626916
Email: kontakt@freshx-technology.com
2. General Data Processing
We process personal data only to the extent necessary for the provision of this website and the processing of requests. Processing is based on the GDPR and – where applicable – the TTDSG.
Categories of data: Master and contact data (e.g., name, email), content data (messages), usage/meta/communication data (e.g., IP address, timestamp, accessed pages, user agent).
Purposes: Website operation, security/error analysis, communication.
Legal basis: Art. 6 para. 1 lit. b GDPR (contract/formation), Art. 6 para. 1 lit. f GDPR (legitimate interest in secure, economical operation), if applicable Art. 6 para. 1 lit. a GDPR (consent).
Storage period: Data is deleted once the purpose ceases and no legal retention obligations apply.
3. Hosting and Server Log Files
Our hosting provider processes, on our behalf, for the provision and delivery of the website, among other things, IP address, date/time of access, URL/referrer, HTTP status, data volume transferred, browser/OS information.
Purpose/interest: Stability, security, technical administration (Art. 6 para. 1 lit. f GDPR).
Storage period: Log data is typically stored briefly (usually up to 30 days) and then deleted.
4. Cookies & Similar Technologies (Only Technically Necessary)
We use exclusively technically necessary cookies/technologies required for the operation and functionality of the website (e.g., session/security cookies or, if applicable, a necessary consent/preference cookie).
Legal basis: § 25 para. 2 TTDSG (no consent required) i. V. m. Art. 6 para. 1 lit. f GDPR.
No tracking: No reach measurement, no marketing tracking, no profiling takes place.
External content: External services that are not technically necessary (e.g., YouTube/Vimeo, maps, analytics tools) are not currently used. If such services are used in the future, they will only be loaded after your consent (opt-in) and documented accordingly here.
5. Contact (Form & Email)
When you contact us, we process your data (e.g., name, email, message) to handle the request, including possible follow-up questions.
Legal basis: Art. 6 para. 1 lit. b GDPR (contract/formation) or Art. 6 para. 1 lit. f GDPR (legitimate interest in efficient communication). With explicit consent: Art. 6 para. 1 lit. a GDPR.
Storage period: Requests are deleted once completed; legal retention obligations remain unaffected.
6. Security of Processing
Transmission occurs via TLS encryption (HTTPS). We take appropriate technical and organizational measures to protect data against loss, misuse, and unauthorized access.
7. Disclosure and Processors
Disclosure to third parties occurs only if necessary for contract fulfillment, we are legally obliged, consent is given, or legitimate interests exist. With service providers, we conclude data processing agreements pursuant to Art. 28 GDPR.
8. Third-Country Transfers
No transfers to third countries currently take place. If services outside the EU/EEA are used in the future, this will only occur under legal requirements (e.g., adequacy decision, standard contractual clauses) and – if required – with your consent.
9. Your Rights
You have the right to access (Art. 15), rectification (Art. 16), erasure (Art. 17), restriction (Art. 18), data portability (Art. 20), and objection to processing (Art. 21 GDPR).
You can revoke consents at any time with effect for the future (Art. 7 para. 3 GDPR).
You also have the right to lodge a complaint with a supervisory authority (Art. 77 GDPR).
10. Obligation to Provide
Providing personal data is not legally required. For certain functions/contracts, it may be necessary. Without such data, specific services (e.g., responding to requests) are not possible.
11. Changes to this Privacy Policy
We amend this privacy policy as changes to data processing occur. The current version is available on this page.