Skip to content
EN Direkt

Privacy Policy

Privacy Policy / Information on the Processing of Personal Data

(Status: 03.02.2021)

Welcome to our privacy section. We are very pleased about your interest in our company. With the following privacy information, we would like to inform you in detail about when we collect which data and how it is processed.

Controller

The controller within the meaning of Art. 4 (7) of the EU General Data Protection Regulation (GDPR) is:

EnergieDirekt MT GmbH
Mr. Tim Mauersberger
Im Aischfeld 30
72275 Alpirsbach
Germany

Phone: +49-151-61551999
Email: info(at)en-direkt.de

General Information on the Collection of Personal Data

With the following information, we provide transparent details about the nature and scope of the processing of personal data that is collected:

  • when you visit our website

  • when using our online services

  • on external online presences on social media platforms

  • within application procedures

  • as well as in business relationships with customers and service providers

The legal basis for data protection is primarily the provisions of the GDPR as well as the supplementary regulations of the German Federal Data Protection Act (BDSG).

Purpose / Legal Basis of Processing

Where we obtain your consent for processing personal data, Art. 6 (1) lit. a GDPR serves as the legal basis.

Where processing is necessary for the performance of a contract between you and us, Art. 6 (1) lit. b GDPR serves as the legal basis. This also applies to processing required for pre-contractual measures.

If processing is necessary to fulfill a legal obligation, Art. 6 (1) lit. c GDPR applies.

If processing is necessary to protect vital interests of the data subject or another natural person, Art. 6 (1) lit. d GDPR applies.

If processing is necessary for the purposes of legitimate interests pursued by our company or a third party, and your interests or fundamental rights do not override those interests, Art. 6 (1) lit. f GDPR applies.

Disclosure of Personal Data

If we transfer your personal data to third parties or disclose it to them, this is done exclusively on the basis of one of the legal bases mentioned above.

Recipients of this data may include, for example, payment service providers for contract fulfillment.

If we are legally required or obligated by court order, we must transfer your data to authorized authorities.

If external service providers support us in processing your data (e.g., data analysis or newsletter distribution), this is done within the framework of data processing agreements in accordance with Art. 28 GDPR.

We only cooperate with service providers who guarantee appropriate technical and organizational measures to protect your data.

Data Transfer to Third Countries

A transfer of data to third countries (outside the EU/EEA) only takes place if it complies with legal requirements.

Unless explicitly consented to or required by contract or law, data is only processed in countries with an adequate level of data protection or based on appropriate safeguards in accordance with Art. 44 et seq. GDPR, such as EU Standard Contractual Clauses.

Data Storage

Personal data is deleted or blocked as soon as the purpose of storage no longer applies.

Storage may continue if legal retention obligations exist (especially under commercial or tax law).

Definitions

Our privacy policy is based on the terminology used in the GDPR. To ensure clarity, we explain key terms below:

Personal Data

Any information relating to an identified or identifiable natural person.

Processing

Any operation performed on personal data (collection, storage, use, transmission, deletion, etc.).

Controller

The entity that determines the purposes and means of processing personal data.

Pseudonymization

Processing data in a way that it can no longer be assigned to a specific person without additional information.

Processor

A party that processes data on behalf of the controller.

Recipient

Any person or entity to whom personal data is disclosed.

Third Party

Any person or entity other than the data subject, controller, or processor.

Consent

Any freely given, informed, and unambiguous indication of the data subject’s wishes.

Profiling

Automated processing to evaluate personal aspects such as behavior, preferences, etc.

Data Subject Rights

As a data subject, you have the following rights:

  • Right to withdraw consent (Art. 7 GDPR)

  • Right of access (Art. 15 GDPR)

  • Right to rectification (Art. 16 GDPR)

  • Right to erasure (Art. 17 GDPR)

  • Right to restriction of processing (Art. 18 GDPR)

  • Right to data portability (Art. 20 GDPR)

  • Right to object (Art. 21 GDPR)

  • Right not to be subject to automated decisions (Art. 22 GDPR)

Right of Access

You have the right to request confirmation of whether we process your personal data and to obtain a copy of that data.

Right to Rectification

You have the right to request correction of inaccurate or incomplete data.

Right to Erasure

You have the right to request deletion of your data if it is no longer required and no legal obligations prevent deletion.

Right to Restriction of Processing

You may request restriction of processing under certain conditions (e.g., if you object to processing).

Right to Data Portability

You have the right to receive your data in a structured, machine-readable format or have it transferred to another controller.

Right to Withdraw Consent

You may withdraw your consent at any time without affecting the legality of processing carried out before withdrawal.

Right to Object

You may object to processing based on legitimate interests. If you object, we will stop processing unless we have compelling legitimate grounds.

Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority:

Data Protection Authority Baden-Württemberg
Königstraße 10a
70173 Stuttgart
Germany

Automated Decision-Making

You have the right not to be subject to decisions based solely on automated processing, including profiling.

Use of Online Services

Below we inform you when and in what context data is processed when using our online services.

Collection of Personal Data When Visiting Our Website

When you use our website for informational purposes only (i.e., without registering or otherwise transmitting information), we only collect the personal data that your browser transmits to our server.

When you visit our website, we collect the following data, which is technically necessary to display the website and ensure stability and security (legal basis: Art. 6 (1) lit. f GDPR):

  • IP address

  • Date and time of the request

  • Time zone difference to Greenwich Mean Time (GMT)

  • Content of the request (specific page)

  • Access status / HTTP status code

  • Amount of data transferred

  • Website from which the request originates

  • Browser

  • Operating system and its interface

These data are stored temporarily in log files for a maximum of seven days. Longer storage may occur, but IP addresses will then be anonymized.

Use of Cookies

In addition to the above data, cookies are stored on your device when you use our website.

Cookies are small text files stored on your device and associated with your browser. They enable the entity setting the cookie (in this case us) to receive certain information.

Cookies cannot execute programs or transmit viruses. They serve to make our website more user-friendly and effective.

Types of Cookies Used

Transient Cookies

These are automatically deleted when you close your browser.
They include session cookies, which store a session ID that allows different requests from your browser to be assigned to the same session.

Persistent Cookies

These are stored for a defined period and deleted automatically afterward.
You can delete cookies at any time in your browser settings.

Legal Basis for Cookies

We use cookies:

  • based on legitimate interest (Art. 6 (1) lit. f GDPR) for technically necessary cookies

  • based on consent (Art. 6 (1) lit. a GDPR) for optional cookies

Cookie Settings

You can configure your browser to:

  • notify you when cookies are set

  • accept or reject cookies

  • delete cookies at any time

Please note that disabling cookies may limit the functionality of the website.

Helpful links:

  • Firefox: https://support.mozilla.org

  • Chrome: https://support.google.com

  • Safari: https://support.apple.com

  • Edge: https://support.microsoft.com

  • Opera: https://help.opera.com

SSL / TLS Encryption

Our website uses TLS encryption (formerly SSL) to protect the transmission of confidential content.

You can recognize this by the lock symbol or https:// in your browser.

Contact

Contact Form

When you contact us via the contact form, the data you provide (at least name and email) will be stored to process your request.

Legal basis:

  • Consent (Art. 6 (1) lit. a GDPR)

  • or Contract/pre-contract (Art. 6 (1) lit. b GDPR)

You may withdraw your consent at any time.

Contact via Email / Phone / Fax

When contacting us, we store your personal data (e.g., name, email, phone number) to process your request.

Legal basis:

  • Contract/pre-contract (Art. 6 (1) lit. b GDPR)

  • Consent (Art. 6 (1) lit. a GDPR)

  • Legitimate interest (Art. 6 (1) lit. f GDPR)

Data will be deleted once no longer needed, unless legal retention obligations apply.

Analytics Tools

Google Analytics

This website uses Google Analytics, a web analytics service provided by Google.

Google Analytics uses cookies to analyze website usage.

The information generated is usually transmitted to Google servers in the USA and stored there.

If IP anonymization is enabled, your IP address will be shortened within the EU/EEA before transmission.

Google processes this information on behalf of the website operator to:

  • evaluate website usage

  • compile reports

  • provide additional services

Your IP address will not be merged with other Google data.

Data Protection Measures

  • IP anonymization enabled

  • minimal personal identification

  • data used only for statistical purposes

Legal Basis

Processing is based on your consent (Art. 6 (1) lit. a GDPR).

Opt-Out

You can prevent tracking by:

  • adjusting browser settings

  • installing a browser plugin:
    https://tools.google.com/dlpage/gaoptout

Provider

Google Ireland Ltd.
Gordon House, Dublin 4, Ireland

Privacy policy:
https://policies.google.com/privacy

Embedded Third-Party Content

Google Maps

We use Google Maps to display interactive maps.

When accessing pages with Google Maps:

  • Google receives your IP and metadata

  • data may be linked to your Google account

  • data may be used for advertising and analytics

Legal basis: Consent (Art. 6 (1) lit. a GDPR)

Privacy policy:
https://policies.google.com/privacy

YouTube

We embed YouTube videos in enhanced privacy mode.

No data is transmitted until you play the video.

When playing a video:

  • YouTube receives your data

  • data may be linked to your account

Legal basis: Consent (Art. 6 (1) lit. a GDPR)

Provider:
Google Ireland Ltd.

Privacy policy:
https://policies.google.com/privacy

Call Us Contact Us