Privacy Policy

This privacy policy applies to cyber-ivy.com, operated by IEX Labs UG (haftungsbeschränkt). The German version at /datenschutz is the legally binding text.

1. Controller

The controller within the meaning of data-protection law is:

IEX Labs UG (haftungsbeschränkt) Talstraße 27 94209 Regen Germany Phone: +49 160 94808486 Email: info@iexlabs.com

2. Collection and processing of personal data

We collect and process personal data only insofar as this is necessary to provide a functional website and our content and services. Personal data is generally only processed with the user's consent. An exception applies in cases where prior consent cannot be obtained for factual reasons and the processing of the data is permitted by law.

3. Server log files

This website is hosted by IONOS SE (Elgendorfer Str. 57, 56410 Montabaur, Germany). The provider automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are: browser type and version, operating system used, referrer URL, hostname of the accessing computer, time of the server request, and IP address. These data are not merged with other data sources. The legal basis for the processing is Art. 6 (1) (f) GDPR. A data processing agreement (DPA) under Art. 28 GDPR has been concluded with IONOS SE.

4. Email contact

If you contact us by email, the data you transmit (your email address and, where applicable, your name and your message) will be stored by us. We will not pass on this data without your consent. The processing serves exclusively to handle your enquiry and any follow-up questions. The legal basis is Art. 6 (1) (f) GDPR (legitimate interest in answering enquiries). You may object to the processing at any time.

5. Cookies

This website uses cookies. Strictly necessary cookies (cyber_ivy_lang for the language preference and cyber_ivy_consent for storing your consent decision) are required for the operation of the website and are set without consent (Art. 6 (1) (f) GDPR). Analytics cookies (Google Analytics) are only set with your explicit consent (Art. 6 (1) (a) GDPR). You may withdraw your consent at any time by opening the cookie settings via the link in the footer or by deleting cookies in your browser.

6. Google Analytics

With your consent, we use Google Analytics, a web-analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Analytics uses cookies that allow analysis of website usage. The information generated by the cookie about your use of this website is generally transmitted to a Google server in the USA and stored there. Google is certified under the EU-US Data Privacy Framework (DPF), which provides an adequate level of protection for data transfers to the USA. We have activated IP anonymisation (anonymize_ip), so that within the member states of the EU or other contracting states of the EEA your IP address is shortened beforehand. Google Analytics is only activated after your explicit consent via our cookie banner. The legal basis is your consent under Art. 6 (1) (a) GDPR. You may withdraw your consent at any time with effect for the future. Further information: https://policies.google.com/privacy

7. Your rights

You have the following rights at any time regarding your stored personal data: access (Art. 15 GDPR), rectification (Art. 16 GDPR), erasure (Art. 17 GDPR), restriction of processing (Art. 18 GDPR), data portability (Art. 20 GDPR), and objection to processing (Art. 21 GDPR). Where processing is based on consent, you have the right to withdraw it at any time with effect for the future (Art. 7 (3) GDPR), without affecting the lawfulness of processing carried out before withdrawal. For this and any further questions on data protection, you can contact us at any time at the address given in the legal notice. You also have the right to lodge a complaint with the competent supervisory authority.

8. Retention period

Personal data are deleted as soon as the purpose of the processing no longer applies and no statutory retention obligations stand in the way. Data from email contacts will be deleted at the latest after the enquiry has been processed, provided that no contractual relationship has been established. Statutory retention obligations (e.g. under the German Commercial Code or Tax Code) remain unaffected.

9. Supervisory authority

Competent data-protection supervisory authority:

Bayerisches Landesamt für Datenschutzaufsicht (BayLDA) Promenade 27, 91522 Ansbach, Germany www.lda.bayern.de