Privacy policy
v1.0.0
4. Januar 2025
Privacy Policy (GDPR-Compliant)
Controller within the meaning of data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:
Prospyre Holding Ltd. legal@prospyre.com
Your Rights as a Data Subject
You may exercise the following rights at any time using the contact details of our data protection officer:
Access to your data stored by us and information on its processing (Art. 15 GDPR)
Rectification of inaccurate personal data (Art. 16 GDPR)
Erasure of your data stored by us (Art. 17 GDPR)
Restriction of processing (Art. 18 GDPR)
Objection to processing (Art. 21 GDPR)
Data portability if you have consented or concluded a contract with us (Art. 20 GDPR)
If you have given us consent, you may revoke it at any time with effect for the future.
You may lodge a complaint with a supervisory authority at any time. A list of authorities is available here: https://www.bfdi.bund.de/EN/.
General Website Access
Purpose and Legal Basis: When you access our website without registration or other data transmission, general information is collected automatically (server log files). This includes browser type, OS, referrer URL, IP address, etc. These are used to:
Ensure smooth connection setup
Ensure system stability
Improve functionality and usability
Legal basis: Art. 6(1)(f) GDPR (legitimate interest)
Recipients: Technical service providers acting as processors.
Retention: Log data is deleted after 14 days unless required for longer.
Transfer to Third Countries: None
Technically Non-Essential Cookies
We use cookies to personalize content and perform statistical evaluations.
Legal Basis: Art. 6(1)(a) GDPR (consent)
Recipients: Service providers such as analytics or marketing tools (see tools list).
Opt-Out: You can revoke consent anytime via the cookie consent tool. Note: some features may not work if disabled.
Paid Services
Purpose: To process your order and payment details.
Legal Basis: Art. 6(1)(b) GDPR
Recipients: Payment processors
Retention: Stored according to legal obligations (6-10 years)
Transfer to Third Countries: No
Newsletter
Purpose: To send you information via email after explicit consent (double opt-in).
Legal Basis: Art. 6(1)(a) GDPR
Recipients: Email marketing providers
Opt-Out: Via unsubscribe link or contact us directly.
Retention: Until you revoke your consent.
Contact Form
Purpose: To process your inquiry
Legal Basis: Art. 6(1)(f) GDPR or Art. 6(1)(b) GDPR (pre-contractual measures)
Retention: Deleted 6 months after resolution unless legal retention applies
Web Analytics with Matomo
We use Matomo (InnoCraft Ltd., New Zealand) for anonymized analytics. IPs are shortened and not combined with other data.
Legal Basis: Art. 6(1)(a) GDPR
Opt-Out: Cookie-based via consent tool
Transfer to Third Countries: No
Google Services (Maps, Ads, Remarketing)
Operated by Google LLC, USA. Using these tools may transmit personal data (e.g., IP address).
Legal Basis: Art. 6(1)(a) GDPR
Opt-Out: Via consent tool. Note: Some features may become unavailable.
SSL Encryption
We use HTTPS with SSL to secure data transmission.
Right to Object (Art. 21 GDPR)
You have the right to object to processing based on Art. 6(1)(f) GDPR. We will stop processing unless compelling reasons exist.
Policy Updates
We may update this privacy policy to reflect legal changes or new services. Please refer to this page for the latest version.
Contact
For all privacy-related matters, contact: legal@prospyre.com