Privacy Policy

In Brief

This website serves exclusively to inform about the products of Svenesis UG (haftungsbeschränkt) i.G. No user data is collected, no forms are processed, and no user accounts are created. The only data processing beyond technically necessary hosting is Google Analytics 4 — and only with your explicit consent.

§1 Controller

Svenesis UG (haftungsbeschränkt) i.G.
c/o tecRacer Germany GmbH
Vahrenwalder Str. 156
30165 Hannover
Germany

Email: datenschutz@svenesis.de

§2 Subject of This Privacy Policy

This privacy policy applies to the website www.svenesis.de. The website is a purely informational site with no user registration, contact forms, or e-commerce functionality. No personal data is actively collected.

The legal basis for the processing described below is Art. 6(1)(f) GDPR (legitimate interest), unless otherwise stated.

§3 Hosting and Server Log Files

This website is hosted via Amazon Web Services EMEA SARL (AWS). When accessing the website, AWS automatically processes technical access data:

• IP address (truncated)
• Date and time of access
• Requested URL
• Browser and operating system type
• Referrer (previously visited page)

This data is required for secure operation of the website, is not merged with other sources, and is deleted promptly once the processing purpose no longer applies. A data processing agreement pursuant to Art. 28 GDPR is in place.

Data processor: Amazon Web Services EMEA SARL, 38 Avenue John F. Kennedy, L-1855 Luxembourg. AWS is certified under the EU-US Data Privacy Framework (DPF) (adequacy decision by the EU Commission dated 10 July 2023, Art. 45 GDPR).

Legal basis: Art. 6(1)(f) GDPR.

§4 Cookies

This website only uses cookies if you explicitly consent to the use of Google Analytics (see §5). Without your consent, no cookies are set.

To store your cookie decision, a technically necessary entry is set in your browser’s LocalStorage. This does not contain any personal data and serves solely to remember your preference.

Legal basis for technically necessary storage: § 25(2) TTDSG. For all other cookies: consent pursuant to § 25(1) TTDSG in conjunction with Art. 6(1)(a) GDPR.

§5 Web Analytics (Google Analytics 4)

With your consent, we use Google Analytics 4 (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland) for anonymized usage analysis. GA4 captures:

• Page views and usage steps
• Device type and browser
• Approximate location (city level)
• Scroll depth and interactions

IP addresses are anonymized by default. No personal data such as name or email is collected.

GA4 sets cookies (_ga, _ga_*) with a duration of up to 2 years. Usage occurs exclusively with your consent (Art. 6(1)(a) GDPR in conjunction with § 25(1) TTDSG). Without consent, no cookies are set and no data is transmitted.

You can revoke your consent at any time via the Cookie Settings link in the footer.

Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
Google LLC is certified under the EU-US Data Privacy Framework (DPF) (Art. 45 GDPR).

Further information: Google Privacy Policy · Analytics Opt-out Add-on.

§6 External Links

Our website contains links to external websites (e.g., product pages, GitHub). The respective operators are responsible for data processing on those sites.

§7 Retention Period

Data is deleted as soon as it is no longer required for its respective processing purpose.

• Server log files: promptly once the processing purpose no longer applies.
• Cookie preference (LocalStorage): 12 months, then re-prompted.
• Google Analytics: retention period depends on the service settings (only with consent).

§8 Your Rights

Under the GDPR, you have the following rights:

• Access (Art. 15 GDPR) to the data we process about you.
• Rectification (Art. 16 GDPR) of inaccurate data.
• Erasure (Art. 17 GDPR) of your data.
• Restriction of processing (Art. 18 GDPR).
• Data portability (Art. 20 GDPR).
• Objection (Art. 21 GDPR) to processing based on legitimate interests.
• Withdrawal (Art. 7(3) GDPR) of consent at any time with effect for the future.
• Complaint to the competent supervisory authority (State Commissioner for Data Protection of Lower Saxony).

Please direct inquiries to: datenschutz@svenesis.de

§9 Data Security

All data transmission is exclusively encrypted (TLS/HTTPS). We employ appropriate technical and organizational security measures to protect the processed data against unauthorized access, loss, and manipulation.

Last updated: April 2026