Business Automatica

Privacy Policy

1. Data Protection at a Glance

We hereby inform you, in accordance with the statutory data protection requirements (in particular the German Federal Data Protection Act (BDSG) and the European General Data Protection Regulation, hereinafter "GDPR"), about the type, scope, and purpose of the processing of personal data by our company. For the definition of terms such as "personal data" or "processing," we refer to Art. 4 GDPR.

2. Data Controller

The controller within the meaning of Art. 4 No. 7 GDPR is:

Business Automatica GmbH
Eisenbahnstraße 28
67725 Börrstadt, Germany

Managing Director: Gernot Reinmüller
Commercial Register: HRB 33494, Amtsgericht Kaiserslautern
Email: info@businessautomatica.com

3. Legal Basis for Processing

Below we inform you about the legal basis for the processing of personal data:

  • Consent (Art. 6 (1)(a) GDPR) — where you have given us your consent.
  • Performance of Contract (Art. 6 (1)(b) GDPR) — where processing is necessary for the performance of a contract or pre-contractual measures.
  • Legal Obligation (Art. 6 (1)(c) GDPR) — where a legal obligation exists (e.g., retention obligations).
  • Legitimate Interest (Art. 6 (1)(f) GDPR) — where processing is necessary for the purposes of our legitimate interests and your interests do not override those interests.

4. Hosting

This website is hosted by Vercel Inc. (440 N Barranca Ave #4133, Covina, CA 91723, USA). Vercel is our data processor pursuant to Art. 28 GDPR. We have entered into a Data Processing Agreement with Vercel.

When you access our website, Vercel automatically collects the following data in server log files:

  • IP address
  • Date and time of access
  • Browser type and version
  • Operating system
  • Referrer URL
  • Amount of data transferred
  • HTTP status code

This data is technically necessary to display our website to you and is automatically deleted after a short period. The legal basis is Art. 6 (1)(f) GDPR (legitimate interest in the secure and efficient provision of our website).

Data Transfer to the USA

Vercel is based in the USA. The data transfer is based on the adequacy decision of the EU Commission regarding the EU-U.S. Data Privacy Framework (DPF) of July 10, 2023. Vercel is certified under the EU-U.S. Data Privacy Framework. In addition, EU Standard Contractual Clauses (SCCs) have been agreed upon as a supplementary safeguard.

5. Cookies and Tracking

This website uses no cookies and no tracking technologies. No analytics services (such as Google Analytics) and no advertising services are used.

6. Local Storage (localStorage)

We use the localStorage function of your browser to store two purely functional settings:

  • Theme preference (light/dark) — so that your chosen display mode is preserved on your next visit.
  • Language setting (de/en) — so that the website is displayed in your chosen language.

No personal data is stored or transmitted to servers. The data remains exclusively local in your browser. You can delete this data at any time via your browser settings. The legal basis is § 25 (2) No. 2 TDDDG (technically necessary storage at the user's request).

7. Contact via Email and Contact Form

When you contact us by email or contact form, your details (name, email address, message content) are processed and stored for the purpose of handling your inquiry.

The legal basis is Art. 6 (1)(f) GDPR (legitimate interest in responding to inquiries). If the contact is aimed at concluding a contract, the additional legal basis is Art. 6 (1)(b) GDPR.

Your data will be deleted once the conversation has been conclusively resolved, unless statutory retention obligations prevent this (commercial law: 6 years pursuant to § 257 (1) HGB; tax law: 10 years pursuant to § 147 (1) AO).

You may object to the storage of your personal data at any time by contacting us via email.

8. Disclosure of Personal Data to Third Parties

Without your consent, we generally do not share data with third parties, unless this is necessary for the performance of a contract, due to a court order, or because of a legal obligation.

Where we engage data processors (e.g., Vercel for hosting), this is done on the basis of Art. 28 GDPR. We carefully select our data processors and have concluded appropriate contracts.

9. External Links (YouTube, Product Pages)

Our website contains links to external websites, including YouTube and our product pages. When you click on these links, you will be redirected to the respective external website. Data is only transmitted to the third-party provider upon clicking. The operators of external websites are responsible for data processing on their sites. Please refer to the respective privacy policies.

10. Social Media Presence

We maintain a profile on LinkedIn. When using and accessing our profile, the privacy notices and terms of use of LinkedIn apply.

Service provider: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland.
Privacy Policy: linkedin.com/legal/privacy-policy

11. Deletion of Data and Storage Duration

Unless expressly stated otherwise in this privacy policy, your personal data will be deleted or blocked as soon as the purpose of storage no longer applies or the data is no longer required for that purpose, unless statutory retention obligations prevent this. These include commercial retention obligations under § 257 (1) HGB (6 years) and tax retention obligations under § 147 (1) AO (10 years).

12. Your Rights

You have the following rights with regard to your personal data:

Objection and Revocation

Where processing is based on your consent (Art. 6 (1)(a) GDPR), you have the right to withdraw your consent at any time. The lawfulness of processing carried out prior to the withdrawal remains unaffected.

Where we base processing on a legitimate interest (Art. 6 (1)(f) GDPR), you may object to the processing. Please state the reasons why we should not process your data.

Right of Access (Art. 15 GDPR)

You have the right to obtain information about your personal data stored by us, including the purposes of processing, the categories of data, the recipients, and the planned storage duration.

Right to Rectification (Art. 16 GDPR)

You have the right to rectification of inaccurate data or completion of incomplete data.

Right to Erasure (Art. 17 GDPR)

You have the right to erasure of your data stored by us, unless statutory retention periods or other legal obligations prevent this.

Right to Restriction (Art. 18 GDPR)

You have the right to request the restriction of processing if one of the conditions in Art. 18 (1)(a) to (d) GDPR is met.

Right to Data Portability (Art. 20 GDPR)

You have the right to receive your personal data in a structured, commonly used, and machine-readable format, or to request the transfer to another controller.

Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority. The competent supervisory authority is generally the authority of the federal state in which our company has its registered office:

Der Landesbeauftragte für den Datenschutz und die Informationsfreiheit Rheinland-Pfalz
Postfach 30 40, 55020 Mainz
www.datenschutz.rlp.de

13. Data Security

To protect personal data, we have implemented appropriate technical and organizational security measures. All data is transmitted between your browser and our server via an encrypted SSL/TLS connection.

Last updated: March 2026