This Privacy Policy explains how iiterate Technologies GmbH (iiterate, we, us) processes personal data when you visit www.iiterate.de (the Website), and how we comply with the EU General Data Protection Regulation (GDPR) and applicable German data protection law. The Website is primarily an informational presence. We keep data collection to a minimum, and we do not sell personal data.
1. Controller
The controller responsible for the processing of personal data on this Website is:
iiterate Technologies GmbH
Mittelbachstraße 66, 53518 Adenau, Germany
Managing Director: Aashwin Shrivastava
Email: contact@iiterate.de
Phone: +49 (0) 176 74709826
Commercial register: HRB 28958, Local Court of Koblenz
VAT ID: DE354188637
Full company information is set out in our Impressum.
2. Data Protection Officer
We are not required to appoint a Data Protection Officer under Art. 37 GDPR and § 38 BDSG. For any questions regarding data protection, please contact us at contact@iiterate.de.
3. Visiting the Website (server log data)
When you access the Website, technical data is processed automatically to enable the secure and stable delivery of the site. This may include your IP address, the date and time of the request, the browser type and operating system, the referring page, and the pages you access. The legal basis is our legitimate interest in providing a functional and secure website (Art. 6(1)(f) GDPR). Hosting is provided by Framer B.V., Netherlands, which processes this data on our behalf as part of delivering the Website.
4. Contacting us
If you contact us through a contact form or by email, we process the data you provide (for example your name, email address, and the content of your message) in order to handle and respond to your request. The legal basis is Art. 6(1)(b) GDPR where your request relates to pre-contractual steps or an existing contract, and otherwise our legitimate interest in responding to inquiries (Art. 6(1)(f) GDPR). We delete this data once it is no longer required and no statutory retention period applies.
5. Cookies and consent
By default, the Website uses only cookies that are technically necessary for it to function. Before any non-essential cookies or third-party tools (such as tag management or analytics) are loaded, we ask for your prior consent through a consent banner. You can give, decline, or withdraw your consent at any time using the Cookie settings link in the footer.
Where you consent, the Website may load Google Tag Manager (provided by Google). This tool can set cookies and may transmit data to Google servers, including in the USA. This processing takes place solely on the basis of your consent (Art. 6(1)(a) GDPR; for any associated transfer to a third country, Art. 49(1)(a) GDPR). Withdrawing your consent stops any further such processing with effect for the future.
6. Recipients of your data
We share personal data only with service providers that help us operate the Website (for example our hosting provider), and only to the extent necessary for that purpose. Some interactive elements, such as the before/after image comparison, load a component from the third-party provider Flowbase; when such an element loads, your browser connects to Flowbase servers, which may receive your IP address in order to deliver that component. Where you have given consent, data may additionally be processed by the providers of the tools described in Section 5. We do not sell personal data and do not pass it on for unrelated purposes.
7. International data transfers
We seek to keep processing within the European Union and the European Economic Area. A transfer to a third country (such as the USA) occurs only in connection with the consent-based tools described in Section 5, and only on the basis of your consent. You are not obliged to consent, and the Website remains fully usable without it.
8. How long we keep your data
We process personal data only for as long as necessary for the purposes described in this Policy, or for as long as required by statutory retention obligations (for example under German commercial and tax law). Once the purpose no longer applies and no retention obligation remains, the data is deleted.
9. Security
The Website is provided over an encrypted connection (HTTPS/TLS) to protect data in transit between your browser and the Website.
10. Your rights
Subject to the conditions of the GDPR, you have the right to access your data (Art. 15), to rectification (Art. 16), to erasure (Art. 17), to restriction of processing (Art. 18), to data portability (Art. 20), and to object to processing based on legitimate interests (Art. 21). Where processing is based on your consent, you may withdraw that consent at any time with effect for the future (Art. 7(3) GDPR). To exercise any of these rights, please contact us at contact@iiterate.de.
11. Right to lodge a complaint
You have the right to lodge a complaint with a data protection supervisory authority. The authority responsible for us is:
Der Landesbeauftragte für den Datenschutz und die Informationsfreiheit Rheinland-Pfalz
Hintere Bleiche 34, 55116 Mainz, Germany
12. Obligation to provide data
You are generally not legally or contractually obliged to provide personal data to us. However, certain functions, such as contacting us, require the data necessary to carry them out. If you choose not to provide it, we may be unable to respond to your request.
13. Changes to this Policy
We may update this Privacy Policy to reflect changes to the Website or to legal requirements. The version that applies is the one published here, as indicated by the date shown at the top of this page.