Privacy Policy

General Information

As the operator of this website and as a company, we come into contact with your personal data. This includes any data that can be used to identify you. In this privacy policy, we would like to explain how, for what purpose, and on what legal basis we process your data.

Responsible for Data Processing

The responsible entity for data processing on this website and within our company is:

NIA-IT Trust Solution UG (haftungsbeschränkt)
Thomas-Dehler-Str. 5, 10787 Berlin, Germany
Phone: +49 (0) 30 120 843 99
Email: info@ittrustsolution.com

SSL and TLS Encryption

Whenever you enter data on websites, place online orders, or send emails via the internet, there is always the risk that unauthorized third parties may access your data. Although complete protection from such access cannot be guaranteed, we do everything possible to protect your data and close any security gaps as far as possible.

An important protective mechanism is the SSL or TLS encryption of our website, which ensures that data you transmit to us cannot be read by third parties. You can recognize the encryption by the lock icon before the entered internet address in your browser and by the fact that our internet address begins with `"`https:// `"` instead of `"`http:// `"`.

Data Retention

In certain sections of this privacy policy, we inform you about how long we or the companies processing your data on our behalf will store your data. If this information is missing, we will store your data until the purpose of the data processing ceases, you object to the data processing, or you revoke your consent to the data processing.

In the event of an objection or revocation, we may continue to process your data if at least one of the following conditions is met:

• We have compelling legitimate grounds for continuing the data processing that outweigh your interests, rights, and freedoms (only in the case of an objection to data processing; if the objection is to direct advertising, we cannot provide compelling legitimate grounds).
• The data processing is necessary to assert, exercise, or defend legal claims (this does not apply if your objection is to direct advertising).
• We are legally obligated to retain your data.

In this case, we will delete your data as soon as the condition(s) ceases to apply.

Your Rights

Right to Object to Data Processing

If you read in this privacy policy that we process your data based on legitimate interests under Art. 6 Para. 1 Sentence 1 Lit. f) GDPR, you have the right under Art. 21 GDPR to object to this. This also applies to profiling based on these provisions. You must provide reasons for the objection arising from your particular situation, unless the objection is to direct marketing.

If you object, we will no longer process your data unless one of the following conditions is met:

• We can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms.
• The processing is for the establishment, exercise, or defense of legal claims.

These exceptions do not apply if your objection is to direct marketing or related profiling.

Right to Withdraw Consent

Many data processing operations are only possible with your express consent. You can withdraw this consent at any time without stating reasons (Art. 7 Para. 3 GDPR). From the time of the revocation, we may no longer process your data. The only exception is if we are legally obligated to retain the data for a certain period. Such retention periods exist particularly in tax and commercial law.

Right to Lodge a Complaint with the Supervisory Authority

If you believe that we are violating the General Data Protection Regulation (GDPR), you have the right under Art. 77 GDPR to lodge a complaint with a supervisory authority. You can contact a supervisory authority in the Member State of your habitual residence, workplace, or the location of the alleged infringement. This right to complain exists in addition to any other administrative or judicial remedies.

Right to Data Portability

You have the right to have data that we process based on your consent or in fulfillment of a contract automatically processed and handed over to you or a third party in a common, machine-readable format. We can only transfer the data to another controller where technically feasible.

Right to Access, Correction, and Deletion

Under Art. 15 GDPR, you have the right to request information about the personal data we store about you, including where it came from, who we share it with, and why it is stored. If the data is incorrect, you have the right to request its correction (Art. 16 GDPR), and under the conditions of Art. 17 GDPR, you may request its deletion.

Right to Restriction of Processing

Under certain conditions, you have the right under Art. 18 GDPR to request that we restrict the processing of your data. This means that we may only process your data (apart from storage) with your consent or for the establishment, exercise, or defense of legal claims or to protect the rights of another person or entity, or for reasons of important public interest of the European Union or a Member State.

The right to restrict processing applies in the following situations:

• You contest the accuracy of your personal data stored with us, and we need time to verify this.
• Your data is processed unlawfully or was processed unlawfully in the past, but you prefer a restriction of processing rather than deletion.
• We no longer need your personal data, but you need it to establish, exercise, or defend legal claims.
• You have objected to the processing of your data under Art. 21 Para. 1 GDPR, and the balance of your and our interests is pending.