General

1. Your personal data within the meaning of Art. 4 No. 1 GDPR (e.g. IP address, name, e-mail address) will only be processed by us in accordance with the provisions of German data protection law and taking into account the European General Data Protection Regulation (GDPR). The following regulations inform you about the type, scope and purpose of the collection, processing and use of personal data.
2. The processing of personal data within the meaning of Art. 4 No. 2 GDPR is lawful in accordance with Art. 6 GDPR if one of the following conditions is met:

  1. a) The data subject has given their consent to the processing of their personal data for one or more specific purposes;
  2. b) the processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract;
  3. c) processing is necessary for compliance with a legal obligation to which the controller is subject;
  4. d) processing is necessary to protect vital interests of the data subject or another natural person;
  5. e) the processing is necessary for the performance of a task that is in the public interest or in the exercise of official authority that has been delegated to the controller;
  6. f) processing is necessary to safeguard the legitimate interests of the person responsible or a third party, unless the interests or fundamental rights and freedoms of the data subject that require the protection of personal data prevail, in particular if the data subject is a child acts.

3. The processing of special personal data (e.g. health data) within the meaning of Art. 9 Para. 1 GDPR is lawful in accordance with Art. 9 Para. 2 GDPR if one of the following conditions is met:

  • there is an explicit consent of the person;
  • the processing is necessary for the establishment, exercise or defense of legal claims or in the case of actions by the courts in the context of their judicial work.

4. There is no automatic decision-making or profiling of personal data within the meaning of Art. 22 GDPR.
5. The operator ensures the security of the data in accordance with Art. 32 GDPR, taking into account the principle of proportionality, by means of suitable technical measures.
6. If, contrary to expectations, there is a breach of data protection, the competent supervisory authority in accordance with Art. 33 GDPR and the data subject in accordance with Art. 34 GDPR will be notified.

Scope

This data protection declaration only applies to our websites. If you are redirected to other sites via links on our site, please inform yourself there about the respective handling of your data.

Duration of data storage

The duration of the storage of the data transmitted by you depends on the legal storage obligations. In accordance with commercial and tax laws, invoices must be retained for a period of 10 years.

Disclosure of data to third parties

Data transmitted as part of the contractual relationship will only be passed on to third parties (Art. 4 No. 10 GDPR) if you have expressly given your consent (Art. 4 No. 11 GDPR) or if the transfer is necessary to fulfill the contract. Consent can be revoked informally at any time. Data collected by visiting the website is only collected by third parties who are expressly named below.

Responsible in the sense of the GDPR

The person responsible within the meaning of the General Data Protection Regulation (GDPR), as well as other data protection laws applicable in the European Union and other provisions of a data protection nature is:

Smart Chains GmbH
📌 Weidenstr.20, 53562 St. Katharinen

Storage of access data in log files

You can visit our website without providing any personal information.

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • Browser type/ browser version
  • Operating system used
  • Referrer URL
  • Host name of the accessing computer
  • Time of server request

This data cannot be assigned to specific persons. This data is not merged with other data sources. We reserve the right to subsequently check this data if we become aware of specific indications of illegal use.
The purpose of the processing results from our legitimate interest within the meaning of Art. 6 Para. 1 S. 1 lit. f) GDPR.
A contract for order processing was concluded with our hoster.

Contact form

When using the contact form offered on these pages, the information you enter is transmitted and stored for the purpose of answering your request. The data will not be passed on to third parties. The legality of the use of the form results from Art. 6 Para. 1 Sentence 1 lit. f) GDPR.

Yoast

We use the Yoast plugin to enhance the SEO capabilities of our website. Yoast SEO is developed by Yoast, which is a trading name of Yoast BV, a company registered in the Netherlands. For details on how Yoast handles data, including any data collected through their plugin, please review Yoast’s privacy policy here:

https://yoast.com/privacy-notice/

The legal basis for processing data when using the Yoast plugin is our legitimate interest in optimizing the visibility and search engine ranking of our website, in accordance with Article 6(1)(f) of the GDPR.

Google Fonts (Locally Hosted)

We use Google Fonts, but they are hosted locally on our own servers. This means that no data is transmitted to external servers operated by Google when our website loads. Therefore, Google does not have access to any personal data as a result of Google Fonts being used. The legal basis for processing data when using locally hosted Google Fonts is our legitimate interest in providing an improved website design and user experience, in accordance with Article 6(1)(f) of the GDPR.

By hosting Google Fonts locally, we prioritize data privacy while still benefiting from the visual enhancements they provide to our website.

Requests via email or phone

If you contact us by email or phone, your request including all resulting personal data (name, request, etc.) will be stored and processed by us for the purpose of processing your request. We will not disclose this data without your consent.

The processing of this data is based on Art. 6 (1) (b) GDPR, if your request is related to the fulfillment of a contract or is necessary for the performance of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the requests directed to us (Art. 6 (1) (f) GDPR) or on your consent (Art. 6 (1) (a) GDPR) if requested. The data you send us via contact requests will remain with us until you request us to delete it, revoke your consent to store it, or the purpose for storing the data no longer applies (e.g. after completing the processing of your request). Mandatory statutory provisions – in particular statutory retention periods – remain unaffected. Your data will not be disclosed to third parties without your consent and are subject to medical confidentiality.

Please note that we usually receive your data by email unencrypted. IT experts often remind us of the principle that what you would not send as a postcard, you should not send by email either. Therefore, please do not send us confidential information/data via regular email, but rather choose an end-to-end encrypted transmission, such as encrypted email or file transfer, or send it by post. Please understand that we reject any liability for unsolicited data/emails sent to us.

Social media links

social media pages for the third-party providers that can be reached via links from this website. By using the links you get to the respective websites of the third-party providers (e.g. LinkedIn) and can also share our content. No data transfer takes place when you visit our website. As soon as you have called up the third-party provider’s website, you are in the area of responsibility of the respective third-party provider, so that their data protection declaration or their declarations on the use of data also apply. We have no influence on this, but to avoid unnecessary data transfer, we recommend that you log out of the respective third-party provider before using a corresponding link , so that usage profiles cannot be created by the third-party provider simply by using the link.

Security of your data / SSL encryption

In accordance with legal regulations, this site uses SSL encryption, recognizable by a lock symbol in the address bar of your browser. Transmitted data cannot be read by third parties if SSL encryption is activated.

This is usually a 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is being transmitted in encrypted form by the closed representation of the key or lock symbol in the lower status bar of your browser.

We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

User rights

You can request information about the personal data stored about you at any time and free of charge. Your rights also include a confirmation, correction, restriction, blocking and deletion of such data and the provision of a copy of the data in a form suitable for transmission, as well as the revocation of a given consent and the objection. Statutory retention requirements remain unaffected.
Your rights arise in particular from the following standards of the GDPR:

  • Article 7(3) – Right to withdraw consent under data protection law
  • Article 12 – Transparent information, communication and modalities for exercising the rights of the data subject
  • Article 13 – Obligation to provide information when collecting personal data from the data subject
  • Article 14 – Information to be provided when the personal data have not been collected from the data subject
  • Article 15 – Right of access of the data subject, right to confirmation and to be provided with a copy of the personal data
  • Article 16 – Right to rectification
  • Article 17 – Right to erasure (“right to be forgotten”)
  • Article 18 – Right to restriction of processing
  • Article 19 – Obligation to notify in relation to rectification or erasure of personal data or restriction of processing
  • Article 20 – Right to data portability
  • Article 21 – Right to object
  • Article 22 – Right not to be subject to a decision based solely on automated processing, including profiling
  • Article 77 – Right to lodge a complaint with a supervisory authority

To exercise your rights (with the exception of Art. 77 GDPR), please contact the office named under “Responsible within the meaning of the GDPR” (e.g. by email).

Scroll to Top