Privacy Policy
General information
In this privacy policy, esmatic GmbH (An der Ziegelei 6, 01454 Radeberg), the data controller under the General Data Protection Regulation (GDPR), explains what personal data is processed when you visit our website and use our online services. The Telecommunications Digital Services Act (TDDSG) also applies to our website. Please note that all data transmissions in connection with our website are encrypted by default.
We reserve the right to update our privacy policy from time to time, either to ensure compliance with current legal requirements or to reflect changes to our services. We therefore recommend that you regularly review the privacy policy to stay informed about how we protect your personal data.
Logging and creation of log files
When you access our website, a variety of technical data is logged. This general data and information is stored in the server’s log files. The following information is recorded in a log file: your IP address, browser type and domain, the name of the file accessed, the date and time of access, the amount of data transferred, and whether the access was successful. We process personal data for the purpose of providing the website, as well as for troubleshooting and investigating cases of misuse or fraud, based on legitimate interests pursuant to Article 6(1)(f) of the GDPR. The log files are deleted after 30 days.
Use of cookies
We use cookies on our website. Cookies allow us to optimise the information and offerings on our website to better serve users. Cookies enable us to recognise users of our website. This recognition makes it easier for users to navigate our website.
Matomo – Web Analytics
With your consent under Article 6(1)(a) of the GDPR, we use Matomo, a web analytics service, to improve our website. To ensure the analytics are implemented in a privacy-friendly manner, Matomo's open-source software is operated on the controller's servers without the use of cookies. Returning visitors to our website are identified using a digital fingerprint, which is stored in an anonymised form only. User activity is also processed in an anonymised form using IP addresses and browser-side user settings so that we cannot identify individual visitors to our website. We use the following cookies to operate Matomo:
| Cookie | Speicherdauer |
| _pk_id.23.f70f | 1 Year 28 Days |
| _pk_ses.23.f70f | 30 Minutes |
For more information about the features of the Matomo web analytics service, please visit the provider’s website.
Darüber hinaus kommen auf unserer Internetseite ausschließlich unbedingt erforderliche Cookies gemäß § 25 Abs. 2 Nr. 2 TDDDG zum Einsatz.:
| Cookie | Purpose | Retention period |
| Cookie Consent | Ensuring that the website complies with data protection regulations by storing the end user’s consent status for cookies and similar services on the current domain selected in the consent management platform. | 2 Months 29 Days |
We process your personal data subsequently based on our legitimate interest pursuant to Article 6(1)(f) of the GDPR. In this context, our legitimate interest consists of ensuring user-friendliness and compliance with data protection regulations when providing the website, as well as ensuring its unrestricted technical functionality.
Contact Form
Our website features a contact form that can be used to contact us electronically. You can also contact us via email using the contact details provided in the legal notice. When you contact us, we process the personal data you provide, such as your first and last name, email address, reason for contacting us and nature of your enquiry, in order to address your request. We also process your IP address and the time of use to prevent and investigate cases of misuse. The processing of the listed personal data is based on our legitimate interest in responding satisfactorily to contact requests and enquiries pursuant to Art. 6(1)(f) of the GDPR. In the case of requests for quotes and contractual matters, it is based on the contract or pre-contractual measures pursuant to Art. 6(1)(b) of the GDPR.
Die von Ihnen bereitgestellten personenbezogenen Daten werden durch uns vertraulich behandelt, dienen aus-schließlich der Bearbeitung Ihres Anliegens und werden nicht an Ditte weitergegeben, es sei denn, dies ist im Einzelfall aufgrund der Art Ihres Anliegens erforderlich. Die Löschung der personenbezogenen Daten erfolgt nach abschließender Klärung Ihres Anliegens oder aufgrund eines Widerspruchs durch Sie. Die Löschung der protokollierten IP-Adresse sowie des Zeitpunkts der Kontaktaufnahme erfolgt nach 30 Tagen. Die hier dargestellten Löschfristen gelten nur dann, insoweit keine gesetzlichen Aufbewahrungsfristen einer Löschung entgegenstehen.
Social Media Presence
In order to communicate with users and share information about our activities, we have a number of social media accounts. Some of these are operated jointly with the social network operators listed below.
We would like to point out to users that, when they use our accounts on the social networks listed below, their personal data may be processed by the operators of these social networks outside the European Union and the European Economic Area. This may result in potential risks for users, such as difficulties in enforcing data protection rights. However, we would also like to point out that, where supported by the social network operators, we have entered into agreements on joint responsibility pursuant to Art. 26 of the GDPR and standard data protection clauses pursuant to Art. 46(2)(c) of the GDPR.
In addition, we would like to point out that social media operators generally process users’ personal data for their own market research and advertising purposes. Any user profiles generated from usage behaviour may be used to display interest-based advertisements, even outside of social networks. To this end, social network operators typically store cookies on users’ computers to process device information, usage behaviour and user interests, even if the user does not have a profile on the respective network. Further information on this, and details of any options to object, can be found in the privacy policies and additional information provided by the respective social network operators. These are linked below for your convenience.
The following also applies to the processing of personal data:
Categories of data processed
These include master data (e.g. names), contact data (e.g. email addresses), content data (e.g. text entries), usage data (e.g. interest in content) and meta and communication data (e.g. device information and IP addresses).
Purpose and legal basis of processing
To the extent that we are responsible for data processing, it is carried out for the purposes of providing information, communicating, marketing and measuring reach. The operation of our social media presence is based on legitimate interests pursuant to Art. 6(1)(f) of the GDPR. The respective interests arise from the aforementioned purposes.
Retention period
The categories of data that we process are stored exclusively within the relevant social network. In most cases, we have no influence over the specific storage period, as this is determined by the providers of the social networks. You can find information on this in the privacy policy of the relevant provider. In cases where we can influence the storage period, deletion occurs once the purpose has been fulfilled and in compliance with statutory retention obligations.
Services and service providers we use, as well as network-specific information
Below, we provide information about the services and service providers we use, as well as network-specific information, including the respective entities responsible within the EU/EEA and those outside. We do not transfer data beyond this scope.
- Facebook, Meta Platforms Ireland Limited / Meta Platforms Inc., 1 Hacker Way, Menlo Park, CA 94025, USA
- Instagram, Meta Platforms Ireland Limited / Meta Platforms Inc., 1 Hacker Way, Menlo Park, CA 94025, USA
- LinkedIn, LinkedIn Ireland Unlimited Company / LinkedIn Corporation, 1000 W. Maude Avenue, Sunnyvale, CA 94085 USA
Information on data subjects’ rights
Data subjects affected by data processing have the right to request information about their personal data at any time. Subject to legal requirements, they can also exercise their right to rectification, erasure, restriction of processing or data portability. Where processing is based on legitimate interests, there is also a right to object. Furthermore, if processing is based on consent, this may be withdrawn at any time for the future.
In addition, pursuant to Article 77 of the GDPR, every data subject has the right to lodge a complaint with a supervisory authority specialising in data protection if they suspect that the processing of their personal data is unlawful.
With regard to exercising data subject rights, please note that, to obtain comprehensive information, requests should ideally be directed to the relevant social network operator. Only the operators have access to all users' processed personal data and can therefore provide more comprehensive information and take any necessary measures. If you need assistance with this, you may of course contact the controller or the data protection officer at any time using the above contact details.
Links to Other Websites
Our website contains links to other websites, known as external links. We have no control over whether the operators of other websites comply with data protection regulations. Please note that by clicking on a link to another website, you are subject to different data protection regulations. We have no influence over the data processing that takes place there. External links are identified as such in accordance with Section 19(3) of the TDDDG.
Use of Service Providers for the Provision of the Website
To provide the website, we use service providers who process personal data on behalf of the controller or through whom access to personal data cannot be ruled out. We have entered into data processing agreements with all of these service providers in accordance with Article 28 of the GDPR. In addition to the service providers already mentioned, these include IONOS (hosting) and Sandstorm Media GmbH (technical support).
Data Subject Rights and Contacting the Data Protection Officer
Data subjects may at any time request information about the personal data concerning them, as well as, where applicable, request the correction or deletion of such data, restrict its processing, or object to its processing. They also have a right to data portability. Furthermore, if data processing is based on consent, this consent may be withdrawn at any time with future effect. To exercise your rights, please contact our Data Protection Officer, the Dresden Institute for Data Protection, at datenschutz@esmatic.de (additional contact information is available at www.dids.de). Furthermore, pursuant to Article 77 of the GDPR, you have the right to lodge a complaint with a data protection supervisory authority if you suspect that the processing of your personal data is unlawful.