This is an English convenience translation. The legally binding version is the German original.
Version: 1.0.0 · Effective from: 10 February 2026

Privacy Policy (Master)

Important notice: This English translation is provided for informational purposes only. The legally binding version is the German original. In case of any discrepancies, the German version shall prevail.

1. Scope

This privacy policy applies to the processing of personal data by GLA-intec UG (haftungsbeschränkt) in the context of

  • the company website,
  • general business communication,
  • marketing and sales activities in a B2B context,

unless product-specific privacy notices apply.

Product-specific privacy notices shall take precedence over this privacy policy.

2. Controller

Controller within the meaning of the General Data Protection Regulation (GDPR):

GLA-intec UG (haftungsbeschränkt) represented by the Managing Director Timo Glander Auf den Roden 2a, 28307 Bremen, Germany Email: mail@gla-intec.de Phone: +49 176 95676413

3. Data Protection Officer

Pursuant to § 38 BDSG (German Federal Data Protection Act), we are not obliged to appoint a data protection officer, as fewer than 20 persons are regularly involved in the automated processing of personal data.

For questions regarding data protection, please contact us using the contact details above.

4. Principles of Data Processing

We process personal data exclusively

  • in a B2B context,
  • for clearly defined business purposes,
  • in accordance with the principle of data minimization,
  • in compliance with all applicable data protection regulations.

Our customers and business partners are exclusively based in the European Union or the United Kingdom.

Processing of personal data of end consumers (B2C) does not take place.

5. Categories of Data Subjects

Data subjects include in particular:

  • Contact persons at business customers
  • Prospects and leads in B2B sales
  • Suppliers and service providers
  • Communication partners via email or telephone

6. Categories of Personal Data

Depending on the processing activity, we process in particular:

  • Name and business contact details
  • Company affiliation and function
  • Communication content
  • Technical usage data when accessing the website

7. Purposes of Processing

The processing of personal data is carried out for the following purposes:

  • Initiation and execution of business relationships
  • Responding to inquiries
  • Communication with business partners
  • Marketing and sales activities in the B2B sector
  • Operation, security, and optimization of the website

8. Legal Bases for Processing

Processing is based on:

  • Art. 6(1)(a) GDPR (consent, where given)

  • Art. 6(1)(b) GDPR (contractual or pre-contractual measures)

  • Art. 6(1)(f) GDPR (legitimate interest in efficient communication, IT security, and business operations)

  • Art. 6(1)(c) GDPR (legal obligations)

9. Legitimate Interests

Our legitimate interests lie in particular in:

  • maintaining business relationships,
  • efficient internal and external communication,
  • ensuring the technical operation of the website,
  • IT security and abuse prevention.

10. Use of Cookies

Our website uses exclusively technically necessary cookies. These are required to provide basic functions of the website.

Consent pursuant to § 25 TTDSG (German Telecommunications Telemedia Data Protection Act) is not required for this purpose.

11. Hosting

Our website is hosted by STRATO AG, Otto-Ostrowski-Straße 7, 10249 Berlin, Germany (hereinafter "Strato"). Strato processes the data mentioned below on our behalf. The servers are located exclusively in Germany.

The legal basis for the use of the hosting service provider is Art. 6(1)(f) GDPR (legitimate interest in reliable and secure website operation).

A data processing agreement (DPA) pursuant to Art. 28 GDPR has been concluded with Strato.

Server Log Data

When using our website, Strato automatically collects and stores information in so-called server log files.

This includes in particular:

  • IP address
  • Date and time of access
  • Page or file accessed
  • Browser type and operating system

Processing is carried out to ensure technical security, for error analysis, and for defense against attacks.

The legal basis is Art. 6(1)(f) GDPR.

12. Contact via the Contact Form

If you contact us via the contact form, the information you provide (e.g., name, email address, message) will be processed to handle your inquiry.

The data is transmitted directly to our email address and is not stored in a database on the website.

Email receipt and sending is handled by STRATO AG. Processing takes place on servers in Germany.

The legal basis for processing is:

  • Art. 6(1)(b) GDPR (pre-contractual measures) or
  • Art. 6(1)(f) GDPR (legitimate interest in processing inquiries)

13. Recipients and Categories of Recipients

Personal data may be transmitted to:

  • Internal departments
  • STRATO AG (hosting and email, server location Germany)

Data processing agreements pursuant to Art. 28 GDPR have been concluded with all service providers who process personal data on our behalf.

14. Transfer to Third Countries

In the course of our business activities, personal data may be transferred to recipients in countries outside the European Union or the European Economic Area (so-called third countries).

Where no adequacy decision of the European Commission exists for the relevant third country, we ensure through appropriate safeguards that your rights and freedoms are adequately protected. This is done in particular through the conclusion of Standard Contractual Clauses (SCCs) pursuant to Art. 46(2)(c) GDPR.

United Kingdom (UK): An adequacy decision of the European Commission pursuant to Art. 45 GDPR exists for the United Kingdom. The transfer of personal data to the United Kingdom is therefore permissible without additional safeguards.

For further information on the safeguards employed, please contact us using the contact details above.

15. Storage Duration

Personal data is stored only for as long as necessary for the respective purposes or as required by statutory retention obligations.

Once the purpose has ceased to exist, the data is deleted or anonymized.

16. Technical and Organizational Measures

We employ appropriate technical and organizational measures to protect personal data against loss, manipulation, and unauthorized access.

17. Rights of Data Subjects

Data subjects have the right to:

  • Access (Art. 15 GDPR)
  • Rectification (Art. 16 GDPR)
  • Erasure (Art. 17 GDPR)
  • Restriction of processing (Art. 18 GDPR)
  • Data portability (Art. 20 GDPR)
  • Objection (Art. 21 GDPR)

Please direct requests to the contact address above.

18. Right to Lodge a Complaint

You have the right to lodge a complaint with a competent data protection supervisory authority.

The supervisory authority responsible for us is:

Die Landesbeauftragte für Datenschutz und Informationsfreiheit der Freien Hansestadt Bremen Arndtstraße 1, 27570 Bremerhaven, Germany Phone: +49 421 361-2010 Email: office@datenschutz.bremen.de Website: https://www.datenschutz.bremen.de

19. Changes to this Privacy Policy

We reserve the right to adapt this privacy policy to reflect legal requirements or changes to our services.

The current version published on our website shall always apply.

As of: February 2026