Privacy Policy
General information
This privacy policy explains the type, scope and purpose of the collection and processing of personal data by the operator of this website. Processing is carried out in accordance with the General Data Protection Regulation (GDPR), applicable national data protection laws and telemedia laws. Terms such as "personal data" or "processing" are defined in Art. 4 GDPR. We treat your data confidentially and in line with legal requirements.
Data controller (Art. 4(7) GDPR)
The data controller responsible for processing on this website is: NUARTIX LLC, 5830 E 2nd St, Ste 7000 #27824, Casper, Wyoming 82609, USA. Contact: e-mail info@nuartix.com. Further details can be found in the Legal Notice / Impressum.
Legal basis for processing
We process personal data only where a legal basis exists: consent (Art. 6(1)(a) GDPR), contract performance or pre-contractual steps (Art. 6(1)(b) GDPR), legal obligation (Art. 6(1)(c) GDPR), or legitimate interest (Art. 6(1)(f) GDPR). Where we rely on legitimate interest, we will explain the purposes on request. You have the right to object to processing based on legitimate interest (Art. 21 GDPR).
Access data and server log files
For the legitimate interest (Art. 6(1)(f) GDPR) of security, abuse prevention and system stability, our hosting provider collects or processes access data (server log files) when you visit this website. This may include: IP address, date and time of access, requested file/URL, volume of data transferred, browser type and version, operating system, referrer URL. Storage is for abuse prevention and fault analysis. Log files are generally kept only for a limited period (up to 7 days) and then deleted or anonymised. Data is not passed to third parties unless required by law.
Hosting
This website is hosted by an external provider. We use Cloudflare (Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA) as our hosting and content delivery network (CDN) to deliver and protect this website. Personal data processed in this context (in particular access data) is processed solely on our behalf and in accordance with our instructions under a data processing agreement (Art. 28 GDPR). Cloudflare, Inc. participates in the EU-US Data Privacy Framework (DPF). Transfers to the USA are based on the European Commission adequacy decision pursuant to Art. 45 GDPR. Where applicable, additional safeguards such as EU standard contractual clauses are in place.
Data processors (overview)
For transparency we list the processors we use: Cloudflare, Inc. (USA) – hosting, CDN and security; where applicable Vercel Inc. (analytics, only after your consent); where applicable Google LLC (Google Analytics, only after your consent). Further sub-processors may be listed in Cloudflare’s DPA or the respective provider documentation.
Data we collect – overview
We collect only data necessary for the stated purposes: (1) Usage data when you visit (see access data/log files). (2) Data from the contact form: name, e-mail, optionally company, phone, industry, message and preferred language – solely to process your enquiry. (3) Technical data such as cookie or device IDs if you have consented to optional services (e.g. analytics). We do not sell your data or pass it to third parties for advertising purposes.
Retention periods
We retain personal data only as long as necessary for the stated purposes: server/access logs: generally up to 7 days; contact form and e-mail enquiries: generally 6–12 months after the enquiry is closed (longer only where required by law); consent records (e.g. cookie consent): until withdrawal plus any required retention for proof; analytics data (where you have consented): typically up to 14 months or as specified by the provider.
Contact form and e-mail contact
When you contact us via the contact form or e-mail, the information you provide (e.g. name, e-mail address, content of the message) is processed for the purpose of handling your enquiry. The legal basis is performance of pre-contractual or contractual measures (Art. 6(1)(b) GDPR) or our legitimate interest in responding to your enquiry (Art. 6(1)(f) GDPR). Data is retained only as long as necessary for processing and any follow-up, and for statutory retention obligations. It is not passed to third parties unless required by law.
Cookies and local storage
This website uses cookies and, where applicable, similar technologies (e.g. local storage). Necessary cookies are required for the operation of the website (e.g. session, language choice, consent) and are based on Art. 6(1)(f) GDPR (legitimate interest) or on your consent where we obtain it. Optional cookies (e.g. for analytics or reach measurement) are used only after your explicit consent (Art. 6(1)(a) GDPR). Tracking (e.g. analytics) is only activated after you give consent in the cookie banner; your choice is stored and you can withdraw or change it at any time via the cookie settings link in the footer. You can set your browser to reject cookies; some functions may then be unavailable.
Analytics and reach measurement
Where we use analytics or reach measurement services (e.g. Vercel Analytics, Google Analytics), this is only after your consent in the cookie banner. Processing is based on Art. 6(1)(a) GDPR. We use providers with privacy-friendly settings (e.g. IP anonymisation, no transfer to third parties for advertising). You can withdraw consent at any time or disable via cookie settings or browser add-ons (e.g. opt-out).
Your rights (Art. 15–22 GDPR)
You have the following rights vis-Ã -vis us: right of access (Art. 15 GDPR), rectification (Art. 16 GDPR), erasure (Art. 17 GDPR), restriction of processing (Art. 18 GDPR), data portability (Art. 20 GDPR) and objection to processing (Art. 21 GDPR). Where processing is based on consent, you have the right to withdraw consent at any time (Art. 7(3) GDPR) without affecting the lawfulness of processing before withdrawal. To exercise your rights, please use the contact details under "Data controller" or "Contact".
Right to lodge a complaint with a supervisory authority
You have the right to lodge a complaint with a data protection supervisory authority (Art. 77 GDPR) in the EU/EEA member state of your habitual residence, place of work or place of the alleged infringement. A list of EU supervisory authorities can be found at: https://edpb.europa.eu/about-edpb/about-edpb/members_en.
Transfer to third countries
Where we process data in a third country (e.g. USA) or have it processed there, we do so only if the EU Commission has adopted an adequacy decision, appropriate safeguards (e.g. EU standard contractual clauses) are in place, or you have given explicit consent. Further information is available on request.
Data security
We implement technical and organisational measures to protect your data against accidental or deliberate manipulation, loss or access by unauthorised persons (Art. 32 GDPR). These include encryption of the website (SSL/TLS), access restrictions and the use of trusted processors. We review these measures on a regular basis.
Changes to this privacy policy
We reserve the right to update this privacy policy to reflect changes in the law or in our services. The current version is published on this page. Where changes are material, we will inform you as required (e.g. by a notice on the website or by e-mail).
Contact for data protection enquiries
Data protection contact: info@nuartix.com. For any questions about data protection and to exercise your rights, please use the contact form or this e-mail address (see also Legal Notice). We will process your request without undue delay and within the statutory time limits.