Data privacy

General information

The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data is any information that can be used to identify you.

Who is responsible for data collection on this website?

The website operator is responsible for data processing on this website.

IoT Venture GmbH

Hilpertstr. 31

64295 Darmstadt

Germany.

Email: info@iot-venture.com

Data Protection Officer:

We have appointed a data protection officer.

Email: datenschutz@iot-venture.com

What data do we process?

Your data is automatically collected by our IT systems when you visit the website or with your consent. This is primarily technical data (e.g. internet browser, operating system, referrer URL, IP address or time of page view). This data is collected automatically as soon as you enter this website.

Other data is collected when you provide it to us. This may, for example, be data that you enter in a contact form. The data you enter in the contact form will remain with us until you ask us to delete it, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your enquiry has been processed).

This data will not be merged with other data sources.

What do we use your data for?

Some of the data is collected to ensure that the website is provided without errors. Other data may be used to analyse your user behaviour.

What legal basis do we have for processing your data when you use our website?

If you have consented to data processing, we will process your personal data in accordance with Art. 6(1) GDPR. 1 lit. a GDPR.

If your data is required for the fulfilment of a contract or for the implementation of pre-contractual measures, we process your data on the basis of Art. 6(1)(b) GDPR. 1 lit. b GDPR.

Data processing may also be carried out on the basis of our legitimate interests, in accordance with Art. 6(1)(f) GDPR. 1(f) GDPR.

Which third-party tools and plug-ins do we use?

When you visit this website, your browsing behaviour may be evaluated statistically. This is primarily done using analysis programmes.

We use tools from companies based in the USA or other third countries that do not comply with data protection laws. If these tools are active, your personal data may be transferred to these countries and processed there. Please note that a level of data protection comparable to that in the EU cannot be guaranteed in these countries. For example, US companies are required by law to hand over personal data to security authorities, and you as the data subject are unable to take legal action against this. Therefore, it cannot be ruled out that US authorities (e.g. secret services) may process, analyse and permanently store your data on US servers for surveillance purposes. We have no influence over these processing activities.

Google Analytics:

This website uses Google Analytics, a web analysis service. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics allows the website operator to analyse visitor behaviour. The website operator receives various usage data in doing so, such as page views, length of visit, operating systems used, and the user’s origin. This data is assigned to the user’s end device. It is not assigned to a user ID.

Google Analytics uses technologies that recognise the user for the purpose of analysing behaviour (e.g. cookies or device fingerprinting). Information collected by Google about use of this website is usually sent to and stored on a Google server in the USA.

Use of this service is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR.

IP anonymisation

We have activated the IP anonymisation function on this website. This means that Google will truncate your IP address within European Union member states or other states that have signed the Agreement on the European Economic Area before transmitting it to the USA. Only in exceptional cases will your full IP address be sent to a Google server in the US, where it will be truncated. Google will use this information on behalf of the operator of this website to analyse your use of the website, compile reports on website activity, and provide the website operator with other services relating to website and internet activity. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.

Browser plugin

You can prevent Google from collecting and processing your data by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de.

More information on how Google Analytics handles user data can be found in Google’s privacy policy: https://support.google.com/analytics/answer/6004245?hl=de.

Demographic characteristics in Google Analytics

This website uses the ‘Demographic Characteristics’ function of Google Analytics to display suitable adverts to visitors within the Google advertising network. This enables reports to be generated containing information about the age, gender and interests of visitors to the site. This data originates from interest-based advertising from Google and visitor data from third-party providers. This data cannot be assigned to a specific person. You can deactivate this feature at any time via the ad settings in your Google account, or you can generally prohibit Google Analytics from collecting your data as described in the ‘Objection to data collection’ section.

Google Ads

The website operator uses Google Ads. Google Ads is an online advertising programme of Google Ireland Limited (‘Google’), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Ads enables us to display adverts in the Google search engine or on third-party websites when the user enters certain search terms into Google (keyword targeting). Furthermore, targeted adverts can be displayed based on the user data available at Google (e.g. location data and interests) (target group targeting). As the website operator, we can evaluate this data quantitatively by analysing, for example, which search terms led to the display of our advertisements and how many advertisements led to corresponding clicks.

YouTube

This website embeds videos from the YouTube website. The operator of the website is Google Ireland Limited (‘Google’), Gordon House, Barrow Street, Dublin 4, Ireland.

When you visit one of our websites on which YouTube is integrated, a connection to the YouTube servers is established. The YouTube server is informed which of our pages you have visited.

Furthermore, YouTube can store various cookies on your device or use similar technologies to recognise you, such as device fingerprinting. This enables YouTube to obtain information about visitors to this website. This information is used to record video statistics, improve user-friendliness, and prevent fraud.

If you are logged into your YouTube account, YouTube can assign your browsing behaviour directly to your personal profile. You can prevent this by logging out of your YouTube account.

We use YouTube to present our online offers in an appealing way. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. If we have requested your consent, we will only process your data on the basis of Art. 6(1)(f) GDPR. 1 lit. 1 GDPR and § 25 para. 1 TTDSG, provided that the consent includes the storage of cookies or access to information on the user’s terminal device (e.g. device fingerprinting), as defined in the TTDSG. Consent can be withdrawn at any time.

Further information on the handling of user data can be found in YouTube’s privacy policy:

https://policies.google.com/privacy?hl=de.

OpenAI chatbot

We use the OpenAI chatbot for communication.

The following data is processed:

– Date and time of access

Data that you enter into the chatbot.

This data will not be passed on to third parties or analysed in any other way unless we are legally obliged to do so (Art. 6 para. 1 letter e GDPR). This data is not merged with data from other sources either. No other personal data is collected when you use the chatbot.

Data collected during your conversation with the chatbot is stored for the duration of processing.

How is the website hosted?

This website is hosted externally. Any personal data collected via this website is stored on the hoster’s servers. This may include IP addresses, contact requests, metadata, communication data, contractual information, contact details, names, website access data and other information generated through the website.

We use external hosting to fulfil our contracts with potential and existing customers (Art. 6 para. 1 lit. b GDPR), and to ensure that our online offer is provided securely, quickly and efficiently by a professional provider (Art. 6 para. 1 lit. f GDPR). If corresponding consent has been obtained, processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG, provided that the consent includes the storage of cookies or access to information on the user’s terminal device (e.g. device fingerprinting), as defined by the TTDSG. Consent can be withdrawn at any time.

Our host(s) will only process your data to the extent necessary to fulfil their performance obligations and follow our instructions with regard to this data.

We have concluded a data processing agreement (DPA) for use of the aforementioned service. This contract is required by data protection law and ensures that personal data is processed by the service provider only in accordance with our instructions and in compliance with the GDPR.

For security reasons and to protect the transmission of confidential content, such as orders or enquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognise an encrypted connection by the address line of the browser changing from ‘http://’ to ‘https://’ and by the lock symbol in the browser bar.

If SSL or TLS encryption is activated, any data you transmit to us cannot be read by third parties.

What rights do you have regarding your data?

You have the right to lodge a complaint with the competent supervisory authority.

Data subjects have the right to lodge a complaint with the competent supervisory authority in the event of violations of the GDPR.

The competent supervisory authority for data protection issues is the data protection officer of the state of Hesse, where our company is based. You can find a list of data protection officers and their contact details at the following link:

https://www.bfdi.bund.de/DE/Infothek/Anschriften

Right to data portability

You have the right to receive any data that we process automatically on the basis of your consent or for the fulfilment of a contract in a commonly used, machine-readable format, either from us or from a third party. If you request the direct transfer of the data to another controller, this will only take place if it is technically feasible.

Information, erasure and rectification

Within the framework of the applicable legal provisions, you have the right to obtain free of charge at any time information about your stored personal data, its origin and recipients, and the purpose of the data processing, as well as a right to rectification or erasure of this data, if applicable. Please contact us if you have any further questions regarding personal data.

Right to restrict processing

You have the right to request that we restrict the processing of your personal data. You can contact us at any time to do so. This right exists in the following cases:

  • If you dispute the accuracy of the personal data that we hold about you, we generally need time to verify this. During the review period, you have the right to request that the processing of your personal data be restricted.
  • If the processing of your personal data is/was unlawful, you can request restriction of processing instead of erasure.
  • If we no longer need your personal data but you do, for the exercise, defence or assertion of legal claims, you can request that we restrict the processing of your personal data instead of erasing it.
  • If you have lodged an objection in accordance with Art. 21(1) GDPR, a balance must be struck between your interests and ours. 1 GDPR, a balance must be struck between your interests and ours. While this balance is being determined, you have the right to request the restriction of the processing of your personal data.

If you have restricted the processing of your personal data, apart from storage, it may only be processed with your consent, or for the establishment, exercise or defence of legal claims, or for the protection of the rights of another natural or legal person, or for reasons of important public interest of the European Union or a Member State.

Status: June 2025

1. Allgemeine Informationen

Ihr Vertrauen ist uns wichtig. Wir nehmen daher den Schutz Ihrer persönlichen Daten sehr ernst. Wir behandeln Ihre personenbezogenen Daten vertraulich und entsprechend der gesetzlichen Datenschutzvorschriften sowie dieser Datenschutzerklärung.

Wenn Sie den Dienst IT’S MY BIKE nutzen, werden verschiedene personenbezogene Daten verarbeitet. Die vorliegende Datenschutzerklärung erläutert, welche Daten wir erheben und wofür wir sie nutzen. Sie erläutert auch, wie und zu welchem Zweck das geschieht.

 

Wer ist verantwortlich für die Datenverarbeitung von IT’S MY BIKE?

Die Datenverarbeitung dieser App erfolgt durch den Betreiber.

IoT Venture GmbH
c/o HUB 31
Hilpertstraße 31
D-64295 Darmstadt
E-Mail: info(at)iot-venture.com

 

Wie erreichen Sie den Datenschutzbeauftragten?

E-Mail: datenschutz@iot-venture.com

 

Welche Daten verarbeiten wir?

Für die Nutzung der IT’S MY BIKE-Services werden hauptsächlich folgende Datenkategorien verarbeitet:

  • Kontakt- und Vertragsdaten des Nutzers
  • Fahrraddaten
  • Standortdaten des IT’S MY BIKE-Trackers / E-Bikes
  • Fahrdaten
  • Zahlungs- und Kontodaten
  • IP-Adresse

 

Wofür nutzen wir Ihre Daten und was ist die Rechtsgrundlage?

Die Verarbeitung der Daten ist erforderlich, um die IT’S MY BIKE-Services zu nutzen und im Falle einer Meldung Ihrerseits Ihr Fahrrad lokalisieren zu können. Die Datenverarbeitung ist für die Erfüllung des Vertrages erforderlich und beruht auf der Rechtsgrundlage von Art. 6 Abs. 1 lit. b DSGVO.

Bei der Nutzung der IT’S MY BIKE-App werden Daten verarbeitet, die wir aufgrund unseres berechtigten Interesses (nach Art. 6 Abs. 1 lit.f. DSGVO) als Server-Logfiles speichern:

  • Verwendetes Betriebssystem
  • IP-Adresse

Diese Daten werden nicht mit anderen Datenquellen zusammengeführt.

Darüber hinaus nutzen wir die anonymisierten Standort- und Fahrdaten zur Analyse, Weiterentwicklung und Verbesserung unserer Services. Die Rechtsgrundlage hierfür ist Art. 6 Abs. 1 lit. f DSGVO.

 

Wer bekommt Ihre Daten?

Innerhalb unseres Unternehmens erhalten nur die Personen und Stellen Ihre personenbezogenen Daten, die diese zur Erfüllung unserer vertraglichen und gesetzlichen Pflichten benötigen.

In dem Fall, in dem mehrere Nutzer auf eine Trackernummer registriert sind, wird Ihr Name, mit dem Sie sich registriert haben, den anderen Nutzern desselben Trackers angezeigt.

Darüber hinaus können wir Ihre personenbezogenen Daten an weitere Empfänger außerhalb des Unternehmens übermitteln, soweit dies zur Erfüllung der vertraglichen und gesetzlichen Pflichten erforderlich ist. Dies können Vertragspartner wie zum Beispiel Zahlungsdienstleister sein. Die Verarbeitung der Daten erfolgt aufgrund der vertraglichen Verpflichtung gem. Art. 6 lit b DSGVO.

Wir bedienen uns zur Erfüllung unserer vertraglichen und gesetzlichen Pflichten unterschiedlicher Dienstleister, zum Beispiel beim Hosting der Daten. Die Daten werden auf Servern innerhalb der EU gespeichert. Eine Datenübertragung in andere Länder außerhalb der EU findet nicht statt.

Sollten in Ausnahmefällen Daten auf Servern in den USA gespeichert werden, stellen wir sicher, dass alle rechtlichen Voraussetzungen dafür erfüllt werden sowie dass zusätzliche Sicherungsmaßnahmen getroffen werden, um einen unbefugten Zugriff auf die personenbezogenen Daten auszuschließen.

 

Welche Rechte haben Sie bezüglich Ihrer Daten?

Sie haben jederzeit das Recht unentgeltlich Auskunft über Herkunft, Empfänger und Zweck Ihrer gespeicherten personenbezogenen Daten zu erhalten. Sie haben unter entsprechenden Voraussetzungen ein Recht, die Berichtigung, Sperrung oder Löschung dieser Daten zu verlangen. Hierzu sowie zu weiteren Fragen zum Thema Datenschutz können Sie sich jederzeit an uns oder unseren Datenschutzbeauftragten wenden. Des Weiteren steht Ihnen ein Beschwerderecht bei der zuständigen Aufsichtsbehörde zu. Zuständige Aufsichtsbehörde in datenschutzrechtlichen Fragen ist der Landesdatenschutzbeauftragte des Bundeslandes Hessen, in dem unser Unternehmen seinen Sitz hat. Eine Liste der Datenschutzbeauftragten sowie deren Kontaktdaten können folgendem Link entnommen werden: https://www.bfdi.bund.de/DE/Infothek/Anschriften

Stand: Januar 2023

null