Privacy Policy
Last updated: November 2025
1. Controller
The controller responsible for data processing on this website is:
CEFAMEX SOLUTIONS UG (limited liability)
Wittenberger Weg 8
71101 Schönaich
Germany
Phone: +49 (0)1525 9811710
Email:
info@cefamex-solutions.de
Represented by: Amir Mulahasanovic (Managing Director)
2. General information on data processing
We take the protection of your personal data very seriously. All personal data is handled confidentially and in accordance with applicable data protection regulations, in particular the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG).
You can generally use our website without providing personal data. If personal data is collected on our pages, this is - where possible - always on a voluntary basis.
3. Server logfiles (hosting)
Our hosting provider automatically collects and stores information that your browser automatically transmits. These include:
- Browser type and browser version
- Operating system used
- Referrer URL (previous page visited)
- Host name of the accessing computer
- Date and time of the server request
- IP address (shortened or full, depending on provider configuration)
These data are used exclusively to ensure the error-free operation of the website and for security purposes (e.g., to defend against attacks). These data are not combined with other data sources.
Legal basis: Art. 6(1)(f) GDPR - legitimate interest in a stable and secure website.
Hosting is provided by STRATO AG, Otto-Ostrowski-Straße 7, 10249 Berlin, Germany. A data processing agreement under Art. 28 GDPR has been concluded. All processing takes place within the EU.
4. Cookies
Our website uses only technically necessary cookies that are required for basic functionality. This includes a session cookie (“PHPSESSID”), used for the contact form, captcha functionality, and secure form submission.
These cookies:
- do not contain personal tracking information,
- are not used for analytics or marketing,
- are automatically deleted when you close your browser.
Since only strictly necessary cookies are used, a cookie banner is not required.
5. Contact form
When you contact us using the contact form, the following data is processed:
- Your name
- Your email address
- Your message
- The result of the security question (simple math captcha)
These data are used exclusively to respond to your inquiry.
Legal basis: Art. 6(1)(b) GDPR (pre-contractual communication) or Art. 6(1)(f) GDPR (legitimate interest in effective communication).
5.1 Anti-abuse protection (captcha, honeypot, IP block)
To protect the website from bots and spam, we use:
- a simple mathematical captcha,
- a honeypot field invisible to normal users,
- a temporary IP block if the captcha is entered incorrectly multiple times.
Legal basis: Art. 6(1)(f) GDPR - legitimate interest in protecting the functionality and security of the website.
The blocking period is currently 30 minutes.
5.2 Storage period
Data from the contact form is deleted as soon as the request has been fully processed and no statutory retention obligations apply.
IP block logs are deleted or overwritten after the blocking period has expired.
6. Email contact
If you contact us via email, all data you provide (such as your email address, name, and message content) will be processed to handle your request.
Legal bases: Art. 6(1)(b) or Art. 6(1)(f) GDPR.
7. No data disclosure to third parties
Personal data will not be transferred to third parties unless:
- you have given your explicit consent (Art. 6(1)(a) GDPR),
- the processing is necessary for contract performance (Art. 6(1)(b) GDPR),
- there is a legal obligation (Art. 6(1)(c) GDPR),
- there is a legitimate interest and no overriding interests of the data subject (Art. 6(1)(f) GDPR).
Data is never transferred to non-EU/EEA countries.
8. Embedded content & external services
Our website does not load any external resources that would automatically transmit user data to third parties. In particular, we do not use:
- externally loaded fonts (e.g., Google Fonts),
- analytics or tracking tools,
- social media plugins or embed features,
- content delivery networks (CDNs) or external script libraries.
All fonts used on the website are hosted locally on our own server. No data is transmitted to external font providers.
9. Data security & SSL/TLS encryption
Our website uses SSL/TLS encryption. An encrypted connection can be recognized by the padlock symbol in your browser's address bar and the prefix “https://”.
10. Rights of data subjects
You have the following rights under the GDPR:
- Right of access (Art. 15 GDPR)
- Right to rectification (Art. 16 GDPR)
- Right to erasure (Art. 17 GDPR)
- Right to restriction of processing (Art. 18 GDPR)
- Right to data portability (Art. 20 GDPR)
- Right to object (Art. 21 GDPR)
To exercise your rights, simply write to: info@cefamex-solutions.de
11. Right to lodge a complaint
If you believe that the processing of your personal data violates the GDPR, you have the right to lodge a complaint with a supervisory authority.
The competent authority in Baden-Württemberg is:
The State Commissioner for Data Protection and Freedom of Information Baden-Württemberg
Königstraße 10a
70173 Stuttgart
Germany
Website:
www.baden-wuerttemberg.datenschutz.de
12. Updates to this Privacy Policy
This Privacy Policy is valid as of November 2025. Due to technical developments or legal changes, updates may be necessary. The current version is always available on this page.