Privacy Policy

Definitions

This Privacy Policy is based on the terms used by the European legislator for the adoption of the GDPR. Our Privacy Policy aims to be readable and understandable for the public and especially for our customers. To ensure this, we explain in advance the terminology used.

In this Privacy Policy, we use, among others, the following terms:

1. Personal Data
Personal data means any information relating to an identified or identifiable natural person (the “data subject”). An identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, identification number, location data, an online identifier, or one or more factors specific to their physical, physiological, genetic, mental, economic, cultural, or social identity.

2. Processing
Processing means any operation or set of operations performed on personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure, or destruction.

3. Data Subject
A data subject is any identified or identifiable natural person whose personal data is processed by the controller.

4. Third Party
A third party is any natural or legal person, authority, institution, or other body other than the data subject, the controller, the processor, and persons authorized to process personal data under the direct authority of the controller or processor.

5. Consent
Consent means any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which they, by a statement or by a clear affirmative action, signify agreement to the processing of personal data relating to them.

6. Controller
The controller or data controller is the natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.

Controller Responsible for Data Processing

The controller for data processing on this website is:
PhySens Rail GmbH
Rebenring 33
38106 Braunschweig
Germany

The controller decides, alone or jointly with others, on the purposes and means of processing personal data (e.g., names, contact information)

Withdrawal of Consent to Data Processing

Certain data processing operations are only possible with your explicit consent. You may withdraw your consent at any time. A brief e-mail message is sufficient for withdrawal. The lawfulness of processing carried out until the withdrawal remains unaffected.

Right to Lodge a Complaint with the Competent Supervisory Authority

In the event of data protection violations, you have the right to lodge a complaint with the competent supervisory authority. The competent authority for PhySens GmbH, headquartered in Lower Saxony, is the State Commissioner for Data Protection of Lower Saxony. For a list of supervisory authorities, see:
https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html

Right to Data Portability

You have the right to receive, in a structured, commonly used, and machine-readable format, personal data you have provided to us, and to transmit this data to another controller, where technically feasible. To exercise this right, please contact us using the contact details in our imprint.

Right to Access, Rectification, Restriction, and Erasure

You have the right, at any time and free of charge, to request information about your stored personal data, its source, its recipients, and the purpose of processing, as well as a right to rectification, restriction of processing, or erasure of your data under applicable law. To exercise these rights, please contact us via the contact details provided in our imprint.

SSL/TLS Encryption

For security reasons and to protect the transmission of confidential content that you send to us as site operators, our website uses SSL/TLS encryption. Data you transmit via this website is thus encrypted to prevent interception by third parties. However, these measures do not guarantee absolute security, particularly if your system or browser is not up to date or has been compromised.

Contact Form

Data submitted via our contact form, including your contact details, is stored in order to process your inquiry and to respond to any follow-up questions or to provide offers. This data will not be shared without your consent.

Processing of the data entered in the contact form is based exclusively on your consent (Art. 6 (1) lit. a GDPR). You may withdraw this consent at any time by a brief e-mail. Processing prior to withdrawal remains lawful.

Data from the contact form will remain with us until you request deletion, withdraw your consent, or the storage purpose ceases to apply. Mandatory statutory retention periods remain unaffected.

Server Log Files (“Log Files”)

Each time our website is accessed, the web server automatically collects data and stores it in log files. These include the files requested, status and error codes, timestamp, and system information. These data are usually anonymized and do not allow conclusions about your person.

In case of errors or disruptions, your IP address is also recorded. While not directly linked to an individual, IP addresses are essential for detecting and defending against IT attacks. Regular error-related log data is automatically deleted after seven days. If IP addresses are involved in attacks, they may be stored longer to block malicious requests.

If such data are ever considered personally identifiable, our legitimate interest in operating the website serves as the legal basis for processing.

Cookies

Our website uses cookies, primarily to implement user-friendly, efficient, and secure services. Cookies are small text files that your browser stores on your device. Some cookies are “session cookies” and are deleted after your browser session ends. Other cookies remain until you delete them. These persistent cookies help recognize users, for example, to simplify log-ins.

Most modern browsers allow you to monitor, restrict, or block cookies. You can configure your browser to delete cookies automatically when it closes. Disabling cookies may limit the functionality of our website.

Necessary cookies for electronic communication processes or to provide certain user-desired functions (e.g., shopping cart) are set on the basis of Art. 6 (1) lit. f GDPR. As the website operator, we have a legitimate interest in storing cookies to provide our services reliably and error-free. For more information, please see our Cookie Notice.