Privacy_Policy

Privacy_Policy

1. General

1.1 Scope of Application
The following information is provided in accordance with Article 13 of the General Data Protection Regulation (GDPR) regarding the processing of personal data when purchasing a VOLTECTOR® and using the VOLTECTOR® app. For details on data processing when visiting our website, please refer to the corresponding privacy policy at https://peekgmbh.zohodesk.eu/portal/de/kb/articles/voltector-datenschutzrichtlinie.

1.2 Personal Data
Personal data includes all information that directly or indirectly relates to an individual, such as name, address, etc., and the serial number of a sensor purchased by a particular customer.

1.3 Data Controller
The data controller under the GDPR is PEEK GmbH, Arzberger Str. 10, 82211 Herrsching, Phone +49 8152 9988612, Email: info@peek-solutions.com (hereinafter referred to as "we").

2. Processing of Personal Data in Connection with the Purchase of a Sensor

2.1 Data Processed
When you send us an inquiry or enter into a purchase contract, we collect your name, contact details, and any other data you provide. When you purchase a sensor, we store the sensor's serial number in your customer account.

2.2 Purposes and Legal Basis of Processing

  • 2.2.1 Contract Fulfillment
    We process your data to fulfill the purchase contract, including shipping and billing. The legal basis is Article 6(1)(b) GDPR.

  • 2.2.2 Compliance with Legal Obligations
    We retain your data as required by legal retention obligations, such as business correspondence, invoices, and payment records. The legal basis is Article 6(1)(c) GDPR.

  • 2.2.3 Legitimate Interests
    We process your data to protect legitimate interests as permitted by law, such as customer relations management, direct marketing, and the assertion or defense of claims. The legal basis is Article 6(1)(f) GDPR.

2.3 Duration of Storage
Your data is deleted when it is no longer needed for its intended purpose.

3. Processing of Personal Data in Connection with Sensor and App Use

3.1 Purpose of Processing and Legal Basis
In connection with the use of the sensor and app, we process your data to ensure the correct functioning of the sensor and app, provide customer support, and contact you in the event of technical issues. The legal basis is Article 6(1)(f) GDPR.

3.2 Data Processed

  • 3.2.1 Link to Serial Number
    The following data is stored per sensor in a data object in a cloud database, containing the serial number and the company name of the customer. However, it is not possible to link this data to individual users of the sensor, and registration in the app is not required. No data is collected on sensor usage.

  • 3.2.2 Data Sent to the Sensor
    Firmware version number and image; sensor status (activated/deactivated).

  • 3.2.3 Data Sent to the Cloud
    Sensor serial number; selected voltage level; indication of available firmware update (yes/no); timestamp of the last connection with the app; timestamp of the last firmware update.

4. Data Recipients

We only share your data with third parties without your consent in the following cases:

  • 4.1.1 When necessary to fulfill our contractual obligations, such as payment and shipping services.
  • 4.1.2 When necessary to protect legitimate interests, particularly for asserting claims.
  • 4.1.3 To comply with legal obligations, such as tax authorities.
  • 4.1.4 Specifically, we share data with the provider of our cloud database, Google Cloud EMEA Limited, 70 Sir John Rogerson’s Quay, Dublin 2, Ireland, when using the sensor and app.

4.2 Transfer of Personal Data to Third Countries Outside the GDPR Scope
Data stored in the cloud is hosted on servers in Europe. However, transfer to Google LLC in the USA cannot be excluded. Since the USA does not provide an adequate level of data protection according to Article 45 GDPR, we use standard contractual clauses as appropriate safeguards under Article 46 GDPR. These clauses are part of our data processing agreement with Google Cloud EMEA Limited. You can find the standard contractual clauses at https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_de.

5. Data Subject Rights

5.1 You have the following rights:

  • The right to access your personal data (Article 15 GDPR).
  • The right to correct inaccurate data (Article 16 GDPR).
  • The right to delete (Article 17) or restrict the processing of (Article 18 GDPR) data no longer needed. If there are legal retention obligations (e.g., for business correspondence under commercial or tax law) or other legal exceptions, data will not be deleted but processing will be restricted.
  • The right to data portability (Article 20 GDPR), i.e., the right to request data you have provided to us in a structured, commonly used, and machine-readable format and to transfer these data to another controller without interference; potentially also to request direct data transfer from us to another controller, if technically feasible.
  • If you believe that the processing of your data violates data protection law, you may file a complaint with a supervisory authority (Article 77 GDPR). The locally responsible authority for us is the Bavarian State Office for Data Protection Supervision, Promenade 18, 91522 Ansbach, Germany (https://www.lda.bayern.de).

5.2 Right to Object
You may object to the processing of your data for direct marketing purposes at any time and also, for particular reasons, to any other processing conducted to protect legitimate interests (Article 21 GDPR).