Privacy Policy – Keppler.Systems. GmbH

As of: April 2026

1. Data Controller

The controller within the meaning of the General Data Protection Regulation (GDPR) is:

Keppler.Systems. GmbH
Zollernstraße 84
75328 Schömberg, Germany

Email: info@keppler-systems.de
Phone: +49 7084 1554787

2. Data Protection Officer

A data protection officer has not been appointed (unless legally required).

3. General Information on Data Processing

We only process personal data to the extent necessary for the provision of a functional website, our content and services, or where you have consented to the processing. The following information is provided in particular in accordance with Art. 13 GDPR.

4. Hosting (Microsoft Azure)

Our website is hosted via Microsoft Azure (Microsoft) in the 'West Germany' region. Personal data generated during the use of this website (e.g. connection data/log data) is processed in this context.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in secure and efficient operation).

5. Server Log Files

When you access our website, information is automatically processed by the hosting/server in so-called server log files.

This may include:
– IP address
– Date and time of the request
– Requested page/file
– Referrer URL (the previously visited page)
– Browser type/version and operating system

Purpose: Technical provision, error analysis, stability and security of the website.

Legal basis: Art. 6(1)(f) GDPR.

Storage duration: 14 days, followed by deletion or anonymisation.

6. Contact / Contact Form

When you contact us by email or via the contact form, we process the data you have provided (e.g. name, email address, message) in order to handle your enquiry.

Legal basis: Art. 6(1)(b) GDPR (pre-contractual/contractual communication) or Art. 6(1)(f) GDPR (handling general enquiries).

Storage duration: We delete the data once the enquiry has been fully processed, unless statutory retention obligations apply.

7. Cookies and Similar Technologies (Consent Management)

We use cookies and similar technologies (e.g. browser storage/LocalStorage). Technically necessary technologies are required for operation and may be used without consent (Art. 6(1)(f) GDPR).

For all technologies that are not technically necessary (e.g. analytics/tracking), we obtain your consent via our cookie banner before their use.

Legal basis: Art. 6(1)(a) GDPR.

Consent storage: Your selection is stored in the browser storage (localStorage, key: ks-consent) so that we can take your selection into account on future page visits.

Withdrawal: You can withdraw or adjust your consent at any time with effect for the future via the 'Cookie Settings' on our website.

8. Google Analytics 4 (GA4)

We use Google Analytics 4 (GA4), a web analytics service provided by Google, to analyse the use of our website, continuously optimise our offering and measure the success of our marketing activities (e.g. evaluation of QR code scans via UTM parameters). In particular, it is recorded via which specific QR code access to our website occurred.

GA4 also collects approximate location data (e.g. city or region) derived from the IP address. We note that Google Analytics 4 only captures IP addresses in truncated (anonymised) form by default. It is not possible for us to identify individual users through this.

Processing only takes place after your explicit consent via the cookie banner.

Legal basis: Art. 6(1)(a) GDPR.

Recipient/Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Depending on the configuration, affiliated companies of Google (in particular Google LLC, USA) may also receive data.

Third-country transfer: Google is certified under the EU-U.S. Data Privacy Framework. In addition, the transfer is based on appropriate safeguards (e.g. standard contractual clauses).

Retention: Event data retention in GA4 is set to 14 months.

9. Google Maps

We integrate map material from Google Maps to display locations. When loading the map, personal data (e.g. IP address) may be transmitted to Google.

The map is only loaded after you have given your consent.

Legal basis: Art. 6(1)(a) GDPR.

10. Recipients of Data

Recipients of personal data may include in particular:

– Hosting/IT service providers (Microsoft Azure)
– Analytics service providers (Google Ireland Limited)
– Providers of embedded content (Google Ireland Limited)

11. Your Rights (Data Subject Rights)

Under the GDPR, you have the following rights:

  • Access (Art. 15): What data do we store?
  • Rectification (Art. 16): Correction of inaccurate data.
  • Erasure (Art. 17): Right to be forgotten.
  • Restriction (Art. 18): Restriction of processing.
  • Data portability (Art. 20): Receive your data in a machine-readable format.
  • Objection (Art. 21): Against processing based on legitimate interests.
  • Withdrawal (Art. 7(3)): Withdrawal of your consent possible at any time.

12. Right to Lodge a Complaint

You have the right to lodge a complaint with a data protection supervisory authority regarding the processing of your personal data by us.

13. Currency

As of: April 2026. We adapt this policy in the event of technical or legal changes.

An unhandled error has occurred. Reload 🗙

Rejoining the server...

Rejoin failed... trying again in seconds.

Failed to rejoin. Please retry or reload the page.

The session has been paused by the server.

Failed to resume the session. Please retry or reload the page.