1. Data Protection at a Glance
General Information
The following information provides a simple overview of what happens to your personal data when you visit this website or use our services. Personal data is any data that can be used to personally identify you.
Data Collection on This Website
Who is responsible for data collection on this website?
Data processing on this website is carried out by Evonius. You can find their contact details in the Legal Notice of this website.
How do we collect your data?
Your data is collected, on the one hand, by you providing it to us (e.g., via email). Other data is collected automatically or after your consent by our IT systems when you visit the website (e.g., internet browser, operating system, or time of page access).
2. Hosting
Infrastructure & Hosting
As a cloud provider, we operate our services on our own or leased server infrastructure. Personal data collected on this website or within our services is stored on our dedicated, self-managed infrastructure. We only use the physical resources (data centers) of specialized partners, but retain sole administrative control and data sovereignty. This primarily includes IP addresses, meta & communication data, website access, and other data generated via our platform.
Legal Basis: The use of this infrastructure is for the purpose of fulfilling contracts with our potential and existing customers (Art. 6 (1) (b) GDPR) and in the interest of a secure, high-performance, and efficient provision of our cloud services (Art. 6 (1) (f) GDPR).
Infrastructure Providers: We use the services of the following providers to supply physical server resources:
- netcup GmbH, Emmy-Noether-Straße 10, 76131 Karlsruhe, Germany
- Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, Germany
We have concluded a Data Processing Agreement (DPA) with the aforementioned providers. This is a contract required by data protection law, which ensures that they process the personal data of our website visitors only according to our instructions and in compliance with the GDPR.
3. General & Mandatory Information
Data Protection
As the operator of these pages, we take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with statutory data protection regulations and this Privacy Policy.
The data controller responsible for data processing on this website is:
Evonius
Owner: Thomas Hörner
Dr.-Fritz-Ebbert-Str. 16
94034 Passau
Germany
Email: policies@evonius.net
Storage Duration
Unless a more specific storage period is mentioned in this Privacy Policy, your personal data will remain with us until the purpose for data processing no longer applies. If you assert a justified request for deletion or revoke your consent to data processing, your data will be deleted, provided we have no other legally permissible reasons for storage (e.g., tax or commercial law retention periods).
Revocation of Your Consent to Data Processing
Many data processing operations are only possible with your express consent. You can revoke any consent already given at any time. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
Right to Lodge a Complaint with a Supervisory Authority
In the event of violations of the GDPR, data subjects have a right to lodge a complaint with a supervisory authority, particularly in the Member State of their habitual residence, their place of work, or the place of the alleged violation.
Right to Data Portability
You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to a third party in a common, machine-readable format.
Access, Deletion & Rectification
Within the framework of applicable legal provisions, you have the right at any time to free information about your stored personal data, its origin and recipient, and the purpose of the data processing and, if applicable, a right to rectification or deletion of this data.
You have the right to request the restriction of the processing of your personal data. This applies, for example, for the duration of the review if you contest the accuracy of your data.
Security Measures (SSL/TLS)
To protect your data and for the secure transmission of confidential content, we use end-to-end SSL or TLS encryption on all systems. You can recognize this by the prefix 'https://' and the lock symbol in your browser bar. This encryption prevents data you transmit to us from being read by third parties.
Right to Restriction of Processing
You have the right to request the restriction of processing of your personal data. This applies if you contest the accuracy of your data, the processing is unlawful, or you have filed an objection. During the restriction, this data may (apart from its storage) only be processed with your consent or for the assertion of legal claims.
Disclosure of Data
Your personal data will not be transferred to third parties for purposes other than those listed. We only share your data if you have given your express consent, the transfer is necessary for the processing of a contractual relationship, or there is a legal obligation.
4. Data Collection
Inquiries (Email, Phone, Chat)
If you contact us by email or phone, your inquiry including all resulting personal data (name, request) will be stored & processed by us for the purpose of processing your request. We do not pass this data on without your consent.
Processing of this data is based on Art. 6 (1) (b) GDPR if your request is related to the fulfillment of a contract or is necessary for pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective handling of inquiries sent to us (Art. 6 (1) (f) GDPR).
Cookies
Our services use so-called 'cookies'. These are stored on your device either temporarily for the duration of a session (session cookies) or permanently (permanent cookies).
Technically necessary cookies are mandatory for the operation of the site (e.g., for search functions). Other cookies (e.g., analytics) are only used with your consent.
Server Log Files & Telemetry
To ensure the stability, security & performance of our cloud services, we collect technical data on every access. This includes: IP address (shortened if necessary), timestamp, accessed resource, status codes, browser information, and referring pages (referrer).
Purpose & Legal Basis: Processing is based on Art. 6 (1) (f) GDPR. Our legitimate interest lies in defending against cyberattacks (DDoS, brute-force), error analysis, and continuous optimization of our system load distribution. This data is stored strictly separate from customer account data and is automatically anonymized after technical security periods expire.
Direct Marketing for Existing Customers
If we have received your email address in connection with the sale of a service, we reserve the right to regularly send you offers for similar services from our range via email (§ 7 (3) UWG). You can object to this use of your data at any time (e.g., via the link at the end of each email).
Security & Abuse Detection
To prevent abuse, fraud, and to ensure the integrity of our cloud platform, we process identification & usage data (e.g., login attempts, IP reputation, city-level geolocation). This processing serves to protect our infrastructure and our customers from unauthorized access.
Purpose & Legal Basis: Processing is based on our legitimate interest in fraud prevention and network security in accordance with Art. 6 (1) (f) GDPR in conjunction with Recital 47 GDPR.