Privacy Policy

Preamble

This Privacy Policy explains what types of personal data (hereinafter also referred to as “data”) we process, for what purposes, and to what extent. This Privacy Policy applies to the processing of personal data carried out by us both in the context of providing our services and, in particular, on our website as well as within external online presences, such as our social media profiles (hereinafter collectively referred to as “Online Offer”).

The terms used are not gender-specific.

As of: March 30, 2026

Table of Contents

Data Controller

nititec vacuum gripper GmbH
Eschberger Weg 46
66121 Saarbrücken, Germany

Authorized Representatives: Yannik Goergen

Email Address: info@nititec-gripper.de

Legal Notice: https://nititec-gripper.de/impressum/

Overview of Processing Activities

The following overview summarizes the types of data processed and the purposes of such processing, and identifies the data subjects.

Types of Data Processed

  • Master data.
  • Payment data.
  • Contact data.
  • Content data.
  • Contract data.
  • Usage data.
  • Meta, communication, and procedural data.
  • Log data.

Categories of Data Subjects

  • Service recipients and clients.
  • Prospective customers.
  • Communication partners.
  • Users.
  • Business and contractual partners.

Purposes of processing

  • Provision of contractual services and fulfillment of contractual obligations.
  • Communication.
  • Security measures.
  • Audience measurement.
  • Office and organizational procedures.
  • Organizational and administrative procedures.
  • Feedback.
  • Provision of our online services and user-friendliness.
  • IT infrastructure.
  • Public relations.
  • Business processes and business management procedures.

Applicable Legal Bases

Applicable legal bases under the GDPR: Below is an overview of the legal bases under the GDPR on which we process personal data. Please note that, in addition to the provisions of the GDPR, national data protection regulations may apply in your country or our country of residence. Furthermore, should more specific legal bases apply in individual cases, we will inform you of these in this Privacy Policy.

  • Consent (Art. 6(1)(a) GDPR) – Die betroffene Person hat ihre Einwilligung in die Verarbeitung der sie betreffenden personenbezogenen Daten für einen spezifischen Zweck oder mehrere bestimmte Zwecke gegeben.
  • Performance of a contract and pre-contractual inquiries (Art. 6(1)(b) GDPR) – Processing is necessary for the performance of a contract to which the data subject is a party or for the implementation of pre-contractual measures taken at the data subject’s request.
  • Legal obligation (Art. 6(1)(c) GDPR) – Processing is necessary for compliance with a legal obligation to which we are subject.
  • Legitimate interests (Art. 6(1)(f) GDPR) – Processing is necessary to protect our legitimate interests or those of a third party, unless the interests or fundamental rights and freedoms of the data subject prevail.

National data protection regulations in Germany: In addition to the data protection provisions of the GDPR, national data protection regulations apply, in particular the Federal Data Protection Act (BDSG).

Security Measures

In accordance with legal requirements, and taking into account the state of the art, the costs of implementation, and the nature, scope, context, and purposes of the processing, as well as the varying likelihood and severity of the threat to the rights and freedoms of natural persons, we implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk.

These measures include, in particular, ensuring the confidentiality, integrity, and availability of data, as well as securing online connections through TLS/SSL encryption technology (HTTPS).

Transfer of Personal Data

In the course of our processing of personal data, it may occur that such data is transferred to or disclosed to other entities, companies, or individuals. Recipients of this data may include, in particular, IT service providers, hosting providers, CRM service providers, and providers of services and content integrated into our website. In such cases, we comply with legal requirements and, in particular, enter into appropriate contracts or agreements designed to protect your data.

International Data Transfers

If we transfer data to a third country, i.e., outside the European Union (EU) or the European Economic Area (EEA), or if this occurs in connection with the use of third-party services, it is done solely in accordance with legal requirements.

If providers process data in the United States, this is done on the basis of an adequacy decision, certification under the Data Privacy Framework (DPF), standard contractual clauses, or other appropriate safeguards, to the extent required by law.

General Information on Data Storage and Deletion

We delete the personal data we process in accordance with legal requirements as soon as the underlying consent is revoked or there is no longer a legal basis for processing. This applies to cases where the original purpose of processing no longer applies or the data is no longer needed.

Exceptions apply if legal obligations or specific interests require longer retention.

  • 10 years – Retention period for documents relevant under tax and commercial law.
  • 8 years – Retention period for accounting documents, to the extent required by law.
  • 6 years – Retention period for other business-related documents.
  • 3 years – Storage for the assertion, exercise, or defense of legal claims within the standard statute of limitations.

Rights of Data Subjects

As a data subject, you are entitled to the following rights in particular under the GDPR:

  • Right to object: You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you, provided that such processing is based on Article 6(1)(e) or (f) of the GDPR. If personal data is processed for direct marketing purposes, you have the right to object at any time to the processing for such marketing purposes.
  • Right to withdraw consent: You have the right to withdraw any consent you have given at any time with effect for the future.
  • Right of access: You have the right to request information about your personal data processed by us.
  • Right to rectification: You have the right to request the rectification of inaccurate data or the completion of incomplete data.
  • Right to erasure and restriction of processing: In accordance with legal requirements, you have the right to request the erasure or restriction of the processing of your data.
  • Right to data portability: You have the right to receive the data concerning you in a structured, commonly used, and machine-readable format or to request its transmission to another controller.
  • Complaint to a supervisory authority: You have the right to lodge a complaint with a data protection supervisory authority.

Business Services

We process personal data of our contractual and business partners, such as customers, clients, prospective customers, suppliers, and other cooperation partners, for the purpose of initiating, executing, and fulfilling contractual relationships as well as comparable legal relationships. This also includes pre-contractual measures and communication in connection with the respective contractual relationship.

The processing serves, in particular, to fulfill our contractual obligations, handle inquiries, document business transactions, and safeguard our rights and comply with legal obligations.

  • Types of data processed: Master data; payment data; contact data; contract data.
  • Data subjects: Service recipients and clients; prospective clients; business and contractual partners.
  • Purposes of processing and legitimate interests: Provision of contractual services and fulfillment of contractual obligations; communication; office and organizational procedures; organizational and administrative procedures; business processes and business management procedures.
  • Retention and deletion: Deletion in accordance with the information provided in the section “General Information on Data Storage and Deletion.”
  • Legal basis: Art. 6(1)(b) GDPR; Art. 6(1)(c) GDPR; Art. 6(1)(f) GDPR.

Provision of the Online Service and Web Hosting

We process users’ data in order to provide them with our online service. For this purpose, we process, in particular, the user’s IP address, which is necessary to transmit the content and functions of our website to the user’s browser or device.

  • Types of data processed: Usage data; meta, communication, and process data; log data.
  • Data subjects: Users.
  • Purposes of processing and legitimate interests: Provision of our online services and user-friendliness; IT infrastructure; security measures.
  • Retention and deletion: Deletion in accordance with the information provided in the section “General Information on Data Storage and Deletion.”
  • Legal basis: Art. 6(1)(f) GDPR.

Further information on processing operations, procedures, and services:

  • Provision of online services on rented server space: To provide our online services, we use server space, computing capacity, and software obtained from a server provider.
  • Collection of access data and log files: Access to our online offering is logged in the form of server log files. This may include, in particular, the address and name of the accessed web pages and files, the date and time of access, browser type and version, operating system, referrer URL, IP addresses, and the requesting provider. Processing is carried out to ensure the operation, stability, and security of our online offering. Log file information is generally stored for a maximum of 30 days and then deleted or anonymized, unless longer retention is required for evidentiary purposes.
  • 1&1 IONOS: Services in the field of providing information technology infrastructure and related services; Service provider: 1&1 IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, Germany; Website: https://www.ionos.de; Privacy Policy https://www.ionos.de/terms-gtc/terms-privacy.

Use of Cookies

We use cookies and similar technologies to the extent necessary for the operation of the website or where you have consented to their use. Cookies may be used to ensure the functionality, security, and user-friendliness of our online offering, as well as to enable statistical analysis.

Where consent is required for the use of certain cookies or similar technologies, we will obtain it in advance. Consent given may be revoked at any time with future effect.

  • Types of data processed: Meta, communication, and procedural data.
  • Data subjects: Users.
  • Legal basis: Art. 6(1)(a) GDPR; Art. 6(1)(f) GDPR.

Contact and Inquiry Management

When you contact us, e.g., via contact form, email, telephone, or social media, we process the personal data provided to us to handle and respond to the respective inquiry as well as for further communication.

  • Types of data processed: Types of data processed: Contact data; content data; meta, communication, and procedural data.
  • Data subjects: Communication partners.
  • Purposes of processing and legitimate interests: Communication; Organizational and administrative procedures; feedback; provision of our online services and user-friendliness.
  • Retention and deletion: Deletion in accordance with the information provided in the section “General Information on Data Storage and Deletion.”
  • Legal basis: Art. 6(1)(b) GDPR; Art. 6(1)(f) GDPR.

Further information on processing operations, procedures, and services:

  • Contact form: When you contact us via our contact form, by email, or through other communication channels, we process the personal data you provide to handle and respond to your inquiry. This typically includes details such as your name, contact information, and, where applicable, additional information necessary for proper processing.
  • HubSpot CRM: We use HubSpot to manage contacts, inquiries, and sales activities. In particular, contact data, communication content, and information regarding inquiries and business relationships may be processed; Service provider: HubSpot Ireland Limited, Ground Floor, Two Dockland Central, Guild Street, Dublin 1, Ireland; Website: https://www.hubspot.de/pa/crm; Privacy Policy https://legal.hubspot.com/de/privacy-policy; Data Processing Agreement: https://legal.hubspot.com/dpa.

Web Analytics, Monitoring, and Optimization

We use Matomo to measure the reach and analyze the usage of our online services in order to improve both the technical aspects and the content of our website. In particular, this involves the processing of usage data and technical information.

To the extent that Matomo is used with cookies or comparable technologies, processing is based on your consent. To the extent that Matomo is used without cookies and without device access requiring consent, processing is based on our legitimate interests in the statistical analysis and optimization of our online offering.

  • Types of data processed: Usage data; meta, communication, and process data.
  • Data subjects: Users.
  • Purposes of processing and legitimate interests: Audience measurement; optimization of our online offering.
  • Retention and deletion: Deletion in accordance with the information provided in the section “General Information on Data Storage and Deletion.”
  • Security measures: IP masking or pseudonymization of the IP address, where technically implemented.
  • Legal basis: Art. 6(1)(a) GDPR; Art. 6(1)(f) GDPR.

Further information on processing operations, procedures, and services:

  • Matomo: Matomo is software for web analytics and audience measurement. We process the data collected during use to evaluate and improve the usage and functionality of our online offering; Website: https://matomo.org/.

Social Media Presence

We maintain an online presence on social media to communicate with users and provide information about our company and our services.

Please note that user data may be processed outside the European Union in this context. Furthermore, user data within social networks may regularly be processed for market research and advertising purposes.

  • Types of data processed: Contact data; Content data; Usage data.
  • Data subjects: Users.
  • Purposes of processing and legitimate interests: Communication; Feedback; Public relations.
  • Retention and deletion: Deletion in accordance with the information provided in the section “General Information on Data Storage and Deletion.”
  • Legal basis: Art. 6(1)(f) GDPR.

Further information on processing operations, procedures, and services:

  • LinkedIn: Social network; Service provider: LinkedIn Ireland Unlimited Company, Wilton Plaza, Dublin 2, Ireland; Website: https://www.linkedin.com; Privacy Policy https://www.linkedin.com/legal/privacy-policyTo the extent that so-called Page Insights are provided via our LinkedIn page, joint responsibility with LinkedIn may apply in this regard.

Plug-ins, Embedded Functions, and Content

We integrate functional and content elements into our online offering that are obtained from the servers of their respective providers. These may include, in particular, embedded videos. This integration typically requires that the respective providers process the user’s IP address, as the content cannot be transmitted to the user’s browser without an IP address.

To the extent that consent is required for the integration and playback of such content, we obtain it in advance. Otherwise, the integration is based on our legitimate interests in an appealing, economical, and user-friendly presentation of our online offering.

  • Types of data processed: Usage data; meta, communication, and process data.
  • Data subjects: Users.
  • Purposes of processing and legitimate interests: Provision of our online services and user-friendliness.
  • Retention and deletion: Deletion in accordance with the information provided in the section “General Information on Data Storage and Deletion.”
  • Legal basis: Art. 6(1)(a) GDPR; Art. 6(1)(f) GDPR.

Further information on processing operations, procedures, and services:

Amendments and Updates

We ask that you regularly review the content of our Privacy Policy. We will update the Privacy Policy as soon as changes to our data processing activities make this necessary.

Definitions of Terms

  • Definitions: Data required for the identification and management of contractual partners, e.g., names and contact information.
  • Content data: Data generated in the course of communication or the creation and transmission of content, e.g., message content.
  • Contact data: Data used to communicate with individuals or organizations, e.g., phone numbers, postal addresses, and email addresses.
  • Meta, communication, and process data: Data containing information about the processing, transmission, and management of other data, e.g., IP addresses or timestamps.
  • Usage data: Data describing the use of online services, e.g., page views, time spent on a page, or interactions.
  • Personal data: All information relating to an identified or identifiable natural person.
  • Log data: Information about events or activities that have been logged in a system or network.
  • Audience measurement: Evaluation of visitor traffic to an online service for the purpose of analyzing and optimizing content and functions.
  • Controller: The natural or legal person who, alone or jointly with others, determines the purposes and means of the processing of personal data.
  • Processing: Any operation or set of operations performed on personal data, whether or not by automated means.
  • Contract data: Data processed in connection with a contract or the initiation of a contract.
  • Paymernt data: Data required to process payment transactions.

Back to top

<