Scroll Top

Information privacy

Information privacy

1. Controller

The controller responsible for data processing within the meaning of the General Data Protection Regulation (GDPR) is:

Gabel Security GmbH
Tauchersteig 1
12527 Berlin
Germany

Phone: +49 30 219 842 80
Email: info@gabel-security.de

2. General Information on Data Processing

We process personal data exclusively in accordance with the applicable provisions of the General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG), and the German Telecommunications Digital Services Data Protection Act (TDDDG).

Personal data means any information relating to an identified or identifiable natural person.

3. Website Hosting

Our website is hosted by an external hosting provider. Personal data collected on this website is processed on the servers of the hosting provider.

This may include, in particular:

  • IP addresses
  • Communication and metadata
  • Website access data
  • Contact inquiries
  • Log data

The processing is carried out on the basis of Article 6(1)(f) GDPR due to our legitimate interest in the secure, stable, and efficient operation of our website.

A Data Processing Agreement (DPA) pursuant to Article 28 GDPR has been concluded with the hosting provider.

4. Server Log Files

When you visit our website, information is automatically transmitted by your browser to our server and stored temporarily in server log files.

This information may include:

  • IP address
  • Date and time of access
  • Browser type and version
  • Operating system
  • Referrer URL
  • Hostname of the accessing device

The processing serves to ensure system security and stability.

The legal basis is Article 6(1)(f) GDPR.

The log files are deleted automatically as soon as they are no longer required for the purpose for which they were collected.

5. SSL/TLS Encryption

For security reasons and to protect the transmission of confidential content, this website uses SSL/TLS encryption.

You can recognize an encrypted connection by the “https://” prefix in your browser’s address bar and the lock symbol displayed there.

6. Contacting Us

If you contact us by email, telephone, or contact form, the personal data you provide will be processed for the purpose of handling your inquiry.

This may include:

  • Name
  • Email address
  • Telephone number
  • Message content

Processing is based on:

  • Article 6(1)(b) GDPR for pre-contractual measures or contract-related communication; or
  • Article 6(1)(f) GDPR based on our legitimate interest in responding to inquiries.

The data will be deleted once your request has been fully processed, unless statutory retention obligations apply.

7. Cookies and Consent Management

Our website uses cookies and similar technologies.

Cookies are small text files stored on your device.

We distinguish between:

  • Strictly necessary cookies
  • Statistics cookies
  • Marketing cookies
  • External media cookies

Strictly necessary cookies are processed on the basis of Section 25(2) TDDDG and Article 6(1)(f) GDPR.

All other cookies are only used with your explicit consent pursuant to Article 6(1)(a) GDPR and Section 25(1) TDDDG.

You may withdraw or modify your consent at any time through our consent management platform.

8. Google Analytics 4

Subject to your consent, we use Google Analytics 4, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics uses cookies and similar technologies to analyze website usage.

Processing is based exclusively on your consent pursuant to Article 6(1)(a) GDPR.

We have concluded a Data Processing Agreement with Google.

IP addresses are processed in anonymized form where technically possible.

Data may be transferred to servers operated by Google LLC in the United States.

Google participates in and is certified under the EU-U.S. Data Privacy Framework.

User-related analytics data is retained for a maximum period of 14 months.

You may withdraw your consent at any time.

Further information is available at:

https://policies.google.com/privacy

9. Google Fonts

Where Google Fonts are used, they are preferably hosted locally on our own servers.

If externally hosted fonts are used, a connection to Google servers may be established.

The legal basis for such processing is your consent pursuant to Article 6(1)(a) GDPR.

10. Social Media Presence

We maintain company profiles on social media platforms.

When you visit our social media pages, personal data may be processed by the respective platform operators.

The privacy policies of the respective social media providers apply.

11. Job Applications

If you apply for a position with our company, we process your application data solely for the purpose of conducting the recruitment process.

The legal basis is Article 6(1)(b) GDPR in conjunction with Section 26 BDSG.

Application documents will be deleted no later than six months after completion of the recruitment process unless legal retention obligations require otherwise.

12. Data Retention

We retain personal data only for as long as necessary to fulfill the respective processing purposes or as required by statutory retention obligations.

After the purpose no longer applies or the retention period expires, the data will be deleted.

13. Recipients of Personal Data

Personal data is disclosed to third parties only where:

  • legally permitted,
  • you have given your consent,
  • disclosure is necessary for the performance of a contract, or
  • we are legally obligated to do so.

Recipients may include:

  • Hosting providers
  • IT service providers
  • Analytics and tracking providers
  • Tax consultants and auditors
  • Public authorities

Where required, Data Processing Agreements are concluded with external service providers.

14. International Data Transfers

Where personal data is transferred to countries outside the European Union (EU) or the European Economic Area (EEA), such transfers are carried out only in compliance with applicable legal requirements.

Transfers are based, where applicable, on:

  • An adequacy decision of the European Commission;
  • The EU-U.S. Data Privacy Framework;
  • Standard Contractual Clauses (SCCs); or
  • Other appropriate safeguards pursuant to Articles 44 et seq. GDPR.

15. Your Rights

Under the GDPR, you have the following rights:

  • Right of access (Article 15 GDPR)
  • Right to rectification (Article 16 GDPR)
  • Right to erasure (Article 17 GDPR)
  • Right to restriction of processing (Article 18 GDPR)
  • Right to data portability (Article 20 GDPR)
  • Right to object (Article 21 GDPR)
  • Right to withdraw consent at any time (Article 7(3) GDPR)
  • Right to lodge a complaint with a supervisory authority (Article 77 GDPR)

16. Right to Object

Where personal data is processed on the basis of Article 6(1)(f) GDPR, you have the right to object at any time on grounds relating to your particular situation.

If personal data is processed for direct marketing purposes, you have the right to object at any time without providing any reasons.

Upon objection, the relevant personal data will no longer be processed for such purposes.

17. Automated Decision-Making

No automated decision-making or profiling within the meaning of Article 22 GDPR takes place.

18. Data Security

We implement appropriate technical and organizational measures pursuant to Article 32 GDPR to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access.

Our security measures are continuously reviewed and improved in line with technological developments.

19. Changes to This Privacy Policy

We reserve the right to amend this Privacy Policy to ensure ongoing compliance with legal requirements or to reflect changes to our services.

The version published on this website at the time of your visit shall apply.