Privacy Policy

1. Privacy at a Glance

This policy explains what personal data we process when you visit our website, why we process it, and what rights you have under the EU General Data Protection Regulation (GDPR). We do not use marketing or tracking cookies and we do not build user profiles.

2. Controller

Email: contact@excellence-cloud.de
Phone: +49 89 25557128

3. Data Processing on Our Website

3.1 Technical Provisioning & Server Log Files

When you access our website, our hosting provider automatically records the following data in server log files:

• Browser type / version
• Operating system
• Referrer URL
• Hostname of the accessing device
• Time of the request
• IP address (stored in anonymized form)

Purpose & Legal Basis: Guaranteeing technical security and stability (Art. 6 (1) f GDPR: legitimate interest).
Retention: Log files are deleted after 7 days.

3.2 Cookies

We only use session cookies that are essential for basic site functionality (e.g. load balancing). These cookies are deleted when you close your browser and do not contain personally identifiable information. No consent banner is required according to Art. 5 (3) ePrivacy Directive/ §25 TTDSG.

3.3 Contact Form & E-Mail

If you contact us by e-mail or via a contact form, we process your message, name, and contact details solely for handling your inquiry (Art. 6 (1) b GDPR). We delete the data once your request is resolved, unless statutory retention obligations apply.

4. Legal Bases for Processing

Unless a more specific legal basis is stated in this policy, data processing is based on Art. 6 (1) f GDPR (legitimate interest in secure website operation). Where we respond to your requests, the legal basis is Art. 6 (1) b GDPR (performance of a contract or pre-contractual measures).

5. Data Retention

We store personal data only for as long as necessary to fulfill the purposes described in this policy or as required by law. Back-ups are encrypted and regularly purged.

6. Data Security

We implement appropriate technical and organizational measures (TOMs) including TLS 1.3 encryption, minimal-access controls, regular security audits, and ISO 27001-certified hosting to protect your data (Art. 32 GDPR).

7. Third-Party Processing & Hosting

Our site is hosted by a European data-center provider acting as a processor under Art. 28 GDPR. A Data Processing Agreement (DPA) is in place. No data is transferred to countries outside the European Economic Area unless adequate safeguards (e.g.  EU Standard Contractual Clauses) exist.

8. Your Rights

• Right of access (Art. 15 GDPR)
• Right to rectification (Art. 16 GDPR)
• Right to erasure (Art. 17 GDPR)
• Right to restriction (Art. 18 GDPR)
• Right to data portability (Art. 20 GDPR)
• Right to object (Art. 21 GDPR)
• Right to withdraw consent at any time (Art. 7 GDPR)

To exercise these rights, please contact us using the details in Section 2.

9. Supervisory Authority

You have the right to lodge a complaint with the Bavarian Data Protection Authority (BayLDA) or any other competent supervisory authority if you believe that your data is being processed in violation of the GDPR.

10. Children’s Privacy

Our website is not directed to children under the age of 16. We do not knowingly collect personal data from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will publish the revised version here. Please review this page periodically.