Privacy Policy

Below I will inform you which personal data is collected for which purpose when using this website. The storage and processing of the data takes place exclusively on the basis of the legal regulations (General Data Protection Regulation (GDPR)).

I. Scope

This Privacy Policy applies to the website sym8.io as of September 2025.

II. Responsible for data processing

Tilo Schröder
Schulstr. 8a
D-86836 Klosterlechfeld
Germany

Email: hello@sym8.io

III. Encrypted data transfer

You can visit this website without giving any personal information. I do not store any personal data in this context. In order to improve my offer, I only evaluate statistical data, which does not allow any conclusion on your person.

IV. Data collection on this website

This website is hosted by a service provider in the European Economic Area. A processing contract according to Article 28 GDPR is in place.

1.) Server log files

When visiting this website, the web server automatically records the following data in log files:

• Your IP address, anonymized (0.0.0.0),
• date and time of request,
• requested address (URL),
• Status code of the server response Browser and operating system of the requesting computer,
• if applicable, the website from which you visit us (referrer URL)

The basis for the data processing is Art. 6, para. 1, letter f of the GDPR. When using this data, I can draw no conclusion on a specific person without further effort. These data are used to defend or investigate attacks on the IT structure (e.g., DDoS attack, user account brute force) and to assist law enforcement agencies in law enforcement in these cases.

The data in the server log files are automatically deleted after 31 days. Data needed to clarify law enforcement is exempt from automatic deletion and will be retained until final clarification.

2) Cookies

Cookies are information that is stored in small text files in the browser you use on your end device (computer, tablet, smartphone). As a rule, cookies cannot execute programs or transfer malware to your device.

By default, I do not set cookies when visiting this website.

Only in case of need (for example, logging in to a user account, adding products to the shopping cart) is the system set a so-called session cookie, as used by the vast majority of content management systems (CMS).

The legal basis for cookies is Article 6, para. 1, letter f of the GDPR.

3) Web analytics with Simple Analytics

We use Simple Analytics, a privacy-friendly web analytics service provided by Simple Analytics B.V., based in 1053 HM Amsterdam, Jacob van Lennepstraat 78 H, Netherlands.

Simple Analytics does not use cookies and does not store any personal data. Only anonymous usage data (e.g., pages visited, referrers, device information) is collected for statistical analysis and to improve our website. The data remains within the EU and is not shared with third parties.

We use Simple Analytics in such a way that the function “Do Not Track” is not taken into account, as the data is processed completely anonymously anyway.

Further information can be found at https://docs.simpleanalytics.com/what-we-collect.

Legal basis for web analytics is Article 6, para. 1, letter f of the GDPR.

4) Email, telephone, other transmission

Data that you submit to me by email, telephone or other ways will be stored to process the matter and in case of follow-up questions.

The processing of this data takes place exclusively on the basis of your consent (article 6, para. 1, letter a, GDPR).

V. Storage duration and deletion periods

Personal data is stored and processed for different periods of time:

• according to legal regulations,
• until the original purpose of the acquisition is no longer present,
• until you have objected to the processing.

VI. Social media

This website does not use affiliation codes from social networks such as Facebook, Twitter or Google, which allow visitors to be automatically recognized and tracked by users (so-called user tracking).

VII. Transfer to third parties

Basically, I do not share personally identifiable information with third parties unless one of the following is true:

• the data subject has expressly consented to the transfer of data (Article 6, para. 1, letter a, GDPR),
• the transmission of the data is additionally necessary for the fulfillment of a contractual relationship with the data subject (Article 6, para. 1, letter b, GDPR),
• I am required by law or by court order (Article 6, para. 1, letter c, GDPR),
• it serves to safeguard the legitimate interests of the person responsible or of a third party and there is no reason to assume that the protection needs of the data subject prevail (Article 6, para. 1, letter f, GDPR).

VIII. Your rights

Within the framework of the legal provisions, in particular according to Art. 15 - 21 GDPR, you as the data subject have the following rights at all times.

1) Right to information

You can request information about your personal data processed and stored with me according to Art. 15 GDPR.

2) Right to rectification

If your stored data is incorrect or incomplete, you may request the correction or completion of the data according to Art. 16 GDPR.

3) Right to cancellation / limitation of processing

Under certain conditions, you may request the deletion of your personal data pursuant to Art. 17 GDPR or a restriction on the processing of your personal data pursuant to Art. 18 and 21 GDPR.

4) Right to data portability

Under certain conditions, you may request your processed and stored personal data in accordance with Art. 20 GDPR in a structured, common and machine-readable format or forward the transmission of this data to another person responsible, if this is technically feasible.

5) Right to appeal

If you believe that I have disregarded legal requirements when processing your personal data, Art. 77 GDPR gives you the right of appeal to the responsible State Office for Data Protection Supervision.

The competent supervisory authority for the State of Bavaria is the Bavarian State Office for Data Protection Supervision (BayLDA).