Privacy policy

1. Responsible

smiit GmbH

Reiherweg 96, 89584 Ehingen, Germany

Data protection officer: Noah Neßlauer

2. General information on data processing

Personal data is any information relating to an identified or identifiable natural person, e.g. name, email address, or IP address.

3. Purposes of processing and legal bases

a) Provision and operation of the website

This website is hosted via GitHub Pages, a service provided by GitHub Inc., 88 Colin P. Kelly Jr. Street, San Francisco, CA 94107, USA.

When you access this website, the hosting provider automatically processes technically necessary data (e.g. IP address, browser type, operating system, referrer URL, time of the server request).

When you access this website, GitHub automatically records server log files. This includes in particular the IP address, date and time of access, browser type, and operating system. This data is processed to ensure the technical operation and security of the website.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in a secure and functional operation of the website).

b) Contact requests via form or email

If you contact us, we process the data you provide to handle your request.

If you contact us via the contact form, the data you enter (name, email address, message, and optionally phone number) will be processed for the purpose of handling your request.

For the technical delivery of data entered via the contact form, we use the service EmailJS provided by EmailJS Pte. Ltd., Singapore. The personal data you enter is transmitted to EmailJS and then forwarded to us by email.

Legal basis: Art. 6(1)(b) GDPR.

c) Appointment scheduling via Calendly

To schedule appointments, we use the service Calendly provided by Calendly LLC, USA.

When using the appointment booking feature, personal data is processed to coordinate the appointment. When you access the scheduling feature, personal data (in particular the IP address) is transmitted to Calendly. If you book an appointment, the data you enter is processed to organize and conduct the appointment.

Legal basis: Art. 6(1)(b) and (f) GDPR.

4. Recipients of data

To provide our services, we use the following service providers:

GitHub Pages (hosting)
EmailJS (delivery of contact form messages)
Calendly (appointment management)

5. Transfers to third countries

Processing may take place in third countries (e.g. the USA). In such cases, transfers are carried out on the basis of appropriate safeguards such as the EU Standard Contractual Clauses (SCC) or—where applicable—the EU‑US Data Privacy Framework.

GitHub also processes data in the United States. Data transfers are based on the EU Standard Contractual Clauses.

A transfer of data to third countries (outside the EU) cannot be ruled out. EmailJS uses appropriate safeguards pursuant to Art. 46 GDPR.

Data transfers to the United States in connection with Calendly are based on the EU Standard Contractual Clauses.

6. Cookies and similar technologies

We ourselves do not use analytics, tracking, or marketing cookies. Technically necessary processing is carried out exclusively by the hosting provider.

When embedding external services (e.g. Calendly), these providers may use cookies or similar technologies.

7. Storage period

Log data: generally up to 30 days
Contact requests: 6–12 months after completion
Appointment data: until the appointment has been completed

8. Data subject rights

You have the right of access, rectification, erasure, restriction of processing, data portability, as well as the right to object (Art. 21 GDPR) and to withdraw any consent given.

9. Right to lodge a complaint

You have the right to lodge a complaint with a data protection supervisory authority.

10. Requirement to provide data

Without providing the required data (e.g. your email address), we cannot process your request.

11. Automated decision-making

No automated decision-making or profiling takes place.