Privacy policy
This privacy policy informs you about the nature, scope, and purpose of the processing of personal data within our online offering and the associated websites, functions, and content (hereinafter collectively referred to as “online offering”). The declaration is made in accordance with the General Data Protection Regulation (GDPR).
Status: April 17, 2025
Responsible party: ASTRO Bit GmbH Olefant 3 51427 Bergisch Gladbach Germany Email: [email protected]
Data protection officer: Herbert Strobel Email: [email protected]
Types of data processed:
- Inventory data (e.g., company names, addresses)
- Payment data (e.g., bank details, payment information)
- Contact data (e.g., email, telephone numbers)
- Contract data (e.g., subject matter of the contract, term)
- Usage data (e.g., websites visited, access times)
- Meta/communication data (e.g., device information, IP addresses)
Categories of data subjects:
- Business partners (B2B customers)
- Users of our online offering
Purposes of processing:
- Provision of our online offering and user-friendliness
- Provision of contractual services and customer service
- Processing of payments
- Security
- Reach measurement and web analysis
Relevant legal basis:
- Consent (Art. 6 para. 1 lit. a GDPR)
- Contract fulfillment and pre-contractual inquiries (Art. 6 para. 1 lit. b GDPR)
- Legitimate interests (Art. 6 para. 1 lit. f GDPR)
Security measures: We take appropriate technical and organizational measures in accordance with the state of the art to protect your data. Data transmission is encrypted using TLS (recognizable by “https://” in the address bar).
Web hosting: Our online offering is hosted on servers of the provider Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, Germany. Processing is based on our legitimate interests in the secure and efficient provision of our online offering (Art. 6 para. 1 lit. f GDPR).
Payment processing via Stripe: We use the payment service provider Stripe (Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland) to process payments. The data processed includes, in particular, payment data (e.g., account details, credit card numbers). Processing is carried out to fulfill our contractual obligations in accordance with Art. 6 para. 1 lit. b GDPR. For more information, please refer to Stripe’s privacy policy: https://stripe.com/de/privacy.
Cookies: We use cookies based on your consent in accordance with Art. 6 (1) lit. a GDPR. We manage your consent using Borlabs Cookie, which stores your cookie preferences. You can revoke your consent at any time.
Google Analytics: This website uses Google Analytics, a web analytics service provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland). Google Analytics uses cookies that enable an analysis of the use of our website. Processing is based on your consent in accordance with Art. 6 (1) lit. a GDPR. IP addresses are transmitted in anonymized form (IP masking). Further information and opt-out options can be found here: https://tools.google.com/dlpage/gaoptout?hl=de.
Cloudflare To secure this website and optimize loading times, we use the “Cloudflare” service provided by Cloudflare Inc., 101 Townsend St, San Francisco, CA 94107, USA. All data transmitted between your browser and our web servers runs through Cloudflare’s global network. This may also involve the transfer of personal data to third countries, in particular the USA.
Cloudflare operates data centers within the EU and is committed to complying with the GDPR. Data processing is based on Art. 6 (1) lit. f GDPR, our legitimate interest in the secure and efficient provision of our online services and protection against attacks and misuse.
Cloudflare is certified under the Data Privacy Framework, which ensures an adequate level of data protection. For more information, please refer to Cloudflare’s privacy policy: https://www.cloudflare.com/de-de/privacypolicy/
Transfer to third countries: Data transfers to third countries are carried out exclusively in compliance with legal regulations and standard contractual clauses.
Deletion of data: Personal data will be deleted as soon as the purpose of processing no longer applies or at the express request of the data subject, provided that there are no legal obligations to retain the data.
Rights of data subjects: You have the right to access, correct, delete, or restrict the processing of your personal data, to data portability, and to object to processing in accordance with the GDPR. You also have the right to lodge a complaint with the competent data protection supervisory authority.