Skip to main content
ITS AG

Legal

Privacy policy

Last updated: 21 April 2026

1. Controller

Controller within the meaning of the GDPR and other data-protection provisions:

ITS AG
Dammer Weg 37
63773 Goldbach, Germany
Phone: +49 6021 49649-0
Email: info@its-gruppe.de

For privacy questions and requests under Art. 15–21 GDPR please contact datenschutz@its-gruppe.de.

2. Hosting

This website is operated in our own data centers in Frankfurt am Main, Germany. ITS AG is itself an Internet Service Provider and runs the infrastructure on its own — no third-party processor, no cross-border hosting. All technically required data needed to deliver the site (IP address, timestamp, requested URL, referrer, user agent) is processed exclusively on our servers in Germany. Legal basis: Art. 6(1)(f) GDPR (legitimate interest in secure and performant operation). No data is transferred to third countries.

3. Server log files

When you access our site, we store the following data in log files: browser type and version, operating system, referrer URL, hostname of the accessing computer, time of the server request, anonymised IP address. Legal basis: Art. 6(1)(f) GDPR. Retention: max. 7 days, then automatic deletion.

4. Contact form & discovery call

If you contact us via the contact form or the “discovery call” dialog, we process the data you provide (name, company, email, phone, message, topic) solely to handle your request and any follow-up questions.

  • Legal basis: Art. 6(1)(b) GDPR (pre-contractual measures) or Art. 6(1)(f) GDPR (legitimate interest in effective handling).
  • Retention: up to 12 months after the end of the communication, then automatic deletion. If a contract results from the enquiry, statutory retention periods apply (§ 147 AO, § 257 HGB, up to 10 years).
  • Email delivery: exclusively via our own SMTP servers in our data centers in Frankfurt am Main, Germany. There is no third-party email processor; no data is transferred to third parties.

5. Cookies and consent

We only set strictly necessary cookies without consent (§ 25(2) TDDDG). This includes the consent cookie its-consent, which stores your preference for up to 12 months.

Statistics cookies (see section 6) are only set after your explicit consent via our consent banner (§ 25(1) TDDDG in conjunction with Art. 6(1)(a) GDPR). You can withdraw your consent at any time via “Cookie settings” in the footer.

6. Google Analytics (consent-based)

With your consent, we use Google Analytics 4 operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Analytics helps us analyse the use of our website on an anonymised basis. Data collected includes truncated IP addresses, user agent and interactions.

  • Legal basis: Art. 6(1)(a) GDPR, § 25(1) TDDDG.
  • Data-processing agreement: concluded with Google Ireland Limited.
  • Third-country transfer: transfer to Google servers in the USA is possible. Safeguards: Standard Contractual Clauses and the EU-U.S. Data Privacy Framework (Google LLC is certified).
  • Retention: 14 months on Google’s side, IP anonymisation enabled.
  • Withdrawal: at any time via “Cookie settings” in the footer or via the browser add-on tools.google.com/dlpage/gaoptout.

Without consent, our site does not load Google Analytics. We also honour a Do-Not-Track signal.

7. Disclosure to third parties

Hosting and email delivery run entirely on our own infrastructure in Germany (see sections 2 and 4). Personal data is disclosed to third parties only via Google Analytics – and only with your explicit consent (see section 6) – or where we are legally obliged to do so. We do not sell your data.

8. Your rights

Under GDPR you have the following rights:

  • Access to your stored data (Art. 15 GDPR)
  • Rectification of inaccurate data (Art. 16 GDPR)
  • Erasure (“right to be forgotten”, Art. 17 GDPR)
  • Restriction of processing (Art. 18 GDPR)
  • Data portability (Art. 20 GDPR)
  • Objection to processing (Art. 21 GDPR)
  • Withdrawal of consent (Art. 7(3) GDPR)

Please contact datenschutz@its-gruppe.de. We will reply within one month as a rule.

9. Right to lodge a complaint

You have the right to lodge a complaint with a data-protection supervisory authority. The authority competent for us is:

Bavarian Data Protection Authority (BayLDA)
Promenade 18, 91522 Ansbach, Germany
Phone: +49 981 180093-0
Email: poststelle@lda.bayern.de

10. SSL / TLS encryption

This site uses SSL/TLS encryption for security and to protect the transmission of confidential content. You can recognise an encrypted connection by “https://” in the address bar of your browser.

11. Updates

We reserve the right to update this privacy policy to reflect changes in law or our processing activities. The current version is always available on this page.