Enabl Technologies GmbH (hereinafter: “we”, “us”) is pleased that you are visiting our website www.enabl-tech.de (hereinafter: “website”).
Our policy is to only collect what we need and process that information exclusively to provide you with the service you expect.
The person responsible for processing personal data on our website within the meaning of the General Data Protection Regulation (hereinafter: “GDPR”) is:
enabl Techonologies GmbH
Schenkenburgstrasse 7
76135 Karlsruhe
email: info@enabl-tech.de
For data protection-related inquiries or to assert your rights as a data subject, you can contact us at any time by e-mail to datenschutz@enabl-tech.de turn around.
Our appointed data protection officer is:
Kertos GmbH
Briennerstrasse 41
80333 Munich
germany
email: dsb@kertos.io
Personal data is any information relating to an identified or identifiable natural person. This includes, for example, information such as your name, age, address, telephone number, date of birth, email address or IP address. Information that we are unable to identify you personally (or only with disproportionate effort), e.g. by anonymizing the information, is not personal data. The processing of personal data (e.g. collection, retrieval, use, storage or transmission) always requires a legal basis such as your consent.
We only collect and use personal data from our users insofar as this is technically necessary to provide a functional website and our content and services or information.
When you access and use our website, we collect personal data that your browser automatically transmits to our server. This information is temporarily stored in a so-called log file.
The following information is collected without your intervention and stored until it is automatically deleted:
• IP address of the requesting computer,
• date and time of access,
• name and URL of the retrieved file,
• website from which access is made (referrer URL),
• the browser used and, if applicable, the operating system of your computer as well as the name of your access provider.
We process the above data for the following purposes:
• Ensuring a smooth connection to the website
• Ensuring convenient use of our website
• For IT security purposes
Art. 6 para. 1 lit. f DSGVO serves as the legal basis. The processing of the above data is necessary to provide a website and to enable secure and convenient use and thus serves to protect the legitimate interest of our company.
As soon as the above data is no longer required to display the website, it will be deleted (after 30 days at the latest). The collection of data for the provision of the website and the storage of data in log files is absolutely necessary for the operation of the website. The user therefore has no option to object. Further storage takes place in individual cases if this is required by law.
On our website, we use services from DigitalOcean, LLC, a cloud infrastructure provider headquartered in New York, USA. When using our website, the following data may be transmitted to DigitalOcean:
• IP address
• Date and time of access
• Browser type and version
• Operating system
• referrer URL (the previously visited page)
• Amount of data transferred
• Page views and navigation behavior
DigitalOcean provides us with hosting and computing power to ensure the operation of our website. Data processing is carried out on the basis of our legitimate interests in accordance with Article 6 (1) (f) GDPR in order to provide our website efficiently and securely.
The data is usually transferred to DigitalOcean servers in the USA or in other countries outside the EU and stored there. For data transfers to the USA, DigitalOcean has submitted to the EU-US Data Privacy Framework, for which there is an adequacy decision by the EU Commission. This ensures that an appropriate level of data protection is ensured.
DigitalOcean has committed itself to using the submitted data only to provide its services and not to pass it on to third parties, unless this is required by law or necessary to fulfill contractual obligations.
Further information on data protection at DigitalOcean can be found in their privacy policy at: https://www.digitalocean.com/legal/privacy-policy
To display the content of our website, we use, among others, “Google Fonts”, which is provided by Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland and Google, LLC 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter: “Google”).
In order to be able to integrate Google Fonts, the fonts (fonts) are loaded from a Google server. This usually involves the transmission of the following data:
• IP address
• Referrer URL
• Operating system
• Browser type
• Screen resolution
• Browser language setting
Your data is usually transferred to a Google server in the USA. For data transfers to the USA, there is an adequacy decision by the EU Commission, the EU-U.S. Data Privacy Framework. “Google” is certified within this framework, which is why such transfers are based on the legal basis under Article 45 GDPR. When using Google Analytics, it cannot be ruled out that the cookies set by Google Analytics collect other personal data in addition to the IP address. Please note that Google may transfer this information to third parties if required to do so by law or if third parties process this data on behalf of Google.
You can usually prevent cookies from being saved by setting your browser software accordingly. However, we would like to point out that in this case you may not be able to use all functions of this website to their full extent.
You can withdraw your consent to processing and transfer to third countries at any time. This does not affect the lawfulness of previous processing.
You can find more information about data protection at Google at: https://policies.google.com/privacy
We process your data primarily within the European Union (EU) and the European Economic Area (EEA). However, some of our service providers may be based outside the EEA in so-called “third countries.” The General Data Protection Regulation places high demands on the transfer of personal data to third countries. All of our data recipients must meet these requirements. Before we transfer your data to a service provider in a third country, each service provider is first checked for its level of data protection. A service provider is only selected if it can demonstrate an adequate level of data protection outside the EEA. Regardless of whether our service providers are based within the EEA or in third countries, each service provider must conclude an order processing contract with us. For service providers outside the EEA, additional requirements must be met. In accordance with Art. 44 ff. GDPR, personal data may be transferred to service providers who meet at least one of the following requirements:
• The European Commission has decided that the third country ensures an adequate level of protection (e.g. USA and UK).
• Standard contractual clauses have been included in our contract with the data recipient (including any additional measures, if necessary).
• Further appropriate guarantees are provided in accordance with Art. 46 GDPR (e.g. Binding Corporate Rules).
• In special exceptional cases in accordance with Art. 49 GDPR
Within our company, only those people have access to your personal data who need it for the purposes specified in each case. Your personal data will only be passed on to external recipients if we are legally entitled to do so or if you have given your consent. The following is an overview of the respective recipients:
• Processors: Group companies or external service providers, e.g. in the areas of technical infrastructure and processing, maintenance and payment processing, which are carefully selected and controlled. Contract processors may only use the data in accordance with our instructions.
• Public authorities: Authorities and state institutions, such as tax authorities, public prosecutors or courts, to which we (must) transfer personal data, e.g. to fulfill legal obligations or to protect legitimate interests
On our website, we use HubSpot Forms, a service provided by HubSpot, Inc. (25 First Street, 2nd Floor, Cambridge, MA 02141, USA). When using HubSpot Forms, the following data is transmitted to HubSpot:
• IP address
• When the form was called
• Browser and operating system used
• Website accessed
• Form data entered
The purpose of HubSpot Forms is to enable the creation and management of online forms and to process the data collected through them. The service helps us to efficiently process customer inquiries and optimize our customer relationship management. The information is usually forwarded to a HubSpot server in the USA and stored there.
For data transfers to the USA, there is an adequacy decision by the EU Commission, the EU-US Data Privacy Framework. HubSpot is certified within this framework, which is why such transfers are based on the legal basis of Art. 45 GDPR. The data is stored for the duration of the business relationship or in accordance with legal retention periods.
The use of HubSpot Forms is based on our legitimate interest in efficient customer service and optimization of our business processes within the meaning of Article 6 (1) (f) GDPR.
More information about data protection at HubSpot can be found at: https://legal.hubspot.com/de/privacy-policy
On our website, we use the “reCAPTCHA” service, which is provided by Google, LLC 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter: “Google”). When using the service, the following data is transmitted to Google:
• IP address
• Referrer URL
• Operating system
• Mouse movements/keystrokes
• Length of stay
• Device settings (such as language settings or location)
The purpose of “reCAPTCHA” is to recognize whether, when contacted via our contact form, the user is an automated user or a real person. The service thus protects against a website failure due to a high number of automated requests. The information is usually forwarded to a Google server in the USA and stored there. For data transfers to the USA, there is an adequacy decision by the EU Commission, the EU-U.S. Data Privacy Framework. “Google” is certified within this framework, which is why such transfers are based on the legal basis of Art. 45 GDPR.
The data will be deleted after transmission.
Due to the protection of the website and the associated guarantee of the provision of the website, we have a legitimate interest within the meaning of Article 6 (1) (f) GDPR.
You can find more information about data protection at Google at: https://policies.google.com/privacy
Various tracking technologies are used on our website. These include the setting of cookies, the creation of a recognizable value by combining various device and browser information (device fingerprinting) or even the use of so-called “universal IDs”. In the following, the generic term “cookies” is used for any tracking technology.
Cookies are data sets that are stored on your computer when you visit our website and that allow your browser to be reassigned. Cookies store information, such as your language settings, for the duration of your visit to our website or the entries you make there.
There are different types of cookies. Session cookies are temporary cookies that are stored in the user's Internet browser until the browser window is closed and the session cookies are deleted. Permanent or persistent cookies are used for repeated visits and stored in the user's browser for a predefined period of time. First-party cookies are set by the website that the user is visiting. Only this website is authorized to read information from cookies. Third party cookies are set by organizations that do not operate the website that the user is visiting.
A distinction can also be made between technically necessary, functional and advertising cookies. The former are necessary to ensure basic functions of the website (e.g. saving the language setting). Functional cookies collect information about the user's behavior and whether they receive error messages. Advertising cookies, on the other hand, are used to offer the user tailored advertising.
The legal basis for processing personal data using technically necessary cookies is Art. 6 para. 1 lit. f DSGVO due to the described purposes of use, as we have an interest in the user-friendly presentation of our website. If you have given us your consent to use functional and advertising cookies on the basis of a notice provided by us on the website (“cookie banner”), the legality of use is also governed by Article 6 (1) sentence 1 lit. a GDPR.
As soon as the data transmitted to us via the cookies is no longer required to fulfill the purposes described above, this information will be deleted. Further storage takes place in individual cases if this is required by law.
Configuring browser settings
Most browsers are set to accept cookies by default. However, you can configure your browser to accept only certain cookies or no cookies at all. However, we would like to point out that if you disable cookies via your browser settings on our website, you may no longer be able to use all features of our website. You can also use your browser settings to delete cookies that have already been stored in your browser or view the storage period. It is also possible to set your browser so that it notifies you before cookies are saved. Since the various browsers may differ in their respective functions, we ask you to use the respective help menu of your browser for the configuration options.
We use the Cookiebot by Usercentrics service to manage consent to the use of cookies. Cookiebot helps us save and enforce your preferences regarding the use of cookies on our portal. Your consent data is transmitted to Usercentrics A/S, the operator of Cookiebot. The service provider is based in the EU and complies with the requirements of the GDPR. You can find more information about Cookiebot's data protection at: https://www.cookiebot.com/de/privacy-policy/
Data processing is necessary to provide you with the legally required consent management and to comply with our documentation requirements. The legal basis is Art. 6 para. 1 lit. c DSGVO and Art. 6 para. 1 lit. f DSGVO, justified by our interest in meeting the legal requirements for consent management.
cookie list
NAME XSRF TOKEN
Provider enabl-tech.de
Purpose Purpose is to store a token to ensure session security
Duration 2 hrs
NAME rc: :a
Provider Google Recaptcha
Purpose Purpose is to support user interaction on the website
Duration unlimited
NAME _cfuvid
Provider HubSpot
Purpose Purpose is the provision of external content by HubSpot
Session duration
USERNAME __cf_bm
Provider HubSpot Forms
Purpose Purpose is to support user interaction through HubSpot Forms
Duration 30 min
NAME enabl_session
Provider enabl-tech.de
Purpose Purpose is to support session administration
Duration 2 hrs
We use tracking and analysis tools to ensure continuous optimization and needs-based design of our website. With the help of tracking measures, we are also able to statistically record the use of our website by visitors and use the knowledge gained to further develop our online offering for you. If you have given us your consent to use cookies on the basis of a notice provided by us on the website (“cookie banner”), the legality of the use is also governed by Article 6 (1) sentence 1 lit. a GDPR. The following description of the tracking and analysis tools also shows the respective processing purposes and the data processed.
This website uses Google Analytics 4, a web analysis service provided by Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland and Google, LLC 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter: “Google”). Google Analytics uses cookies and tracking methods similar to device fingerprinting.
The information stored in these cookies, e.g. about the time, location and frequency of your use of our website, is usually forwarded to a Google server in the USA and stored there. For data transfers to the USA, there is an adequacy decision by the EU Commission, the EU-U.S. Data Privacy Framework. “Google” is certified within this framework, which is why such transfers are based on the legal basis under Article 45 GDPR. In addition, so-called standard contract clauses (SCC) were concluded with “Google”. When using Google Analytics, it cannot be ruled out that the cookies set by Google Analytics collect other personal data in addition to the IP address. Please note that Google may transfer this information to third parties if required to do so by law or if third parties process this data on behalf of Google.
Google will use the information generated by the cookie to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and Internet usage to the website operator. According to Google, the IP address transmitted by your browser as part of Google Analytics is not combined with other Google data.
You can usually prevent cookies from being saved by setting your browser software accordingly. However, we would like to point out that in this case you may not be able to use all functions of this website to their full extent.
You can withdraw your consent to processing and transfer to third countries at any time. This does not affect the lawfulness of previous processing.
You can find more information about data protection at Google at: https://policies.google.com/privacy
We are committed to keeping your personal information confidential. In order to prevent manipulation, loss or misuse of your data stored by us, we take extensive technical and organizational security measures, which are regularly checked and adapted to technical progress.
However, we would like to point out that due to the structure of the Internet, it is possible that the rules of data protection and the above-mentioned security measures may not be observed by other persons or institutions outside our area of responsibility. In particular, unencrypted data - e.g. when transmitted by e-mail - can be viewed by third parties. We have no technical influence on this. It is your responsibility as a user to protect the data you provide against misuse by means of encryption or other means.
The personal data of the data subject will be deleted or blocked as soon as the purpose of storage no longer applies. Storage may also take place if this has been provided for by European or national legislators in EU regulations, laws or other regulations to which the person responsible for processing is subject. Data will also be blocked or deleted when a storage period prescribed by the above standards expires, unless further storage of the data is necessary to conclude or fulfill a contract.
With regard to your personal data, you have the following legal rights vis-à-vis us:
You have the right to request confirmation as to whether we are processing personal data relating to you. If this is the case, you have the right to information about this personal data and further information, e.g. about the processing purposes, the recipients and the planned duration of storage or the criteria for determining the duration.
You have the right to request the correction of incorrect data without undue delay. Taking into account the purposes of processing, you have the right to request the completion of incomplete data.
You have the right to request deletion if processing is not necessary. This is the case, for example, if your data is no longer required for the original purposes, if you have withdrawn your declaration of consent under data protection law, or if the data has been processed unlawfully.
You have the right to restrict processing, for example if you believe that the personal data is incorrect.
You have the right to receive personal data concerning you in a structured, commonly used and machine-readable format.
You have the right to object to the processing of certain personal data concerning you at any time for reasons arising from your particular situation. In the case of direct marketing, you as a data subject have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing; this also applies to profiling insofar as it is associated with such direct marketing.
You can withdraw your consent to the processing of your personal data at any time with effect for the future. However, this does not affect the lawfulness of the processing carried out up to the time of withdrawal.
Without prejudice to these rights, you have the right to complain to a supervisory authority at any time if you believe that the processing of your personal data violates data protection regulations.
Date: 07.04.2025
Versione: 1.0
Reason for the change: First version of the revised privacy policy in a new format
