Legal

Privacy Policy

Last updated:

This Privacy Policy explains how Kheflaxxghapis, operated by the owner at Falkstraße 5, 60487 Frankfurt am Main, Germany, collects, uses, and protects personal data in accordance with the General Data Protection Regulation (GDPR) and applicable German data protection law (BDSG).

1. Controller Information

The data controller responsible for processing personal data on this website is:

Kheflaxxghapis
Falkstraße 5
60487 Frankfurt am Main
Germany
Phone: +49 69 99993159
Email: infocenter@kheflaxxghapis.world

2. What Data We Collect

2.1 Contact Form

When you use the contact form, we collect the following data:

  • Full name
  • Email address
  • Message content
  • Timestamp of submission
  • Your consent record (GDPR checkbox)

2.2 Server Log Files

When you visit this website, our hosting provider may automatically collect the following technical data in server logs:

  • IP address (anonymized or full, depending on configuration)
  • Date and time of the request
  • URL of the page visited
  • Referring URL (if applicable)
  • Browser type and version
  • Operating system

2.3 Cookies and Local Storage

We use browser localStorage to store your cookie consent preference. This is strictly necessary for managing consent. Details are provided in our Cookie Policy.

3. Legal Basis for Processing

We process personal data on the following legal bases under Article 6 GDPR:

  • Art. 6(1)(a) — Consent: For cookie categories where you have given explicit consent via the cookie banner.
  • Art. 6(1)(b) — Contractual necessity: Where processing is necessary to respond to your inquiry submitted via the contact form.
  • Art. 6(1)(c) — Legal obligation: Where we are required to process data to comply with applicable law.
  • Art. 6(1)(f) — Legitimate interests: For server log processing to ensure the security and proper functioning of this website.

4. Purposes of Processing

  • Responding to contact form inquiries
  • Managing and recording cookie consent
  • Ensuring the technical security and availability of the website
  • Complying with legal obligations

5. Data Retention

We retain personal data only for as long as necessary for the stated purposes:

  • Contact form submissions: Retained for up to 3 years from the date of submission, unless a longer retention period is required by law.
  • Server logs: Typically retained for 7 to 30 days, depending on hosting provider configuration.
  • Cookie consent records: Stored in your browser's localStorage until you clear it or withdraw consent.

6. Data Sharing and Third Parties

We do not sell or trade personal data. We may share data with:

  • Hosting providers for server infrastructure, bound by data processing agreements compliant with GDPR.
  • Technical service providers (for example CDN or font delivery providers) to ensure secure and performant delivery of website assets.
  • Legal authorities where required by applicable law or court order.

If analytics or marketing cookies are enabled, third-party providers (such as analytics services) may receive technical usage data as described in our Cookie Policy.

7. International Transfers

Where personal data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission, or we rely on adequacy decisions.

8. Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Right of access (Art. 15 GDPR): You may request a copy of personal data we hold about you.
  • Right to rectification (Art. 16 GDPR): You may request correction of inaccurate data.
  • Right to erasure (Art. 17 GDPR): You may request deletion of your data where no legal basis for retention exists.
  • Right to restriction (Art. 18 GDPR): You may request limitation of processing under certain circumstances.
  • Right to data portability (Art. 20 GDPR): You may request your data in a machine-readable format where applicable.
  • Right to object (Art. 21 GDPR): You may object to processing based on legitimate interests.
  • Right to withdraw consent (Art. 7(3) GDPR): Where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.

To exercise your rights, contact us at: infocenter@kheflaxxghapis.world

9. Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority. The competent supervisory authority for our location is:

Der Hessische Beauftragte für Datenschutz und Informationsfreiheit
Gustav-Stresemann-Ring 1
65189 Wiesbaden
Germany
Website: datenschutz.hessen.de

10. Data Security

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction. This includes the use of HTTPS encryption for all data transmission on this website.

11. Consent Management and Withdrawal

You can change or withdraw your cookie consent at any time by reopening cookie settings, using the reject option, or clearing localStorage in your browser. Withdrawal applies to future processing and does not affect processing already carried out lawfully before withdrawal.

12. Advertising and Analytics Transparency

Where advertising or analytics technologies are used, they are activated only according to your consent choices for non-essential categories. We do not sell personal data and we do not run undisclosed data-sharing arrangements for advertising purposes.

13. Changes to This Policy

We may update this Privacy Policy periodically. Material changes will be indicated by a revised "Last updated" date at the top of this page. We encourage you to review this page periodically.

We use cookies

We use cookies to improve your experience. You can manage your preferences or read our Cookie Policy.