SIMPLEKSO®

Legal

Privacy Policy

Information on the collection and processing of your personal data.

1. Privacy at a Glance

General Information

The following notes provide a simple overview of what happens to your personal data when you visit our website. Personal data is any data by which you can be personally identified.

Data Collection on Our Website

Who is responsible for data collection on this website? The data processing on this website is carried out by the website operator, whose contact details can be found in the “Data Controller” section and in the Imprint.

How do we collect your data? On the one hand, your data is collected when you provide it to us (e.g., by entering it into a contact, newsletter, or survey form). Other data is collected automatically or after your consent when you visit the website by our IT systems. These are primarily technical data (e.g., internet browser, operating system, or time of page view).

What do we use your data for? Part of the data is collected to ensure the error-free provision of the website. Other data may be used to analyze user behavior, capture leads, or provide interaction features (e.g., live chat).

What rights do you have regarding your data? You have the right at any time to receive information free of charge about the origin, recipient, and purpose of your stored personal data. You also have a right to request the correction or deletion of this data. If you have given your consent to data processing, you can revoke this consent at any time for the future. Furthermore, you have the right to request the restriction of processing and a right to lodge a complaint with the competent supervisory authority.

2. Data Controller and General Mandatory Information

Data Controller

SIMPLEKSO GmbH
Neue Plantage 6
14467 Potsdam
Germany
E-Mail: contact@simplekso.com
Phone: +49 (0) 331 90084967
Represented by the Managing Directors: Patrick Hocke, Martin Schröder

Revocation of Your Consent to Data Processing

Many data processing operations are only possible with your express consent. You can revoke consent you have already given at any time. The legality of the data processing carried out up to the revocation remains unaffected by the revocation.

Right to Lodge a Complaint with the Competent Supervisory Authority

In the event of violations of the GDPR, data subjects have a right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, their place of work, or the place of the alleged violation. For SIMPLEKSO GmbH, the competent authority is: Der Landesbeauftragte für den Datenschutz und für die rechtliche Einsichtnahme Brandenburg (Kleinmachnow).

Right to Data Portability and Rights of Access

You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to a third party in a standard, machine-readable format. Furthermore, within the framework of applicable legal provisions, you have the right to free information, correction, restriction of processing, or deletion of your stored data.

SSL or TLS Encryption

For security reasons and to protect the transmission of confidential content, this website uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock icon in your browser line.

3. Data Collection and Technical Infrastructure on Our Website

Server Log Files & Hosting

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us:

  • Browser type and browser version
  • Operating system used
  • Referrer URL (the previously visited page)
  • Hostname of the accessing computer
  • Time of the server request
  • IP address

The collection of this data is based on Art. 6 (1) (f) GDPR. We have a legitimate interest in the technically error-free presentation and optimization of our website. Our hosting infrastructure provider is server1.bg, whereby physical storage and processing take place exclusively on servers located in Frankfurt am Main, Germany. A corresponding Data Processing Agreement (DPA) is in place.

Contact via E-Mail or Phone (including Cloud and VoIP Services)

If you contact us via e-mail (contact@simplekso.com) or phone, your request including all resulting personal data will be stored and processed by us for the purpose of handling your inquiry. The legal basis for this processing is Art. 6 (1) (b) GDPR (contractual or pre-contractual measures) or our legitimate interest in effective request handling (Art. 6 (1) (f) GDPR).

For our internal office organization, the creation of presentations, and for AI-supported assistance functions, we use sub-components of Google Workspace (specifically Google Slides and Google Gemini) provided by Google Ireland Limited (Dublin, Ireland). We have concluded a Data Processing Amendment (DPA) with Google. This ensures that data processing complies with the GDPR, that customer-related data is processed within a secure corporate infrastructure, and that it is not used for general third-party AI model training.

For our telephone availability and the handling of telephone calls (VoIP), we use the services of the telephony provider Zadarma (Siam Telecom Tech Ltd. / affiliated EU subsidiaries). Connection data (such as caller ID, number dialed, date, time, and duration of the call) are processed to provide and bill the telephone connection. We have concluded a GDPR-compliant Data Processing Agreement (DPA) with the provider.

Cookie Consent Management (CookieScript)

Our website uses the consent management platform CookieScript (Objectis Ltd., Lithuania, EU) to obtain your consent for storing certain cookies or using tracking technologies and to document this in a legally compliant manner. This is done to fulfill our legal obligations pursuant to Art. 6 (1) (c) GDPR.

Note on Web Fonts (Local Hosting)

For data protection reasons and to maintain strict data minimization, we do not use dynamic requests of web typography (such as Google Fonts) via external Content Delivery Networks (CDNs). All fonts used on this website are integrated fully locally on our own web servers. No connection is established to third-party servers when the page is called up, and thus no transmission of your IP address to unauthorized third parties occurs.

4. Zoho Infrastructure and Integrated Services

For our IT infrastructure, customer relationship management (CRM), and interaction on this website, we use services provided by Zoho Corporation GmbH (II. Hagen 7, 45127 Essen, Germany). The physical storage and processing of the data take place in the provider's European data centers. A fully comprehensive, GDPR-compliant Data Processing Addendum (DPA) exists between SIMPLEKSO GmbH and Zoho Corporation GmbH.

Zoho Forms & Zoho CRM

Embedded forms on our website are provided via Zoho Forms. Entered data is transferred via an encrypted connection directly into our Zoho CRM to process customer inquiries or perform pre-contractual measures (Legal basis: Art. 6 (1) (b) GDPR).

Zoho SalesIQ (Live Chat and Tracking)

We use Zoho SalesIQ for live chat and real-time user analysis. This service uses cookies to identify returning visitors. The legal basis is your express consent pursuant to Art. 6 (1) (a) GDPR. The script remains blocked by default via our cookie consent banner until you actively consent.

Zoho Campaigns & Zoho Newsletters

We use a strict double opt-in process for newsletter subscriptions. The dispatch of newsletters as well as the integrated click and open tracking for campaign optimization are based exclusively on your consent pursuant to Art. 6 (1) (a) GDPR. Unsubscribing is possible at any time via a link at the bottom of each email.

Zoho Survey

We integrate Zoho Survey for feedback loops, market analysis, and customer satisfaction surveys on our website. Participation in these surveys is completely voluntary. The processing of entered answers is based exclusively on your express consent pursuant to Art. 6 (1) (a) GDPR.

5. Social Media Presences

We maintain online presences on LinkedIn, Facebook, and Instagram to communicate with customers and prospects and to provide information about our services. When visiting these profiles, the platform operators (LinkedIn Ireland Unlimited Company / Meta Platforms Ireland Limited) collect user data for market research and advertising purposes (creation of user profiles). A joint responsibility (Joint Controllership pursuant to Art. 26 GDPR) exists for the operation of these corporate fan pages. The legal basis is our legitimate interest in modern and effective corporate communication pursuant to Art. 6 (1) (f) GDPR or your consent given directly to the respective platforms (Art. 6 (1) (a) GDPR). Please direct requests for information or the assertion of data subject rights directly to the platform operators, as only they maintain full access to the user profiles.

Last updated: June 2026