Digital applications
for everyday life

Preamble

With this privacy policy, we would like to inform you about the types of your personal data (hereinafter also referred to as "data") we process, for what purposes and to what extent. This privacy policy applies to all processing of personal data carried out by us, both in connection with the provision of our services and in particular on our websites, in mobile applications and within external online presences, such as our social media profiles.

Last updated: April 3, 2026

Table of Contents

• Controller
• Overview of Processing Activities
• Legal Bases
• Security Measures
• Provision of the Online Service and Web Hosting
• Contact and Inquiry Management
• Your Rights as a Data Subject
• Changes and Updates
• Definitions

Controller

All4Automation GmbH
Cappelstraße 16
59555 Lippstadt
Germany
Email: all4apps@protonmail.com

Overview of Processing Activities

The following overview summarises the types of data processed and the purposes of their processing, and refers to the data subjects.

Types of data processed: Contact data; content data; usage data; meta, communication and procedural data; log data.

Categories of data subjects: Communication partners; users.

Purposes of processing: Communication; security measures; organisational and administrative procedures; provision of our online service and user experience; IT infrastructure.

Legal Bases

The following is an overview of the legal bases of the GDPR on which we process personal data. Please note that, in addition to the provisions of the GDPR, national data protection regulations may apply in your or our country of residence.

• Legitimate interests (Art. 6 para. 1 s. 1 lit. f) GDPR) – Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, provided that the interests, fundamental rights and freedoms of the data subject which require protection of personal data do not override those interests.
• Performance of a contract and pre-contractual enquiries (Art. 6 para. 1 s. 1 lit. b) GDPR) – Processing is necessary for the performance of a contract to which the data subject is party, or in order to take steps at the request of the data subject prior to entering into a contract.

National data protection regulations in Germany: In addition to the data protection regulations of the GDPR, national regulations on data protection apply in Germany, in particular the Federal Data Protection Act (Bundesdatenschutzgesetz – BDSG).

Security Measures

We implement appropriate technical and organisational measures in accordance with the legal requirements, taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing, as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons, in order to ensure a level of security appropriate to the risk.

These measures include in particular ensuring the confidentiality, integrity and availability of data by controlling physical and electronic access to the data, as well as access, input, disclosure, ensuring availability and their separation.

TLS/SSL encryption (HTTPS): To protect the data of users transmitted via our online services from unauthorised access, we use TLS/SSL encryption technology. When a website is secured by an SSL/TLS certificate, this is indicated by the display of HTTPS in the URL.

Provision of the Online Service and Web Hosting

We process users' data in order to provide them with our online services. For this purpose, we process the user's IP address, which is necessary to transmit the content and functions of our online services to the user's browser or device.

• Types of data processed: Usage data; meta, communication and procedural data; log data.
• Data subjects: Users (e.g. website visitors, users of online services).
• Purposes of processing: Provision of our online service and user experience; IT infrastructure; security measures.
• Legal basis: Legitimate interests (Art. 6 para. 1 s. 1 lit. f) GDPR).

Collection of access data and log files: Access to our online service is logged in the form of so-called "server log files". Log files may include the address and name of the web pages and files accessed, date and time of access, data volumes transferred, notification of successful retrieval, browser type and version, the user's operating system, referrer URL and, as a rule, IP addresses and the requesting provider. Log file information is stored for a maximum of 30 days and then deleted or anonymised.

Legal basis: Legitimate interests (Art. 6 para. 1 s. 1 lit. f) GDPR).

Contact and Inquiry Management

When contacting us (e.g. by email), the details of the enquiring person are processed insofar as this is necessary to respond to the contact enquiries and any requested measures.

• Types of data processed: Contact data; content data; meta, communication and procedural data.
• Data subjects: Communication partners.
• Purposes of processing: Communication; organisational and administrative procedures.
• Retention and deletion: Data is deleted when it is no longer required for the purpose for which it was collected, and there are no statutory retention obligations to the contrary.
• Legal bases: Legitimate interests (Art. 6 para. 1 s. 1 lit. f) GDPR); performance of a contract and pre-contractual enquiries (Art. 6 para. 1 s. 1 lit. b) GDPR).

Your Rights as a Data Subject

As a data subject, you have the following rights under the GDPR:

• Right of access (Art. 15 GDPR): You have the right to obtain confirmation as to whether personal data concerning you is being processed, and to receive a copy of such data.
• Right to rectification (Art. 16 GDPR): You have the right to request the correction of inaccurate personal data and the completion of incomplete personal data.
• Right to erasure (Art. 17 GDPR): You have the right to request the deletion of personal data concerning you without undue delay, subject to legal obligations.
• Right to restriction of processing (Art. 18 GDPR): You have the right to request the restriction of the processing of your personal data.
• Right to data portability (Art. 20 GDPR): You have the right to receive your personal data in a structured, commonly used and machine-readable format.
• Right to object (Art. 21 GDPR): You have the right to object at any time to the processing of personal data concerning you which is based on legitimate interests. If you lodge an objection, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing.
• Right to withdraw consent (Art. 7 para. 3 GDPR): You have the right to withdraw any consent you have given at any time. The withdrawal does not affect the lawfulness of the processing carried out on the basis of the consent prior to the withdrawal.
• Right to lodge a complaint (Art. 77 GDPR): You have the right to lodge a complaint with a supervisory authority. The competent supervisory authority for our company is: Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen (LDI NRW), Kavalleriestraße 2–4, 40213 Düsseldorf, Germany. Website: www.ldi.nrw.de

To exercise your rights, please contact us at: all4apps@protonmail.com

Changes and Updates

We ask you to regularly inform yourself about the content of our privacy policy. We update the privacy policy as soon as the changes to the data processing carried out by us make this necessary. We will inform you as soon as the changes require a cooperative action on your part (e.g. consent) or other individual notification.

Definitions

• Personal data: Any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data or an online identifier.
• Processing: Any operation performed on personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation, retrieval, consultation, use, disclosure, dissemination, restriction, erasure or destruction.
• Controller: The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.
• Usage data: Data that captures how users interact with digital products, services or platforms, including pages visited, time spent, click paths, device types and operating systems.
• Log data: Information about events or activities logged in a system or network, typically including timestamps, IP addresses, user actions and error messages.
• Meta, communication and procedural data: Data describing the context, origin and structure of other data, communication exchanges, and processes within systems or organisations.