Skip to Content

Privacy Policy

As of: March 2026

1. Data Controller

The controller within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws as well as other data protection provisions is:

devRocks GmbH
Neuenkampsweg 4
25337 Kölln-Reisiek
Germany

Phone: 04121 830360
Email: contact@devrocks.de

Managing Director: Joachim Hart Fernandez

2. General Information on Data Processing

We generally only process personal data of our users insofar as this is necessary for providing a functional website and our content and services. The processing of personal data of our users regularly only takes place with the user's consent. An exception applies in cases where obtaining prior consent is not possible for practical reasons and the processing of data is permitted by legal provisions.

3. Legal Basis for Processing

Where we obtain consent from the data subject for the processing of personal data, Art. 6 Abs. 1 lit. a GDPR serves as the legal basis.

For the processing of personal data required to fulfill a contract to which the data subject is a party, Art. 6 Abs. 1 lit. b GDPR serves as the legal basis. This also applies to processing operations necessary for pre-contractual measures.

Where processing of personal data is necessary for compliance with a legal obligation, Art. 6 Abs. 1 lit. c GDPR serves as the legal basis.

Where processing is necessary to protect a legitimate interest of our company or a third party, and the interests, fundamental rights, and freedoms of the data subject do not override this interest, Art. 6 Abs. 1 lit. f GDPR serves as the legal basis for processing.

4. Data Deletion and Retention Period

The personal data of the data subject will be deleted or blocked as soon as the purpose of storage ceases to apply. Storage may also occur if this has been provided for by the European or national legislator in EU regulations, laws, or other provisions to which the controller is subject. Data will also be blocked or deleted when a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or fulfillment of a contract.

5. Website Provision and Server Log Files

Each time our website is accessed, our system automatically collects data and information from the accessing computer. The following data is collected:

  • Information about the browser type and version used
  • The user's operating system
  • The user's IP address
  • Date and time of access
  • Websites from which the user's system reached our website (referrer)
  • Websites accessed by the user's system via our website

The data is stored in the log files of our system. This data is not stored together with other personal data of the user.

Legal Basis: Art. 6 Abs. 1 lit. f GDPR. Our legitimate interest lies in ensuring the functionality of the website and preventing attacks.

Retention Period: The data will be deleted as soon as it is no longer necessary for the purpose for which it was collected. In the case of data collected for website provision, this is when the respective session has ended. In the case of data stored in log files, this occurs after no more than 14 days.

6. Contact Form and Email Contact

Our website provides a contact form that can be used for electronic communication. If a user makes use of this option, the data entered in the input form will be transmitted to us and stored. This data includes:

  • Name
  • Email Address
  • Company (optional)
  • Phone number (optional)
  • Subject
  • Message Text

At the time the message is sent, the following data is also stored:

  • The user's IP address
  • Date and time of contact

During the submission process, your consent is obtained for the processing of data, and reference is made to this privacy policy.

Alternatively, you may contact us via the provided email address. In this case, the personal data transmitted with the email will be stored. No data will be shared with third parties in this context. The data will be used exclusively for processing the conversation.

Legal Basis: Art. 6 Abs. 1 lit. a GDPR (consent) or Art. 6 Abs. 1 lit. b GDPR (pre-contractual measures).

Retention Period: The data will be deleted as soon as it is no longer necessary for the purpose for which it was collected. For personal data from the contact form input and data sent via email, this is the case when the respective conversation with the user has ended and no statutory retention obligations exist.

7. Cookies

Our website uses cookies. Cookies are text files that are stored in or by the internet browser on the user's computer system.

We exclusively use technically necessary cookies that are required for the operation of the website. These cookies enable basic functions such as page navigation and access to secured areas. The website cannot function properly without these cookies.

Legal Basis: Art. 6 Abs. 1 lit. f GDPR. Our legitimate interest lies in operating a functional website.

8. SSL/TLS Encryption

This website uses SSL/TLS encryption for security reasons and to protect the transmission of confidential content, such as inquiries you send to us as the site operator. You can recognize an encrypted connection by the browser's address bar changing from "http://" to "https://" and by the lock icon in your browser bar.

When SSL/TLS encryption is activated, the data you transmit to us cannot be read by third parties.

9. Rights of the Data Subject

If your personal data is being processed, you have the following rights with respect to the controller:

a) Right of Access

You may request confirmation from the controller as to whether personal data concerning you is being processed by us. If such processing exists, you may request information on the following: processing purposes, categories of data processed, recipients, planned storage duration, existence of a right to rectification, erasure, restriction, or objection, right to lodge a complaint with a supervisory authority, and the origin of the data.

b) Right to Rectification

You have the right to rectification and/or completion by the controller if the processed personal data concerning you is inaccurate or incomplete.

c) Right to Restriction of Processing

Under certain conditions, you may request the restriction of processing of your personal data: when contesting its accuracy, in the case of unlawful processing, when we no longer need the data, or when you have lodged an objection.

d) Right to Erasure

You may request that the controller delete your personal data without undue delay if the purpose has ceased to apply, you have withdrawn your consent, you object, or the data has been unlawfully processed. The right to erasure does not apply insofar as processing is necessary for compliance with a legal obligation or for the establishment, exercise, or defense of legal claims.

e) Right to Notification

If you have asserted the right to rectification, erasure, or restriction of processing against the controller, the controller is obligated to notify all recipients to whom your personal data has been disclosed of this rectification, erasure, or restriction of processing.

f) Right to Data Portability

You have the right to receive the personal data concerning you, which you have provided to the controller, in a structured, commonly used, and machine-readable format. You also have the right to transmit this data to another controller.

g) Right to Object

You have the right to object at any time, on grounds relating to your particular situation, to the processing of your personal data based on Art. 6 Abs. 1 lit. e or f GDPR. The controller will then no longer process your personal data unless it can demonstrate compelling legitimate grounds for the processing.

h) Right to Withdraw Consent

You have the right to withdraw your data protection consent at any time. Withdrawing consent does not affect the lawfulness of processing carried out on the basis of consent prior to its withdrawal.

i) Right to Lodge a Complaint with a Supervisory Authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data violates the GDPR.

The supervisory authority responsible for us is:
Unabhängiges Landeszentrum für Datenschutz Schleswig-Holstein (ULD)
Holstenstraße 98
24103 Kiel
Phone: 0431 988-1200
Email: mail@datenschutzzentrum.de

10. Changes to the Privacy Policy

We reserve the right to update this privacy policy to ensure it always complies with current legal requirements or to reflect changes to our services in the privacy policy. The new privacy policy will then apply to your next visit.