Legal

Privacy Policy

This privacy policy applies to this website and explains what personal data is processed when you visit the site, contact us by email, use the meeting booking link, click external social media links, or explicitly load the YouTube video on the homepage.

Overview: This website does not use its own analytics, newsletter tools, marketing cookies, contact form, or embedded social media plugins. External services are only contacted automatically where technically necessary for hosting and delivery. The YouTube video is blocked by default and loaded only after your click.

1. Controller

Mimetik GmbH

Wiener Str. 82, 01219 Dresden, Germany

Phone: +49 160 5405810

Email: info [at] mimetik [dot] de

Website: www.mimetik.com

2. Hosting and Server Log Files

This website is hosted by GoDaddy. When you visit this website, the hosting environment processes technically necessary connection data in order to deliver the website, maintain stability, and protect against misuse and attacks.

Processed data

  • IP address
  • date and time of access
  • requested URL and transferred data volume
  • browser type, browser version, and operating system
  • referrer URL, if transmitted by your browser

Purpose and legal basis

The processing is necessary for secure and reliable website delivery. The legal basis is Art. 6(1)(f) GDPR (legitimate interest in secure website operation).

Recipient

The hosting provider acts as a recipient and technical service provider for website delivery: GoDaddy Operating Company, LLC / GoDaddy.com, LLC. Further information on GoDaddy's international transfer framework is available at https://www.godaddy.com/legal/agreements/data-privacy-framework-notice.

Storage period

Server log data is stored only for as long as necessary for technical operation, security, and incident analysis and is then deleted or anonymized. The exact retention period may depend on the operational setup of the hosting environment.

3. Cookies and Similar Technologies

This website does not set its own analytics or marketing cookies and does not use a general tracking or advertising setup.

Access to information on your device or the setting of third-party cookies may occur only if you actively load the YouTube video. In that case, the legal basis is your consent under Art. 6(1)(a) GDPR and, in Germany, Section 25(1) TDDDG.

4. Contact by Email

If you contact us by email, we process the information you provide in order to handle your request and any follow-up communication.

Processed data

  • name and email address
  • message content and any attachments
  • communication metadata required for transmission and response

Purpose and legal basis

The legal basis is Art. 6(1)(b) GDPR if your request relates to pre-contractual measures or an existing business relationship. Otherwise, the legal basis is Art. 6(1)(f) GDPR (legitimate interest in handling inquiries and business communication).

Storage period

We store the correspondence only for as long as needed to process the request and for any applicable legal retention periods.

5. Meeting Booking via Google Calendar

The “Book a Call” buttons on this website link to an external Google Calendar appointment page (calendar.app.google). No data is transferred to Google through that service until you click the link.

If you use the booking page, Google may process technical access data such as your IP address, browser data, and device information. If you enter contact details to request a meeting, the submitted data may also be processed to organize and confirm the appointment.

Purpose and legal basis

On our side, the legal basis is Art. 6(1)(b) GDPR if the meeting request is connected to pre-contractual communication or an existing business relationship. Otherwise, the legal basis is Art. 6(1)(f) GDPR (legitimate interest in efficient appointment organization).

Google acts as an external provider for the booking page and may also act as a recipient of data that you submit there. Additional information is available in Google’s privacy policy: https://policies.google.com/privacy

6. External Links to LinkedIn and YouTube

This website contains ordinary links to our pages on LinkedIn and YouTube. These are not embedded social media plugins.

No data is transmitted to LinkedIn or YouTube merely by visiting this website. A connection to the respective provider is established only when you click one of those links.

Once you leave our website, the privacy and data processing rules of the selected provider apply.

LinkedIn privacy policy: https://www.linkedin.com/legal/privacy-policy

7. YouTube Video on the Homepage

The homepage contains a YouTube video placeholder. The video is not loaded automatically. A connection to YouTube/Google is established only after you actively click the “Load video” button.

Processed data after activation

  • IP address
  • browser and device information
  • referrer information
  • data required to deliver the video
  • possibly cookies or similar identifiers set by YouTube/Google

Purpose and legal basis

The video is loaded only after your consent. The legal basis is Art. 6(1)(a) GDPR. For access to information on your device or the storage of non-essential information, the legal basis is Section 25(1) TDDDG.

Withdrawal

We do not store your YouTube consent persistently on this website. If you do not want the video to load, do not click the button. If you have already loaded the video, simply reload the page to return to the blocked state.

More information about Google/YouTube: https://policies.google.com/privacy

8. Recipients and Third-Country Transfers

Personal data may be disclosed to service providers involved in website hosting, email communication, meeting scheduling, and video delivery where this is necessary for the respective purpose.

Relevant recipients can in particular include GoDaddy as hosting provider as well as Google, YouTube, and LinkedIn if you actively use those external services.

If you actively use external services such as Google Calendar, YouTube, or LinkedIn, data may also be transferred to countries outside the European Economic Area, especially the United States. According to the respective provider setup, transfers may be based in particular on an adequacy decision such as the EU-U.S. Data Privacy Framework or on other safeguards provided by the provider. Based on GoDaddy's published notice, transfers involving GoDaddy may in particular rely on its self-certification under the EU-U.S. Data Privacy Framework.

9. Your Rights

Under the GDPR, you have in particular the following rights, subject to the applicable legal conditions:

  • right of access (Art. 15 GDPR)
  • right to rectification (Art. 16 GDPR)
  • right to erasure (Art. 17 GDPR)
  • right to restriction of processing (Art. 18 GDPR)
  • right to data portability (Art. 20 GDPR)
  • right to object (Art. 21 GDPR)
  • right to withdraw consent at any time with future effect (Art. 7(3) GDPR)
  • right to lodge a complaint with a supervisory authority (Art. 77 GDPR)

10. Supervisory Authority

You have the right to lodge a complaint with a data protection supervisory authority. The authority responsible for Saxony can be found here: https://www.datenschutz.sachsen.de/