1. Introduction

Thank you for visiting our website. We take data protection very seriously and strive to protect your personal data within the framework of our website offer.

Within the meaning of the General Data Protection Regulation (GDPR) we define personal data as all data relating to the personal and factual circumstances of a natural person. Personal data collected on our website is used exclusively for our own purposes.

2. Data protection contact

Responsible for the data processing within the meaning of Art. 4 No. 7 GDPR is

Solarnative GmbH

Am Holzweg 26

65830 Kriftel

E‑Mail Adresse: j.mattheis@solarnative.com

Telefonnummer: +49 172/ 1815519

You can reach our data protection officer at

Herr Peter Mühlemeier

SICODA GmbH

Rochusstraße 198

53123 Bonn

Tel.: 0228 28614060

E‑Mail: datenschutz@solarnative.com

3. Legal basis

The legal basis for our data processing within the EU General Data Protection Regulation results from Art. 6 GDPR.

Consent: If your consent for processing operations of personal data has been obtained, Art. 6 para. 1 lit. a) GDPR is the legal basis for data processing. Consent given can be revoked with effect for the future at any time.

Contract: If data has been collected for the performance of a contract to which you are a party, the legal basis is Art. 6 para lit. 1 b) GDPR. This also applies to processing operations that are necessary for the performance of pre-contractual measures.

Statutory duty: If the processing of data is necessary for the fulfilment of a statutory duty to which our company is subject, Art. 6 para. 1 lit. c) GDPR serves as the legal basis.

Vital interests: If your or another natural person’s vital interests make the processing of data necessary, Art. 6 para. 1 lit. d) GDPR is the legal basis.

Legitimate interest: If the processing is necessary to protect a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the first mentioned interest, Art. 6 para. 1 lit. f) GDPR serves as legal basis for the processing. Our company’s legitimate interest consists in carrying out our business activities.

Employment relationship: According to Art. 88 GDPR in conjunction with section 26 of the Federal Data Protection Act (BDSG), personal data of employees shall be processed for the purposes of the employment relationship if it is necessary for the establishment of an employment, its implementation or termination or for the exercise or fulfilment of the right and obligations of the employee’s representation of interests resulting from a law or collective agreement, a company agreement or a service agreement.

4. Data subject rights

Within the context of us processing data, your personal data will be processed. Towards our company, you are entitled to the rights given in the third chapter of the GDPR.

You have

the right to request information about your personal data processed by us to the extent specified in 15 GDPR;

the right to request the correction of incorrect or incomplete personal data stored by us without delay according to 16 GDPR;

the right to request the deletion of your personal data stored by us in accordance with 17 GDPR, unless further processing is necessary to exercise the right to freedom of expression and information; to comply with legal obligations; for reasons of public interest or to assert, exercise or defend legal claims;

the right to demand the restriction of the processing of your personal data according to 18 GDPR if you deny the accuracy of the data; the processing is illegal but you object its erasure; we no longer require the data but you need it for the assertion, exercise or defense of legal claims; or you objected to the processing in accordance with Art. 21 GDPR;

the right to receive the personal data that you have provided for us in a structured, common and machine-readable format or to request its transfer to another controller according to 20 GDPR;

the right to object to the processing of personal data concerning you according to 21 GDPR if the processing is based on a legitimate interest;

the right to complain to a supervisory authority according to 77 GDPR. As a rule, you can contact the supervisory authority located at your place of residence, workplace or our company headquarters for this purpose.

5. Website Hosting

Our website is hosted on the server of a hosting provider in the Federal Republic of Germany. The personal data processed by us and described in detail below are stored on this server. Our systems are consistently encrypted using state-of-the-art technology. Strictly speaking, access by the hosting provider to personal data should therefore hardly be possible. Nevertheless, as a purely precautionary measure, we have concluded an data processing agreement with the hosting provider.

6. Web server logs

Within the context of the use of our internet offer, the connection information is stored in the server log files.

Such information includes:

IP address of the calling system
browser information such as operating system used and screen resolution
web page accessed
original website
time of the call

The web server logs are processed exclusively for security purposes. The legal basis for this processing is Art. 6 para. 1 lit f) GDPR, the legitimate interest of the person responsible.

We only use the log data for statistical evaluations for the purpose of the operation, security and optimization of the offer. However, we reserve the right to subsequently check the log data if there is a justified suspicion of unlawful use due to concrete indications.

7. Contact form

You have the option of sending any data to us using the contact forms on our website. The data is forwarded by our web server to our company’s email inbox.

At the time the message is sent, the following data is also stored:

Your IP address
Date and time the message was sent

Please note that communication via the contact form is not encrypted. In your own interest, please use a secure communication channel for confidential communication. Alternatively, you can contact us via one of the email addresses provided.

By sending your message, you agree that we may process your personal data to process your contact request. You can object to the processing at any time and without giving reasons. Please note, however, that if you revoke your consent, we will no longer be able to process your contact request.

The legal basis for the processing of your personal data is your consent in accordance with Article 6 para. 1 lit. a) GDPR, provided it is a contact request.

If contact is made in connection with the initiation or execution of a contract, the legal basis is Art. 6 para. 1 lit. b) GDPR.

8. Newsletter & Newsletter tracking

If you have entered your email address receive our newsletter, we will use the data to send you information in accordance with the newsletter registration.

We collect the following data when registering for the newsletter:

First name
Last name
Email
Country
Interest group

When you register for the newsletter, we also save your IP address and the date of registration. This storage serves solely as proof in the event that a third party misuses an email address and registers to receive the newsletter without the knowledge of the authorized person.

You will only receive our newsletter if you click on the confirmation link sent to the email address you provided as part of your registration and confirm your registration.

You can unsubscribe from the newsletter at any time by clicking on the unsubscribe link contained in every newsletter email.

We also operate so-called newsletter tracking. This means that we record the following events:

Information about whether the newsletter was opened or not
Information about whether and which links were opened in the newsletter

The legal basis for the processing of your personal data as part of the newsletter and newsletter tracking is your consent in accordance with Article 6 para. 1 lit. a) GDPR.

9. Social Media pages

Our company is also present on social media. Below you will find information on the processing of your personal data when you visit one of our social media pages.

9.1. Facebook

As part of our social media activities, we maintain a Facebook page. For the collection of personal data on this Facebook page, we are jointly responsible with Meta Platforms Ireland Limited (“Meta”), 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

To provide the Facebook page, Meta processes personal data of visitors to the page. This processing is done solely by Meta. Therefore, Meta is solely responsible for this processing of personal data within the meaning of the GDPR. In this context, Meta processes, among other things, data that is collected each time the site is used. This includes data about users’ user IDs, the type of content that users access, interactions with the site, information about the content and pages used. Further descriptions of the personal data processed are provided by Meta at: https://www.facebook.com/privacy/policy/.

Website visitors can object to certain data processing by Meta. The objection options can be found at https://www.facebook.com/privacy/guide/ads.

As far as we process the personal data collected via our Facebook page, this is done using the data provided by Meta. Meta provides us with statistics for our site in the form of “page insights” in an anonymous form, with the help of which we can gain insights into the use of our Facebook offering. We have concluded a separate agreement with Meta for this purpose, which can be viewed at https://www.facebook.com/legal/terms/page_controller_addendum.

This agreement also regulates which security precautions have been taken by Meta and that users can contact Meta directly with questions regarding the rights of those affected under the Third Chapter of the GDPR (e.g. information and deletion). The rights of those affected (in particular the rights to information, deletion and right to be forgotten, objection and complaint to the responsible supervisory authority) are not restricted by the agreement between us and Meta. These can be asserted against us as well as against Meta. Further information about this data processing can be found at: https://www.facebook.com/legal/terms/information_about_page_insights_data.

This processing of personal data serves our legitimate interest in communicating via the media Facebook and optimizing our offering on these media. The legal basis for this processing is our overriding legitimate interest in this processing in accordance with Article 6 para. 1 lit. f) GDPR.

We expressly point out that, in accordance with the Facebook data protection regulations, personal data of users of our Facebook page is also stored in the USA or other third countries, i.e. outside the European Union and therefore outside the scope of protection of the GDPR. Meta guarantees that the processing of personal data of visitors to our Facebook page will be processed in accordance with the requirements for third country transfer in accordance with Article 44 ff of the GDPR. By visiting our Facebook page, you agree to the corresponding processing of your personal data.

9.2. Instagram

As part of our social media activities, we maintain an Instagram page. For the collection of personal data on the Instagram page, we are jointly responsible with Meta Platforms Ireland Limited (“Meta”), 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

To provide this site, Meta processes personal data of visitors to the Instagram site. Processing is carried out solely by Meta. Meta is therefore the sole responsible party for this processing. In this context, Meta processes, among other things, data that is collected each time the site is used. This includes data about users’ user IDs, the type of content that users access, interactions with the site, information about the content and pages used. Further descriptions of the personal data processed can be found at: https://privacycenter.instagram.com/policy/?entry_point=ig_help_center_data_policy_redirect.

Website visitors can object to certain data processing by Meta. The objection options can be found at: https://help.instagram.com/284802804971822.

As far as we process personal data collected via our Instagram page, this is done using the data provided by Meta. Meta provides us with statistics for our site in the form of “Instagram Insights” in an anonymous form, with the help of which we can gain insights into the use of our Instagram offering. We have concluded a separate agreement with Meta for this purpose, which can be accessed at https://www.facebook.com/legal/terms/page_controller_addendum.

This processing of personal data serves our legitimate interest in communicating via the Instagram medium and optimizing our offering on this medium. The legal basis for this processing is our overriding legitimate interest in this processing in accordance with Article 6 para. 1 lit. f) GDPR.

We expressly point out that, in accordance with the Instagram data protection regulations, personal data of users of our Instagram page is also stored in the USA or other third countries, i.e. outside the European Union and therefore outside the scope of protection of the GDPR. Meta guarantees that the processing of personal data of visitors to our Instagram page will be processed in accordance with the requirements for third country transfer in accordance with Article 44 ff of the GDPR. By visiting our Instagram page, you agree to the corresponding processing of your personal data.

9.3. LinkedIn

We use the services of LinkedIn Ireland Unlimited Company (“LinkedIn”), Wilton Plaza, Wilton Place, Dublin 2, Ireland to present our company and to search for new employees.

If you visit our LinkedIn page and respond to our content, your personal data such as your username, the content you publish on LinkedIn and your reactions to our company’s content may be processed by us in such a way that we respond to it or mention your account or content in any content we publish.

Users can object to certain data processing by LinkedIn. You can find the objection options here: https://www.linkedin.com/help/linkedin/answer/93516/widerstimm-gegen-die-datenrechner-einsperrung-der-datenrechner?lang=de

LinkedIn acts as a processor with regard to the data collected as part of our job offers. In this regard, we have concluded an agreement in accordance with Art. 28 GDPR.

LinkedIn provides us with statistics for our site in the form of company page analyzes in an anonymized form, with the help of which we can gain insights into the performance of our company page through usage. To do this, LinkedIn processes the data you share with LinkedIn when you visit, follow or interact with our site. We have concluded a separate agreement with LinkedIn for this purpose, which can be accessed at https://legal.linkedin.com/pages-joint-controller-addendum. LinkedIn has agreed to assume responsibility for this processing and assumes the obligations regarding ensuring the rights of those affected. You can find more information about this processing here: https://www.linkedin.com/help/linkedin/answer/a547077/linkedin-page-analytics-overview?lang=de.

This processing of personal data serves our legitimate interest in communicating via the LinkedIn medium and optimizing our offering on this medium. The legal basis for this processing is our overriding legitimate interest in this processing in accordance with Article 6 para. 1 lit. f) GDPR.

LinkedIn is responsible for the further processing of personal data when using LinkedIn.

LinkedIn processes, among other things, the data you voluntarily provide when using your LinkedIn account, such as your name, user name, email address and telephone number.

If you publish and share content on LinkedIn, LinkedIn can evaluate it to find out which topics you are interested in and to send you information about similar content and advertising.

In addition, LinkedIn also collects so-called log data such as your IP address, your browser type, the operating system you use, information about the website you previously accessed and the pages you accessed, your location, your mobile phone provider, and the device you use , the search terms you use and cookie information. Please note that this data will be processed by LinkedIn even if you do not have a LinkedIn account.

If you have a LinkedIn account, you may have the option to restrict the processing of your personal data by LinkedIn as part of the settings for your LinkedIn account.

We have no knowledge of and no influence on the scope and type of data processing or the further processing and use of your personal data by LinkedIn.

Further information on data processing by LinkedIn can be found at: https://de.linkedin.com/legal/privacy-policy.

We expressly point out that when using LinkedIn, personal data may be transferred to a country outside the EU/EEA (a so-called third country) in which the level of protection of the GDPR with regard to personal data is not guaranteed.

10. Cookies

This website and all of its subpages use cookies and other comparable tracking technologies, such as tracking pixels or Local Stroage Objects (LSO).

Cookies are text files that are stored on your device. Cookies can be read, transferred and changed by the website when the website is accessed.

We use both so-called “first-party cookies”, i.e. cookies that are controlled by the company that operates the domain on which the cookies are set, and so-called “third-party cookies”. The latter are controlled by third parties and help us to analyze the impact of our website content and the interests of our visitors, to measure the performance of our website or to display tailored advertising and other content on our or other websites.

Most of the cookies we use are so-called “session cookies”. They are automatically deleted at the end of your visit or browser session (so-called transient cookies). Other cookies remain stored on your device for a specified period of time or until you delete them (so-called persistent cookies). These cookies enable us to recognize your browser the next time you visit. We only use cookies with random, pseudonymous identification numbers. These identification numbers are used to evaluate your usage behavior on our website. At no time will the usage profile be assigned to the name of a natural person. If you use special functions of our website (such as the shopping cart or “stay logged in”), cookies are also used for these functions.

Web beacons are tiny graphic files and are used to retrieve data from your device, such as your device type, your operating system, your IP address or the time of your visit.

Local storage objects (LSO) work similarly to cookies. However, the information is stored locally in the browser.

Insofar as the cookies and other technologies are those that are technically necessary for the operation of the website, the legal basis for the use of these and the associated processing of your personal data is our legitimate interest in accordance with Article 6 para. 1 lit. f ) GDPR. Our legitimate interests lie in particular in being able to provide you with a website that is technically optimized, user-friendly and tailored to your needs, and in ensuring the security of our systems.

The use of cookies and other technologies that are not technically necessary for the operation of the website and which primarily serve analytical and marketing purposes, as well as the associated processing of your personal data, is carried out in accordance with Article 6 para. 1 lit. a) GDPR only if you have given us your express consent.

When you first access our website or one of its subpages, you will be informed by a so-called cookie banner about the cookies and other technologies used on the website and will be given the opportunity to choose which of the cookies and other technologies that require consent you would like to give your consent to.

You can also use the cookie banner at any time to find out about the individual functions of the cookies using the “Cookies” button or to view our detailed data protection declaration using the “Data protection declaration” button.

You can revoke your consent at any time and change your settings regarding cookies and other technologies that require consent at any time.

11. Borlabs Consent Management

We use Borlabs consent management from Borlabs GmbH, Hamburger Str. 11, 22083 Hamburg on our website.

We use consent management to obtain your individual cookie consents and manage them verifiably.

As part of Borlabs consent management, your personally selected cookie preferences are stored. You have the option to change your preferences at any time. Simply click on the widget at the bottom left of the screen to reopen consent management.

The legal basis for the use of Borlabs consent management is, in accordance with Article 6 para. 1 lit c) GDPR, our legal obligation to obtain and provide evidence of cookie consent.

12. Google Analytics

This website uses Google Analytics 4, a web analysis service provided by Google Inc. (“Google”). Google Analytics uses so-called “cookies”, text files that are stored on your computer and that enable your use of the website to be analyzed. The cookies contain information regarding interactions that are tracked when the website is used.

The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. The US secret services can gain access to this data within the scope of their extensive legal surveillance powers. According to Google, your IP address should be shortened by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area by means of automatic IP anonymization before it is processed in the USA. However, your full IP address can also be transferred to a Google server in the USA so that US secret services can access this data.

On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage to the website operator. In addition, Google uses its own processing, which is not defined in more detail by Google, to provide and protect the Analytics service. However, we have not shared any data with Google for its own processing using the data sharing settings.

We track the following events if you have agreed to use Google Analytics:

first visit
Start a session,
User engagement (the website is in focus for at least a second),
Number of users
Session statistics
Approximate location
Browser and device information

By default, the following parameters are collected for each event:

language,
page_location,
page_referrer,
page_title and

You can prevent the storage of cookies by setting your browser software accordingly; However, we would like to point out that in this case you may not be able to use all functions of this website to their full extent. You can also deactivate Google Analytics using the cookie settings.

The legal basis for our data collection with the Google Analytics software is your consent in accordance with Art. 6 para. Lit. 1 a) GDPR, which you can revoke at any time with effect for the future using the procedure described above.

Your data will be automatically deleted after 14 months. The deletion of data whose retention period has been reached occurs automatically once a month.

Further information about Google Analytics and data protection can be found on the website:

https://policies.google.com/privacy?hl=de

13. Google Maps

For better illustration, we include a map on our website that is provided by Google Inc. via the Google Maps API.

When you view the map, a connection is established to the Google server, which, among other things, transfers the IP address to Google. Google can evaluate the use of the Google Maps function by website visitors. Google also has the option of writing and reading cookies. These cookies may be Google user cookies that are directly linked to you.

The legal basis for the use of Google Maps is your consent in accordance with Art. 6 para. 1 lit a) GDPR. You can revoke this to us at any time without giving reasons with effect for the future.

Further information about Google Maps can be found in Google’s data protection conditions and terms of use: https://policies.google.com/privacy?hl=de

14. Youtube

Videos and plugins from the service provider YouTube LLC, 901 Cherry Avenue, San Bruno, CA 94066, USA are used on the website. YouTube is legally represented by Google Inc. with its registered office at 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.

If you have given your consent to use YouTube, even if a video is displayed on our website in a still image, a communication connection will be established to the YouTube server through which the service receives various data. This data includes the IP address of your computer, any cookies already stored on your computer and information that was stored as part of previous contacts with YouTube. If no data has been saved yet, the service will save cookies on your computer for the first time. When you contact YouTube, the service also receives information about a user account you may have with YouTube. Further information when interacting with the video, such as clicking the start, pause or end button, is also transmitted to the provider. You can stop data processing when you visit a site without video and delete all cookies from your computer.

The legal basis for the use of YouTube videos is your consent in accordance with Article 6 para. 1 lit- a). You can revoke this to us at any time without giving reasons with effect for the future

Further information on data processing and information on data protection by YouTube can be found at https://policies.google.com/privacy

15. Processing by Microsoft Forms

We use Microsoft Forms to process support requests from our customers. Here we request data that is required to process and respond to your request.

When you complete the form, we receive the personal data that you provide to us. This is your first and last name, your e‑mail address, your telephone number if applicable and your answers. Other data that is processed in connection with the support request is the IP address, any data that may have been stored with Microsoft if you have a Microsoft account and are logged into this account at the time of the request, the date and time the questionnaire was opened and the date and time the response was sent.

This data is processed by us exclusively for the purpose of processing the support request. To process this data, we have commissioned Microsoft Corporation, One Microsoft Way, Redmond, WA 98052–6399, USA as a processor in accordance with Art. 28 GDPR. We have concluded a data processing agreement with the aforementioned company.

The query via Microsoft Forms and the processing of your data takes place on the basis of Art. 6 para. 1 sentence 1 lit. b GDPR in the context of the execution of a contract or pre-contractual or post-contractual measures.

16. Storage period

We only store your personal data for as long as is necessary and permitted for the purpose for which the data was collected, unless statutory retention periods prevent deletion or you have given us your express consent to continue storing your personal data.

If certain data is subject to statutory retention periods, we will store it until the relevant retention periods have expired.

If you give us your express consent to continue storing certain data, we will retain your data until you revoke your consent to us. The contact details mentioned under point 2 can be used to revoke your consent.

17. Meta Pixel

We use the Meta Pixel and the Conversion API from Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland on our website.

Meta Pixel is a Java script code that can be used to track your user behavior on our website if you came to our website via ads on Facebook or Instagram. This enables us to find out which of our content, services and products you are interested in and to show you advertisements tailored to your interests in the future.

The data collected in this context is stored by the service provider in a cookie and, if you have a user account on Facebook or Instagram and are logged in to our website at the time of your visit, this is linked to this.

We expressly point out that data about your user behavior on our website is collected via the pixel even if you do not have a Facebook or Instagram account.

In addition to the Meta Pixel, we use the Conversion API, which enables us to evaluate the effectiveness of our ads on Facebook and Instagram for statistical and market research purposes and to optimize our ads. The data is stored and processed by the service provider and, if you have a user account, linked to it. In accordance with its data policy (https://mbasic.facebook.com/privacy/policy/printable/), the service provider also processes the data for its own advertising purposes.

If you have a Facebook or Instagram user account, you can change certain advertising preferences settings yourself. You can find relevant information and instructions at https://de-de.facebook.com/help/247395082112892.

The legal basis for the use of the Meta Pixel is your consent in accordance with Article 6 Paragraph 1 Letter a) GDPR. Once you have given your consent, you can revoke it at any time with future effect without giving reasons. Please note: This does not affect the lawfulness of data processing until you revoke your consent.

We would also like to point out that Meta Platforms Ireland Limited is a service provider whose headquarters is in the USA and which processes your data in whole or in part on servers within the USA.

If you would like to find out more about data protection at Meta Platforms Ireland Limited, you can find their data protection information at the following address https://de-de.facebook.com/privacy/policy/.