The legal provisions for the protection of your data can be found in the General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG), and the Telecommunications-Digital Services Data Protection Act (TDDDG).

The controller in the sense of data protection regulations is:

Flexxy GmbH

Margarethenstraße 37, 45144 Essen

Managing Directors Stan Onen Ibor and Ajimijereomo John Paul

Below you will find information on what personal data — this includes all data that identifies or makes you identifiable, such as your name, address, email address, or user behavior — we collect during your visit to our site and how it is used. If you have any further questions, you can contact us at info@flexxydrive.com.

You also have the right to lodge a complaint with a supervisory authority if your data is used unlawfully. The one responsible for us is:

State Commissioner for Data Protection and Freedom of Information

North Rhine-Westphalia, Postfach 20 04 44, 40102 Düsseldorf

Tel.: 0211/38424-0, Fax: 0211/38424-10, E-mail: poststelle@ldi.nrw.de

1. Server Data Collection and Hosting

Our website is hosted by Amazon Web Services EMEA SARL, 38 Avenue John F. Kennedy, L-1855 Luxembourg. The servers are located in the EU.

When you visit our site, various server statistics are automatically saved that your browser transmits to our provider's server. The name of the accessed website, date and time of access, city, state, and country of access, as well as the Recaptcha rating of the requesting website (for the purpose of checking its trustworthiness) are logged.

The legal basis for data collection is Art. 6 para. 1 lit. f) GDPR. This data is not merged with other data sources. Our legitimate interest in collecting this data is based on our ability to optimize our service for users, for example, by preventing access from malicious sites or optimizing access via a specific browser.

You have a fundamental right to object to this data collection. This is not practically possible here, as otherwise, the use of the site would be impossible.

The data is deleted after 12 months.

2. Email Inquiries

If you send us an inquiry by email, we collect and store the email address and the data contained in the email to answer your inquiry.

Legal basis: If a contractual relationship develops from the inquiry as part of contract initiation or if the inquiry relates to an existing contractual relationship, the legal basis is Art. 6 para. 1 lit. b) GDPR, as the storage of the data is necessary for the fulfillment of a pre-contractual or contractual obligation. We also have a legitimate interest according to Art. 6 para. 1 lit. f) GDPR in processing the data for the purpose of communication and answering your inquiries.

The data will be deleted when the purpose of storage has ceased, i.e., after your email inquiry has been answered or when the matter associated with the inquiry has been finally clarified. In the case of an existing or subsequent contractual relationship, the data will be deleted after the statutory retention periods have expired.

3. Cookies

The internet pages use so-called cookies in several places. They serve to make our offer more user-friendly, effective, and secure. A cookie is a piece of text information that our website places on the device you are using via the web browser. Most of the cookies we use are so-called 'session cookies.' They are automatically deleted at the end of your visit.

The legal basis is Art. 6 para. 1 lit. f) GDPR. Our legitimate interest arises from the fact that we only use the aforementioned cookies to make the site more accessible for you, do not collect any tracking data, and therefore do not interfere with your personal rights and fundamental freedoms.

These cookies are only valid for the duration of your browser session and are deleted when you leave our site.

We also use cookies from the following third-party providers:

3a. Cookie Consent Tool Usercentrics

On our website, we use the cookie consent tool from Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich.

The Usercentrics Consent Tool collects log file and consent data using JavaScript. This JavaScript makes it possible to inform the user about their consent to certain tags on our website and to obtain, manage, and document this consent.

We process the consent data or data of consent (anonymized logbook data (Consent ID, Processor ID, Controller ID), Consent Status, Timestamp), the device data or data of the devices used (including truncated IP addresses (IP v4, IP v6), device information, Timestamp) and user data (including email, ID, browser information, SettingIDs, Changelog). The stored data is used to ensure that web analysis services only collect data with your consent and to document this consent and to create and display cookie declarations for end users.

The key and the consent status are also stored in the end-user's browser in the consent cookie, so that the website can automatically read and follow the end-user's consent on all subsequent page requests and future end-user sessions for up to 12 months.

The legal basis for processing your data is Art. 6 para. 1 lit. c) and f) GDPR, because we are legally obligated to be able to prove consent and our legitimate interest arises from the fact that this is the only way we can obtain necessary consent.

4a. Google Analytics

This website uses the web analytics service Google Analytics. The responsible party is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Data is transferred from Google Ireland to Google LLC, a company with headquarters in the USA. This means that data is processed in a third country (USA). Google has a privacy shield with the EU-U.S. Data Privacy Framework (DPF).

The EU-U.S. Data Privacy Framework (DPF) is a data protection framework that allows for the transfer of personal data from the EU to the USA while ensuring that the data is adequately protected. Google has committed to complying with the DPF principles, which include data minimization, purpose limitation, and data security. You can find more information about this at the following link:

Google Analytics uses cookies that are stored on your computer and allow for an analysis of your use of the website. For more information on what data Google collects and how it is used, please refer to Google's privacy policy regarding cookies: Google Cookies

The legal basis is Art. 6 Para. 1 lit. a) GDPR (consent).

IP anonymization is activated for Google Analytics on this website. As a result, your IP address is shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before transmission to the USA. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. The IP address transmitted by your browser as part of Google Analytics is not merged with other data from Google. For more information, please refer to Google's data protection information:

You can withdraw your consent at any time. The withdrawal does not affect the legality of the processing carried out based on the consent until the withdrawal.

You can prevent the storage of cookies by setting your browser software accordingly; however, please note that if you do this, you may not be able to use all the functions of this website to their full extent. You can also prevent the collection of the data generated by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plug-in available at the following link:

For more information on data handling by Google Analytics, please see the Google Analytics help page: Google Analytics Help Page

User and event data linked to cookies, user IDs (e.g., User-ID), or advertising IDs (e.g., DoubleClick cookies, Android advertising ID) are deleted after 14 months.

4b. Google ReCaptcha

We use Google ReCaptcha to check for and prevent automated, machine-based access to our website. It is a service from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. For more information, see Google's privacy policy: Google's privacy policy

The legal basis is Art. 6 para. 1 lit. f) GDPR. Our legitimate interest is to protect our website from automated misuse and spam.

5. Waitlist

We offer a waiting list for our services. To register, you can enter your email address. We use this to inform you about the launch of our service and to send you updates about our product.

You can unsubscribe at any time.

The legal basis for processing the data is Art. 6 para. 1 lit. a) GDPR (consent). You can withdraw your consent at any time, for example, by unsubscribing.

The data is deleted as soon as you have unsubscribed from the waiting list or no longer wish to receive information from us.

6. Social Networks

6a. Facebook Page

We operate a Facebook page for marketing purposes. The responsible party for data processing is the Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

We would like to point out that when you visit our page, your data is processed by Facebook. For more information, please see Facebook's data policy: Facebook Data Policy

The Facebook platform processes data from you, such as personal data, device information, location data, and your usage behavior. This data is used to provide Facebook's services and to display personalized ads. Facebook may also share this data with third parties.

We use the 'Page Insights' function on our Facebook page, which allows us to analyze the use of our page. Facebook provides us with anonymized data that helps us to understand how our page is used. We do not have access to individual user data.

As part of the 'Page Insights' function, we have entered into an agreement with Facebook on the joint responsibility for data processing. You can find this agreement here: Page Controller Addendum

The data processing on our Facebook page is based on our legitimate interest in providing an effective and attractive platform for our users and in communicating with them. The legal basis is Art. 6 para. 1 lit. f) GDPR.

Facebook also uses cookies to track your behavior on the platform and on other websites. You can find more information about this in Facebook's privacy policy. You can also adjust your advertising settings on Facebook to prevent the use of your data for personalized ads.

To avoid tracking by Facebook, you should log out of your Facebook account before visiting our Facebook page and delete all cookies.

If you use interactive functions on our Facebook page (e.g., commenting, sharing, liking), your data will also be processed. The legal basis is Art. 6 para. 1 lit. b) GDPR if the processing is necessary for the fulfillment of a contract or for the implementation of pre-contractual measures. Otherwise, the legal basis is Art. 6 para. 1 lit. f) GDPR.

Information on the joint responsibility agreement with Facebook can be found at: Controller Addendum

Information on Facebook's security measures can be found at: Data Security Terms

Information on Facebook's data processing terms can be found at: Data Processing Terms

The legal basis for the data processing is Art. 6 para. 1 lit. f) GDPR. Our legitimate interest is in the effective presentation of our company and the communication with customers and interested parties.

6b. LinkedIn

We use LinkedIn for professional networking and to present our company. The responsible party for data processing is the LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland.

When you visit our LinkedIn profile, LinkedIn processes your data, such as your user ID, your professional interests, and your interactions with our content. This data is used to provide LinkedIn's services and to display personalized ads. LinkedIn may also share this data with third parties.

For more information on how LinkedIn handles your data, please see LinkedIn's privacy policy: LinkedIn Privacy Policy

We do not collect any personal data from you on our LinkedIn profile. The data processing is carried out exclusively by LinkedIn. We are not responsible for LinkedIn's data processing.

The legal basis for data processing is Art. 6 para. 1 lit. f) GDPR. Our legitimate interest is to provide information about our company and to interact with interested parties and customers.

6c. Instagram Page

We use Instagram for our marketing purposes. The responsible party for data processing is the Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

The provider of the Instagram platform is Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

When you visit our Instagram profile, Facebook processes your data, such as your user ID, your interests, and your interactions with our content. This data is used to provide Instagram's services and to display personalized ads. Facebook may also share this data with third parties.

To avoid tracking by Instagram, you should log out of your Instagram account before visiting our Instagram page and delete all cookies.

If you use interactive functions on our Instagram page (e.g., commenting, sharing, liking), your data will also be processed. The legal basis is Art. 6 para. 1 lit. b) GDPR if the processing is necessary for the fulfillment of a contract or for the implementation of pre-contractual measures. Otherwise, the legal basis is Art. 6 para. 1 lit. f) GDPR.

For more information on how Facebook handles your data, please see Facebook's data policy: Instagram Data Policy

Instagram and Facebook have committed to comply with the EU-U.S. Data Privacy Framework (DPF) which ensures adequate protection for data transfers to the US. More information can be found here: EU-U.S. Data Privacy Framework

The legal basis for data processing is Art. 6 para. 1 lit. f) GDPR. Our legitimate interest is in the effective presentation of our company and the communication with customers and interested parties.

6d. TikTok Account

We use TikTok for our marketing purposes. The responsible party for data processing is TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland.

When you visit our TikTok profile, TikTok processes your data, such as your user ID, your interests, and your interactions with our content. This data is used to provide TikTok's services and to display personalized ads. TikTok may also share this data with third parties.

For more information on how TikTok handles your data, please see TikTok's privacy policy: TikTok Privacy Policy

The legal basis for data processing is Art. 6 para. 1 lit. f) GDPR. Our legitimate interest is in the effective presentation of our company and the communication with customers and interested parties.

6e. YouTube Profile

We use YouTube for our marketing purposes and to publish videos. The responsible party for data processing is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

When you visit our YouTube profile, Google processes your data, such as your user ID, your interests, and your interactions with our videos. This data is used to provide YouTube's services and to display personalized ads. Google may also share this data with third parties.

The legal basis for data processing is Art. 6 para. 1 lit. f) GDPR. Our legitimate interest is in the effective presentation of our company and the communication with customers and interested parties.

6f. X Account

We use X (formerly Twitter) for our marketing purposes. The responsible party for data processing is Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, Ireland.

When you visit our X profile, X processes your data, such as your user ID, your interests, and your interactions with our content. This data is used to provide X's services and to display personalized ads. X may also share this data with third parties.

For more information on how X handles your data, please see X's privacy policy: X Privacy Policy

The legal basis for data processing is Art. 6 para. 1 lit. f) GDPR. Our legitimate interest is in the effective presentation of our company and the communication with customers and interested parties.

7. Smile-ID

To verify your identity, we use the Smile-ID service from Smile Identity, Inc., 2465 Mission Street, San Francisco, CA 94110, USA. Smile-ID processes your biometric data (e.g., facial scan) to match it with your official identification documents.

The legal basis for the processing of your data is your explicit consent in accordance with Art. 9 para. 2 lit. a) GDPR. The processing is necessary for the identification and verification of your identity.

The data is deleted as soon as it is no longer required for identity verification. Generally, this is the case after successful verification and transfer of the result to us. Smile-ID deletes the data after 30 days.

8. Stripe

We use the payment service provider Stripe to process payments. The responsible party for data processing is Stripe, Inc., 510 Townsend Street, San Francisco, CA 94103, USA. Stripe processes your payment data, such as your credit card information, bank details, and personal data to process the payment. For more information on how Stripe handles your data, please see Stripe's privacy policy: Stripe's Privacy Policy

Stripe stores your payment data securely and encrypts it to protect it from unauthorized access. The data is processed in the USA.

The legal basis for data processing is Art. 6 para. 1 lit. b) GDPR, as the processing is necessary for the fulfillment of the contract (payment processing).

9. Data Subject Rights

Right to object

You have the right to object to the processing of your personal data at any time, for reasons arising from your particular situation, which is based on Art. 6 para. 1 lit. e) or f) GDPR. We will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights, and freedoms or for the establishment, exercise, or defense of legal claims.

You also have the right to object at any time to the processing of your personal data for direct marketing purposes; this also applies to profiling, insofar as it is related to such direct marketing. If you object, your personal data will no longer be processed for these purposes.

Right to access

You have the right to request confirmation as to whether personal data concerning you is being processed; if this is the case, you have a right to access this personal data and to the information specified in Art. 15 GDPR. You can find more information about this in: GDPR Article 15

Right to rectification

You have the right to demand the immediate rectification of inaccurate personal data concerning you and, if necessary, the completion of incomplete personal data. You can find more information about this in: GDPR Article 16

Right to erasure

You have the right to demand that personal data concerning you be deleted without delay if one of the reasons specified in Art. 17 GDPR applies. You can find more information about this in: GDPR Article 17

Right to restriction of processing

You have the right to demand the restriction of processing if one of the conditions specified in Art. 18 GDPR is met. You can find more information about this in: GDPR Article 18

Right to data portability

You have the right to receive the personal data concerning you, which you have provided to us, in a structured, common, and machine-readable format and to transfer this data to another controller.

You can exercise your right to erasure by unsubscribing from our list. To do so, please click on the button below. Unsubscribe

Contact Person:

Below you will find information on what personal data — this includes all data that identifies or makes you identifiable, such as your name, address, email address, or user behavior — we collect during your visit to our site and how it is used. If you have any further questions, you can contact us at info@flexxydrive.com.