Privacy Policy

We, hosting.de GmbH, are pleased about your interest in our website and want to make your browsing experience on our website as pleasant as possible. The protection of your privacy is very important to us. That is why we inform you below about the processing of your personal data as well as your rights in this regard.

1. Responsible body / data protection officer

For the processing of your personal data on this website, we are “responsible” within the meaning of Art. 4 point 7 of the GDPR.

You can contact us as follows:

hosting.de GmbH
Franzstr. 51
52064 Aix-la-Chapelle
Allemagne

Legal representative: Oliver Dick, Lutz Berneke

You can reach our data protection officer by email at the following address: confidentialite@hosting.fr

This privacy information applies to the website that we operate and which is accessible at hosting.fr. If offers from other providers (“third-party offers”) are accessible from our Internet offering, our privacy information does not apply to these third-party offers. In this case, we are also not responsible for the processing of your personal data in connection with these third-party offers within the meaning of Art. 4 point 7 of the GDPR.

2. Recording of access data in server log files

You can visit our website without providing any information about yourself. We only record the following access data in server log files:

• Type and version of the browser
• Operating system used
• Referrer URL (the previously visited page)
• Hostname of the accessing computer (IP address)
• Time of the server request

This data is evaluated exclusively to ensure the proper technical functioning of the website.

The IP address can be personal data, as it is possible, under certain conditions, to identify the owner of the Internet access used by requesting information from the relevant Internet service provider.

In addition to the aforementioned purposes, we also evaluate the IP address in the event of attacks on our Internet infrastructure. In these cases, we have a legitimate interest within the meaning of Art. 6 paragraph 1 point f) of the GDPR in processing the IP address. This legitimate interest arises from the need to counter the attack on the Internet infrastructure, to determine the origin of the attack in order to be able to pursue criminal and civil proceedings against the responsible person, as well as to effectively prevent other attacks and to be able to operate the website without disruption.

The IP address is deleted when we can exclude that an attack has occurred on our Internet infrastructure from this address. This deletion usually occurs after eight (8) days.

3. Processing of data for handling requests

We collect the personal data that you voluntarily transmit to us when making contact, particularly by email.

This data is only processed for this correspondence with you and for the purpose for which you respectively transmitted the data to us within the framework of this communication, particularly for processing your requests or for contacting you at your request. In this case, the processing of personal data is carried out with your consent and is then carried out in accordance with Article 6, paragraph 1, point a) of the GDPR.

Once your request has been fully satisfied, your data will be blocked for any further use and deleted upon expiration of any applicable retention periods, unless you have expressly consented to further use of your data or we have the right to retain it in another manner.

4. Processing of data for the conclusion and execution of the contract

When you place an order on the website, we collect the following personal data about you:

• First name and last name
• Address (street, postal code, city, country)
• Email address
• Date of birth to verify that you are at least 16 years old.

The aforementioned data is absolutely necessary for the conclusion and execution of the contract with you, which authorizes us to process it in accordance with Article 6, paragraph 1, point b) of the GDPR.

The additional indication of your telephone number and fax number is possible on a voluntary basis.

We use the aforementioned data for contract conclusion, contract execution and processing of your requests.

In addition, our system records:

• Hostname of the computer accessing the site (IP address)
• Time of the server request
• Optionally, a Referrer-ID for the attribution of resellers

This data is collected for evidence purposes regarding the conclusion of the contract with you as well as to prevent and detect any misuse of our website and our services. We process this data on the basis of a legitimate interest based on the aforementioned purposes of use, in accordance with Article 6, paragraph 1, point f) of the GDPR.

We retain the data for as long as you are a customer of hosting.de GmbH. Once the contract has been fully executed, your data will be blocked for any further use and deleted after the expiration of any existing legal retention periods, unless you have expressly consented to further use of your data or we are authorized by law to use your data beyond this framework.

5. Processing of data in the context of contract execution – data storage

To the extent that you entrust us with a service including data storage (particularly hosting), we store the data and files that you transmit to us in this context, which may contain personal data. In this case, storage is carried out in accordance with Article 6, paragraph 1, point b) of the GDPR within the framework of the execution of the contract concluded with you.

We delete this data when you request us to do so and, in any case, at the end of the contract concluded with you for this service.

6. Transmission of data to third parties

In the context of contract execution, we transmit your data to the following categories of recipients:

• Subcontractors, particularly domain assignment and SSL certificate services

Transmission of data to the aforementioned recipients is absolutely necessary for the provision of our services, which authorizes us to proceed with this processing in accordance with Art. 6, para. 1 point b) of the GDPR.

To the extent that the aforementioned recipients are located abroad, a transfer of data to a country located outside the EU or the European Economic Area may be considered. This transfer only takes place if it is necessary for the execution of the contract concluded with you, so that this is also authorized in accordance with Article 49, paragraph 1, b) of the GDPR without appropriate safeguards for establishing an adequate level of data protection at the recipient.

In addition, in the execution of our contractual services, we use the following categories of service providers to whom we also transmit personal data:

• Payment service providers

  Depending on the payment method you choose during the ordering process, we transmit, for payment processing, the payment data collected for this purpose to the bank responsible for processing and, if applicable, to the payment service provider we have commissioned or the selected payment service. The selected payment service providers sometimes collect this data themselves, to the extent that you create an account with them. In this case, you must register with the payment service provider with your access data during the ordering process. In this case, the privacy policy of the relevant provider applies.

• Related companies

  As a sister company, keenlogics GmbH, Franzstr. 51, 52064 Aachen, provides all development services related to the management panels used and also provides support.

  The company http.net Internet GmbH, Franzstr. 51, 52064 Aachen, provides as a sister company all services related to domains and SSL certificates.

• Subcontractors

  For sending documents (e.g. invoices or reminders), we transmit personal data to LetterXpress A&O Fischer GmbH & Co. KG, Maybachstraße 9, 21423 Winsen.

  Our debt collection cases are handled by ETI experts GmbH, Amsterdamer Straße 133 b, 50735 Cologne.

In the aforementioned cases, we respectively have a legitimate interest in transmitting your data to the third party (Article 6, paragraph 1, point f) of the GDPR), which arises from the fact that we absolutely need these services to execute the contract, but we do not provide them ourselves to the extent strictly necessary for contract execution.

7. Other processing based on legitimate interest

To the extent necessary, we process your data beyond the actual execution of a contract concluded with you or consent you have given, in order to preserve legitimate interests on our part or of third parties, unless it results from a case-by-case balancing that your legitimate fundamental rights and freedoms, which require the protection of personal data, prevail (cf. Art. 6, para. 1, f) of the GDPR).

The following data processing is carried out on the basis of our legitimate interest in ensuring that our website and the services offered there are only used in accordance with the law and contractual provisions and that users fulfill their contractual obligations:

• Consultation and exchange of data with credit rating agencies (e.g. SCHUFA) to determine solvency or default risks (cf. point 9);
• Exercise of legal rights and defense in legal disputes;
• Ensuring IT security and operation;
• Prevention of crimes and their investigation.

The following data processing is carried out on the basis of our legitimate interest in designing and promoting our service and product offering according to customer and needs:

• Evaluation of data for business management and development of services and products.
• Verification and optimization of needs analysis procedures and direct customer approach;
• Advertising or market and opinion research, to the extent that you have not objected to the use of your data;
• Use and evaluation of cookies (cf. point 10)

7.1 Defense against fraud

We may also use your data to defend ourselves against fraud. We particularly check whether an order is typical or atypical, which we then examine more precisely or even refuse if necessary. We have a legitimate interest in this process. The legal basis for processing is Article 6, paragraph 1, point f) of the GDPR.

8. Consent

Processing of your personal data beyond what is described above is in principle only carried out if you have given us your explicit consent and we are thus authorized to process your personal data in accordance with Article 6, paragraph 1, point a) of the GDPR. To the extent that you have the possibility of giving such explicit consent, we will indicate to you each time the purpose for which the data will be processed in case of consent and the duration for which we will retain this personal data.

9. Creditscore check and scoring

To the extent that we intervene in advance, for example for purchase on invoice, we reserve the right, in order to preserve our legitimate interests in accordance with Article 6, paragraph 1, point f) of the GDPR, to request information regarding identity and creditworthiness from service providers specialized in this field (commercial information agencies). For this purpose, we transmit your personal data necessary for a credit check to the following company:

SCHUFA Holding AG
Kormoranweg 5
65201 Wiesbaden

The creditworthiness information may contain probability values (score values) which are calculated on the basis of scientifically recognized mathematical and statistical procedures and in the calculation of which address data is particularly integrated. We use the information obtained about the statistical probability of a payment default to make a weighted decision on the establishment, execution or termination of the contractual relationship. Your legitimate interests are taken into account in accordance with the legal provisions.

10. Use of cookies

In order to improve the user experience on our website and to enable the use of certain functions, we use cookies on various pages. These are small text files that are stored on your device. Some of the cookies we use are deleted at the end of the browsing session, i.e. after closing your browser (so-called session cookies). Other cookies remain on your device and allow us to recognize your browser on your next visit (persistent cookies). You can configure your browser to be informed about the installation of cookies and to decide individually on their acceptance or to exclude the acceptance of cookies in certain cases or in general. If you do not accept cookies, the functionality of our website may be limited.

11. Use of web analytics software

On this website, data is collected and processed using web analytics software in our data center. We create anonymous visitor profiles for this purpose, as we automatically delete the last two blocks of your IP. In principle, the analytics software uses, in addition to the anonymized IP, the server log data, see point 2, except that we retain this data here for two years for the purpose of improving our website.

In addition, we use TWIPLA, a website analytics service that tracks traffic on our site and collects general information about visitors. It uses this data to generate statistics that help optimize our visitors’ experience. It is important to note that we do not use cookies for this process. As a website operator using TWIPLA for reach measurement, we may process data relating to your device and its characteristics, technical details of the website visit, number of pages visited and visitor behavior patterns. However, this technology does not use the data to identify specific individuals or associate them with other personal information. Depending on where you are located, TWIPLA may not collect information about your device due to technical settings.

12. Your rights

With regard to the processing of your personal data by our company, you have the following rights:

1. Revocation of given consents

   You can revoke any consent you have given us at any time, with effect for the future.

2. Information

   You have a right to information about the personal data recorded about you. In addition, you have the right to receive the information listed in Article 15 of the GDPR.

3. Rectification and deletion

   You also have the right to have inaccurate personal data rectified in accordance with Article 16 of the GDPR and to request the deletion of your personal data when the conditions of Article 17 of the GDPR are met.

4. Limitation of processing

   You can request the limitation of the processing of your personal data under the conditions provided for in Article 18 of the GDPR.

5. Objection

   In accordance with Article 21 of the GDPR, you have the right to object at any time, for reasons relating to your particular situation, to the processing of your personal data, to the extent that this is carried out on the basis of Article 6, paragraph 1, points e) or f) of the GDPR. In the event of such an objection, we will no longer process this data, unless we can demonstrate that there are legitimate and compelling reasons for the processing that override your interests, rights and freedoms, or that the processing serves to assert, exercise or defend legal claims.

6. Data return and data transmission

   In addition, you have the right to receive the personal data concerning you that you have provided to us in a structured, commonly used and machine-readable format. You also have the right, to the extent that this is technically possible, that we transmit this data to another controller at your instruction. This right to portability only applies to personal data whose processing is based on consent in accordance with Article 6, paragraph 1, point a) of the GDPR or on a contract in accordance with Article 6, paragraph 1, point b) of the GDPR and whose processing is carried out using automated procedures. The right to transmit data to another controller is excluded if this should infringe the rights and freedoms of other persons (e.g. personal data of third parties, our commercial and industrial secrets or copyrights).

The exercise of all rights mentioned in this point 12 is, in principle, free of charge.

However, in the case of manifestly unfounded requests or - particularly in the case of frequent repetition - excessive requests, we may, in accordance with Article 12, paragraph 5 of the GDPR, either require reasonable remuneration taking into account the administrative costs associated with the information or communication or the implementation of the requested measure, or refuse to act on the basis of the request.

To exercise your rights, please contact our data protection officer mentioned above.

You will also obtain further information on data protection there.

13. Obligation to provide data

For the data which, in accordance with point 4 above, are indicated as being absolutely necessary for the conclusion and execution of the contract with you, you must absolutely provide them if you wish to benefit from our services. In the absence of this information, the conclusion of a contract with you is impossible. Furthermore, you have no obligation to provide your personal data.

14. Right of appeal

If you believe that we are not properly fulfilling our data protection obligations, you can contact the data protection supervisory authorities at any time. You can contact the competent regional data protection officer for us as follows:

Commissioner for Data Protection and Freedom of Information of the State of North Rhine-Westphalia
Postfach 20 04 44
40102 Düsseldorf
Germany

• Tel.: +49 211-38424-0
• Fax: +49 211-38424-10
• E-Mail: poststelle@ldi.nrw.de

15. Automated decision-making on a case-by-case basis

We do not use automated processing procedures to make a decision regarding the establishment and execution of the business relationship (Art. 22 GDPR). If we were to use these procedures in particular cases, we would inform you separately, to the extent that the law requires it.

16. Update of this privacy information

An update of this privacy information may be necessary from time to time, for example due to new legal or administrative provisions as well as new offers on our website. We will then inform you about this at this location. As a rule, we recommend that you regularly consult this privacy information to check whether changes have been made to it. You will recognize whether changes have been made, among other things, by the fact that the status indicated at the very bottom of this document has been updated.

17. Printing and saving of this privacy notice

You can print and save this privacy notice directly, for example using the print or save function of your browser.

Last updated: May 2025