Privacy policy

We attach great importance to data protection. The collection and processing of your personal data is carried out in compliance with the applicable data protection regulations, in particular the EU General Data Protection Regulation (GDPR). We collect and process your personal data in order to be able to offer you our website and our services. In accordance with Art. 13 GDPR, we describe in this declaration which data we use, in what way, for what purpose and to what extent, and what options and rights you have in connection with the use of your personal data.

1. responsible body

ENA2COM GmbH, Adolph-Kolping-Straße 10, 03046 Cottbus, represented by the managing director Alexander Iliuk, is responsible for compliance with data protection on our website. We have not appointed a data protection officer.

We are at your disposal for data protection inquiries. You have the following contact options:

E-mail: iliuk@enacom.de

2. data collection on our website

Server log files

When you visit our website, information is automatically transmitted by your browser to the server of our website. This information is only stored for a short time in a log file and is automatically deleted.

This includes the following data:

  • Your IP address
  • Date and time of the call
  • Name and URL of the file you have accessed
  • Website from which the call is made (referrer URL)
  • Information about the browser and operating system you are using
  • Name of your access provider

This data is used to ensure a smooth connection and convenient use of our website and to evaluate system security and stability.

The legal basis for data processing results from Art. 6 para. 1 sentence 1 lit. f GDPR, as we have a legitimate interest in data collection for the aforementioned purposes. In addition, a legal basis also arises from Art. 6 para. 1 lit. b GDPR for the processing of data for the fulfillment of a contract or pre-contractual measures.

The data will not be used to draw conclusions about your person.

Contact form / Communication by e-mail

You will find a contact form on our website. We would like to give our customers the opportunity to contact us in an uncomplicated way. You can also write to us directly by e-mail. If you would like to use our contact form, you must enter your name and a valid e-mail address. If you write to us by e-mail, we will receive your e-mail address. All other data provided is optional. The data is collected for the purpose of initiating or implementing contractual relationships in accordance with Art. 6 para. 1 lit. b GDPR. If your request is not aimed at initiating or executing a contract, we still have a legitimate interest in processing and responding to your request. The use of personal data for this purpose is therefore based on Art. 6 para. 1 lit. f GDPR.

We use the data you provide exclusively to process your request. If this relates to the initiation or execution of business, we will delete your data in accordance with our company-internal deletion periods.

If your request relates to another purpose, we will delete your data after processing, unless there is another legal basis for data storage.

Processing of customer and contract data

For the purpose of initiating business, concluding a contract and fulfilling the contract, we use your personal data required for this purpose in accordance with Art. 6 para. 1 lit. b GDPR.

Data is only transferred to third parties if this is necessary for contractual fulfillment, e.g. if a company has been commissioned for production or transport services or a credit institution for payment processing.

This personal data will be deleted after expiry of the statutory warranty periods or after the end of statutory retention periods.

Applications

We offer potential employees the opportunity to apply to us online. For this purpose, we use your necessary personal data in accordance with Art. 6 para. 1 lit. b GDPR.

Data will only be transferred to third parties if and insofar as this is necessary for the fulfillment of the contract. This personal data will be deleted after 6 months if no contractual relationship arises.

Hosting of the website via IONOS

Our website is hosted by IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, Germany (“IONOS”). The provider’s servers are located in Germany or within the European Union.

IONOS is used on the basis of our legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR in the secure, stable and efficient provision of our website. Technical connection data such as IP address, date and time of access, browser information and requested page content are processed and stored in server log files.

If necessary, there is a contract with IONOS for order processing in accordance with Art. 28 GDPR. Further information on data protection at IONOS can be found at: https://www.ionos.de/terms-gtc/datenschutzerklaerung/

Cookies

Our website contains cookies. Cookies are small text files that are stored on your end device. They help us to make it easier for you to navigate through our website and enable the website to be displayed correctly. They are intended to support the user-friendliness of the website and are of course completely harmless for your end device.

For example, we use so-called “session cookies”. These cookies are automatically deleted after your visit. We also use cookies that are stored on your end device, e.g. to make it easier for you to use our website on a subsequent visit and to recognize your browser on your next visit (“permanent cookies”). You can of course delete these cookies manually at any time.

We also use cookies to statistically record and evaluate the use of our website. This is done for the purpose of further optimizing our offer for you. We also use cookies for pseudonymized reach measurement.

We use cookies that are absolutely necessary for the operation of our website to safeguard our legitimate interests in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR. We use cookies that are necessary for the performance of contracts on the basis of Art. 6 para. 1 sentence 1 lit. b GDPR. These are automatically deleted after a defined period of time.

The use of cookies that are not required is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR. Your consent can be revoked at any time with immediate effect. To do this, go to the settings of the browser you are using and select “Delete browser data”, you must have selected “Cookies and other website data” and then remove them.

Integration of Google Maps

We use the map service Google Maps on our website to display geographical information in a user-friendly way. The provider for users in the EU is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

The map function is only activated if you have previously given your consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR. A connection to the Google servers is established and your IP address and, if applicable, location data are transmitted. In addition, a cookie with a duration of up to one year is set.

The processing takes place primarily within the European Union. However, a transfer to Google LLC in the USA cannot be ruled out. This takes place on the basis of the adequacy decision pursuant to Art. 45 GDPR, as Google LLC is certified under the EU-US Data Privacy Framework.

Further information on data processing by Google can be found at https://policies.google.com/privacy and on the use of cookies at https://policies.google.com/technologies/cookies. You can revoke your consent at any time via the Cookie Consent Manager.

Google Ajax & jQuery libraries, Google web fonts (stored locally)

We use Google Ajax & jQuery libraries and Google web fonts from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR for the purpose of a customer-friendly presentation of our website. Since the Ajax & jQuery libraries and web fonts are stored locally on our server, no data is transmitted to Google.

Xing

Due to our legitimate interest in increasing our level of awareness (within the meaning of Art. 6 para. 1 lit. f GDPR), we integrate the functions of the XING network of XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany, on our website.

A connection to Xing’s servers is established each time you visit our site in which the Xing functions are integrated. Personal data is not stored in the process. In particular, no IP addresses are transmitted to Xing. Further information can be found in Xing’s privacy policy at: https://www.xing.com/app/share?op=data_protection

LinkedIn

Functions of the social network LinkedIn are integrated on our website. The provider for users from the EU is LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. The integration takes place on the basis of your consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.

As soon as you activate the plugin, a direct connection is established between your browser and the LinkedIn servers. LinkedIn is informed that you have visited our website. If you are logged in to LinkedIn during this time, this visit can be assigned to your user account.

LinkedIn generally processes the data within the European Union. Transmission to LinkedIn Corporation servers in the USA cannot be ruled out. This takes place on the basis of the adequacy decision of the European Commission pursuant to Art. 45 GDPR, as LinkedIn is certified under the EU-US Data Privacy Framework.

Further information on data processing by LinkedIn can be found at https://www.linkedin.com/legal/privacy-policy. You can revoke your consent at any time via our Cookie Consent Manager.

3. social media channels

We use the social networks Xing and LinkedIn. Insofar as personal data is collected here, e.g. through direct messages, this is done for the purpose of initiating or implementing contractual relationships in accordance with Art. 6 para. 1 lit. b GDPR.

Even if your request is not aimed at initiating or executing a contract, we still have a legitimate interest in processing and responding to your request. Therefore, the use of personal data for this purpose is based on Art. 6 para. 1 lit. f GDPR.

We use the data you provide exclusively to process your request. If your inquiry relates to the initiation or execution of business, we will delete your data in accordance with our internally defined deletion periods. If your inquiry relates to another purpose, we will delete your data after processing, unless there is another legal basis for data storage.

4. disclosure of data

Your personal data will generally not be transmitted to third parties. However, data may be transmitted in exceptional cases for the following reasons:

  • insofar as you have given your express consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR
  • insofar as the disclosure is necessary pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR and there is no overriding interest worthy of protection in not disclosing your data
  • insofar as we are legally obliged to pass on the data in accordance with Art. 6 para. 1 sentence 1 lit. c GDPR
  • to the extent that disclosure is permissible and necessary for the processing of contractual relationships with you in accordance with Art. 6 para. 1 sentence 1 lit. b GDPR

If your data is processed, e.g. in the case of external hosting, by third parties commissioned by us, this is done on the basis of Art. 28 GDPR by means of an order processing contract.

5. transfers to third countries

If we process data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) or in the context of the use of third-party services or disclosure or transfer of data to third parties, this will only take place if it is done to fulfill our (pre)contractual obligations on the basis of your consent, on the basis of a legal obligation or on the basis of our legitimate interests.

Subject to legal or contractual authorizations, we process or have the data processed in a third country only if the special requirements of Art. 44 et seq. GDPR are met. This means, for example, that the processing takes place on the basis of special guarantees, such as the officially recognized determination of a level of data protection corresponding to the EU or compliance with officially recognized special contractual obligations (so-called “standard contractual clauses”).

Your data collected on this website will be transmitted to the USA by Google and LinkedIn if you click on the corresponding plugins on the page. By clicking on the plugins, you consent to your data being processed in the USA in accordance with Art. 49 para. 1 sentence 1 lit. a GDPR.

6. rights of data subjects

Right to information Art. 15 GDPR

You have the right to request confirmation from us as to whether we are processing your personal data. If this is the case, you can request information about this personal data and about the following information:

  • the purposes of processing
  • the categories of personal data that are processed
  • the recipients or categories of recipient to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organizations
  • where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period
  • the existence of a right to rectification or erasure of personal data concerning you, a right to restriction of processing or a right to object to such processing
  • the existence of a right to lodge a complaint with a supervisory authority
  • if the personal data is not collected from you, all available information about the origin of the data
  • the existence of automated decision-making, including profiling, referred to in Article 22(1) and (4) GDPR and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject

Right to rectification Art. 16 GDPR

You can immediately request the correction of incorrect or the completion of your personal data stored by us.

Right to erasure (right to be forgotten) Art. 17 GDPR

You can request the deletion of your data stored by us, insofar as:

  • the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed
  • you withdraw your consent and there is no other legal basis for the processing
  • you object to the processing pursuant to Article 21(1) GDPR and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Article 21(2) GDPR
  • the personal data have been processed unlawfully
  • the deletion is necessary to fulfill a legal obligation
  • the personal data have been collected in relation to the offer of information society services referred to in Article 8(1) GDPR

We are obliged to delete the data if the requirements are met, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims.

Right to restriction of processing Art. 18 GDPR

You have the right to demand that we restrict processing insofar as:

  • the accuracy of the personal data is contested by you, but only for the period enabling us to verify the accuracy of the data
  • the processing is unlawful and you do not want it to be deleted immediately, but instead request that its use be restricted
  • we no longer need the personal data for the purposes of the processing, but they are required by you for the establishment, exercise or defense of legal claims
  • you have objected to processing pursuant to Article 21(1) GDPR pending the verification whether our legitimate grounds override yours

Insofar as processing is restricted, we may only process your personal data – apart from storing it – with your consent or for the establishment, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State. You will be informed again before the restriction is lifted.

Right to data portability Art. 20 GDPR

You have the right to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request that it be transmitted to another controller.

Right to object Art. 21 GDPR

In accordance with Art. 21 GDPR, you have the right to object to the processing of your personal data if it is processed on the basis of our legitimate interest in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR. However, this only applies if there are reasons arising from your particular situation or if the objection is directed against direct advertising.

Right of withdrawal Art. 7 para. 3 GDPR

You have the right to revoke your consent to us at any time in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR. This revocation applies exclusively to future use.

Right to lodge a complaint with supervisory authorities

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of our registered office, if you consider that the processing of personal data relating to you infringes the General Data Protection Regulation.

If you wish to make use of your rights as a data subject, you can also send an e-mail to the above e-mail address.

7. data security

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content. You can recognize this by the fact that the address line of the browser changes from “http://” to “https://” and a lock symbol appears in the browser line. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

In addition, we have taken precautions in the form of technical and organizational measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by third parties.

8. topicality and amendment of this privacy policy

This privacy policy is currently valid and is dated September 23, 2025. In order to ensure that our privacy policy always complies with the current legal requirements, we reserve the right to make changes at any time. This also applies in the event that the privacy policy has to be adapted due to new or revised services. The new privacy policy will then apply the next time you visit our website.

9. complaints and warnings

If you feel that your rights have been violated or that you have been disadvantaged in any other way, please let us know yourself. You will then receive a personal, individual response. As part of your duty to minimize damages, we would like to point out that we will not cover the costs of a lawyer you have instructed out of court without first contacting us. It is expressly not our intention that you instruct a lawyer to issue a cease and desist letter and/or a cease and desist declaration subject to penalty.

Consequently, a presumed will cannot be taken into account.

This privacy policy was created by lawyer Martin Jedwillat: www.advomare.de