ZILEX GmbH
Nisterfeld 11
57629 Müschenbach
Germany
Managing Director:
Musa Smakaj
Phone: +49 2662-50044-0
Email: support@zilex.de
We have appointed Dr. Julia Zirfas as our Data Protection Officer.
ZUKUNFT: Datenschutz
External Data Protection Consulting
Email: info@zukunft-datenschutz.d
Personal data are all data that relate directly or indirectly to you as a person. This includes data such as your date of birth, address, IP address, and also texts or images that allow conclusions to be drawn about you as a person. The following privacy policy explains which data we collect and what we use them for. It also explains how and for what purpose this happens.
We may be legally obliged to disclose your data to third parties. We will only comply with such requests within this framework and after careful examination of whether such an obligation actually exists.
Data processing takes place in Germany or in other European countries. In exceptional cases where a transfer to a third country takes place, then only to countries where an adequate level of data protection exists or where we can equally ensure this through appropriate safeguards such as the conclusion of standard contractual clauses or certifications.
We use the following personal data at the start of the contractual relationship (with the account creation at https://www.zilex.de/registration) as well as during the contractual relationship and to fulfill the desired service.
In addition to the company account, further sub-accounts can be created.
We process your personal data to the extent necessary to enable the fulfillment of the contract and the use of services. Furthermore, the data are also processed for billing purposes.
When purchasing on account or based on other payment terms that require credit granting, we may perform a credit check (scoring). For this purpose, we transmit the data you have provided to a credit agency. Based on these data, the probability of a payment default is calculated. If the probability of a payment default is too high, we may, after a renewed manual check, reject the respective payment term.
The use of the configurator primarily serves to simplify processes and provide better and tailored information according to your wishes.
We also used the information (in particular country information) to derive needs and target markets.
We collect, process, and use personal data only insofar as it is necessary to establish, design the content of, or modify the contractual relationship (inventory data). These measures are carried out on the basis of Article 6(1)(b) GDPR, which permits the processing of data for the fulfillment of a contract or pre-contractual measures.
Registration in our configurator is voluntary; you can, of course, also order from us in other ways. The legal basis here is Article 6(1)(a) and (b) GDPR. Customer needs as well as possible target markets are derived on the basis of Art. 6 (1) (f) GDPR.
The credit check is carried out for contract fulfillment (Article 6(1)(b) GDPR) and to prevent payment defaults (legitimate interest according to Article 6(1)(f) GDPR). If consent is given in individual cases, the credit check is carried out on the basis of this consent (Article 6(1)(a) GDPR); consent can be revoked at any time.
The collected customer data are deleted after processing the order, normally 3 years after the termination of the business relationship. If there is a regular business relationship, your data remain stored. Statutory retention periods remain unaffected.
You can initiate the deletion of your account for the ZILEX software directly in your account settings.
When you visit the website, every access and every retrieval of a file stored on this website is logged to enable the use of the offering. The following are logged:
The data are also stored in the log files of our system. A merger or storage of these data together with other personal data of the user does not take place.
The legal basis for the temporary storage of data and log files is a legitimate interest according to Article 6(1)(f) GDPR.
The temporary storage of the IP address by the system is necessary to enable delivery of the website to the user's computer. For this purpose, the user's IP address must be stored for the duration of the session.
Storage in log files is done to ensure the functionality of the website. Additionally, the data help us optimize the website and ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.
The data are deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. In the case of data collection for the provision of the website, this is when the respective session has ended. The data stored in the log files are deleted at the latest after 7 days.
Like most websites, we use cookies on our site. Cookies are text files stored in the internet browser or by the internet browser on the user's computer system. If a user accesses a website, a cookie can be stored on the user's operating system. This cookie contains a characteristic string that allows the browser to be uniquely identified when the website is accessed again. Session cookies store information used during your current site visit. These cookies are automatically deleted when you leave our site.
We also use temporary cookies to optimize user-friendliness, which are stored on your device for a specific defined period. If you visit our site again to use our services, it is automatically recognized that you have already been with us and which inputs and settings you have made so that you do not have to enter them again.
The cookies that are absolutely necessary for the operation of the website and the associated processed personal data are required for the stated purposes to safeguard our legitimate interests according to Article 6(1)(f) GDPR, as well as for the provision of the website according to Article 6(1)(b) GDPR.
The cookies set are technically necessary. Some functions of the website cannot be offered without the use of cookies. For these functions, it is necessary, for example, that the browser is recognized even after a page change.
We do not use the collected user data to create user profiles or to supply visitors to our pages with advertising. The information generated by the cookies about your use of this website is not passed on to third parties.
Cookies are stored on your computer and transmitted from it to our site. Therefore, you have full control over the use of cookies. You have the option to prevent the use of cookies by changing the settings in your internet browser (e.g., Internet Explorer, Mozilla Firefox, Opera, or Safari). However, to fully utilize all the functions of the website, you should allow the use of cookies in the browser and instead reject optional cookies via the settings in the cookie layer.
This website is hosted and provided in cooperation with an external service provider.
In the context of hosting, the following personal data are processed:
Hosting serves to provide the website and thus to fulfill the contract with our potential and existing customers (Article 6(1)(b) GDPR) and is in our legitimate interest of a secure, fast, and efficient provision of our website by a professional provider (Article 6(1)(f) GDPR).
Our hosting provider will only process your data to the extent necessary to fulfill its performance obligations and will follow our instructions regarding these data.
We use the hosting provider IONOS SE, Elgendorfer Straße 57, 56410 Montabaur, within the scope of order processing according to Article 28 GDPR. The server location is Karlsruhe. An appropriate data processing agreement has been concluded with the provider.
Your data are stored by the contractor and the hosting company until the purpose for data processing ceases to exist.
This website uses analysis services from IONOS WebAnalytics, provided by 1&1 IONOS SE, Elgendorfer Straße 57, 56410 Montabaur, Germany. In connection with the performance of analyses by IONOS, it is possible to analyze, for example, the number of visitors and their behavior patterns during the visit, the origin of visitors, the locations of visitors, as well as technical data.
For this purpose, IONOS particularly archives the following data:
According to IONOS, the collected data are completely anonymized so that they cannot be traced back to individuals. IONOS WebAnalytics does not store cookies.
The storage and evaluation of data are based on Article 6(1)(f) GDPR. The website operator has a legitimate interest in the statistical analysis of user behavior to optimize both the operator's web presence.
For more information on data collection and processing by IONOS WebAnalytics, please refer to their privacy policy:
https://www.ionos.de/terms-gtc/index.php?id=6You can contact us via email, contact form on our website, phone, or through our chatbot.
The following data are processed when you contact us:
Which data you provide through other contact methods is determined by you.
The legal basis for processing the data transmitted to us through contacting us as well the use of AI in this context is Article 6(1)(f) GDPR. When voluntarily providing additional data, this is done with your consent (Article 6(1)(a) GDPR).
The data are stored only for the purpose of responding to and contacting you. Providing additional data is optional but is also used only for answering inquiries.
The personal data collected for contact purposes are deleted after your inquiry has been addressed. If follow-up inquiries occur, the data remain stored until the final response. Communication is concluded when it can be inferred from the circumstances that the matter in question has been conclusively clarified.
The AI evaluates where you might need help on our site and on which topics. There is no automated decision-making in this context that affects you. We only offer technical support and an easy contact option with help topics. The AI is operated on our own servers and closed to the outside, so that no data is used for other purposes.
We send information as part of our customer relationship to you via email. These communications are important for you as our customer, and we use the contact data you have provided. This is not the sending of a regular newsletter.
Separately from these contractual communications, we also send a newsletter for which you can sign up.
The legal basis for processing the data for sending contractual information is Article 6(1)(b) GDPR, as the contact is necessary for the execution of our contractual relationship.
We send customer information on our own products by letter, e-mail and SMS on the basis of the legal provisions Art. 6 (1) (f) GDPR and § 7 (3) UWG. This sending is independent of your consent and can be objected to at any time (you can find our contact information at the start of this page).
The legal basis for sending other newsletters is your consent (Article 6(1)(a) GDPR).
The data are used for sending information on contract-relevant topics via email or mail. With your consent, they are also used for sending the newsletter.
Your data remain stored during the ongoing contractual relationship. They are blocked for further contact for the above-mentioned purposes after the termination of our contractual relationship.
You can withdraw your consent to receive the newsletter at any time and unsubscribe. You can declare the withdrawal by clicking on the link provided in every newsletter email or by sending an informal message to the contact data mentioned above.
The dispatch is carried out via the tool HubSpot. Further information can be found below under the section HubSpot CRM.
We use a tool for supporting search engine optimization and SEO analysis on our website. The tool is a service provided by XOVI GmbH, Hohenzollernring 72, 50672 Cologne, Germany.
The legal basis for the use of XOVI is Article 6(1)(f) GDPR.
With XOVI, user flows can be traced, and keyword and link analyses can be performed. This way, we obtain information on how customers find our site to make our websites more user-friendly and target group-oriented.
The full privacy policy of XOVI GmbH can be found here: www.xovi.de/datenschutz/
We also use Google Ads on our site. Google Ads is an online advertising program of Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.
Google Ads allows us to display ads in the Google search engine or on third-party websites when the user enters certain search terms on Google (keyword targeting). It is also possible to place targeted ads based on the user data Google has (e.g., location data and interests; audience targeting). As website operators, we can evaluate these data quantitatively, for example, by analyzing which search terms led to the display of our ads and how many ads led to corresponding clicks
The legal basis for setting the cookie is § 25(1) TDDDG. The use of Google Ads and the associated data processing is based on Article 6(1)(a) GDPR. You can give and withdraw your consent when visiting the site via the cookie layer (re-displayable at any time via the small cookie icon in the lower-left corner of the page)
Google is certified under the Data Privacy Framework. Data transfer is also based on the European Commission's Standard Contractual Clauses (SCC). Details can be found here: https://policies.google.com/privacy/frameworks
We use a service called reCAPTCHA provided by Google in our contact form. With reCAPTCHA a JavaScript element is integrated into the source code, that will load and analyse user behaviour.
From these user actions a so-called Captcha Score can be derived. The Score will be calculated before any input is made to the captcha itself. However, the information that is derived from this score is mainly to verify that you are very likely a human. Please note, this means that Google uses and analyses data even before you click on the "I am not a robot" checkbox.
Types of processed data:
The Captcha shall help to differentiate whether the input is made by a human being or by automated machine processing (e.g. bots). In our case, the main purpose is the prevention of mass sent messages (SPAM). We have a legitimate interest in preventing the misuse of our systems and forms (Art. 6 (1 ) (f) GDPR).
Your IP address and possibly other data will be shared with Google. However, your IP address will be shortened by Google and will not be merged with other data over there. Google also uses your data for its own purposes, in particular, to improve the Captcha service.
Provider of the reCAPTCHA service:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland. Further
information on data protection at Google can be found here:
https://www.google.com/policies/privacy/.
To exercise your right to deletion regarding data stored directly by Google, please contact Google support at https://support.google.com/?hl=de&tid=331578294933. If you intend to give as little information as possible about you or your behavior to Google we suggest logging out of your Google account, as well as to delete any cookies relating to Google services, before visiting the order form or use the reCAPTCHA software.
We occasionally embed videos from www.YouTube.com on our website when appropriate. The content is stored directly on YouTube and embedded on our site
When accessing the relevant videos, the IP address, technical information (browser, operating system, basic device information), and particularly which of our internet pages you have visited are communicated.
Playing video content and providing information in an accessible format, such as in a learning unit or e-learning context.
We show you these videos on the basis of our legitimate interests according to Article 6(1)(f) GDPR. The videos contain details about our products or other useful information for you as a user.
We have embedded our videos in a privacy-friendly way ("extended data protection mode"). This means that information about you is only passed on to YouTube when you watch the video. Only then is a server connection to YouTube established, and a corresponding cookie is set. This cookie is used not to monitor your user behavior but to save your settings, such as playback position and desired volume. Before each video, you will be informed about this again.
Through the extended data protection mode, only cookies are stored that do not contain personally identifiable data. However, if you have an account with YouTube, the company may be able to identify you. You can avoid being recognized by the provider as a registered user by logging out of your account before playing.
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
A general advertising opt-out is possible here: https://adssettings.google.com/authenticated
Since YouTube is a US provider, a transfer to the USA takes place.
The logos (e.g. of Facebook) that refer to social media on our website are only direct links to the individual pages.
We maintain various social media channels. With these pages we want to inform you, as our users and interested parties, about our services and of course also communicate with you. When you interact with us, we use your personal data (username, profile picture, date and time of interaction, your request, other data that you can view for us, or content from user comments or private messages).
Please carefully check what personal data you share with us via social media. If you would like to avoid the personal data you have provided to us being processed in this way, please contact us by other means.
For What Purpose Are the Data Processed?
The processing of your personal data is carried out on the basis of our legitimate interests in effective information and communication with our users and customers, the management and improvement of our business processes (in particular also corresponding advertising measures) as well as the business analysis and further development of services and products (Art. 6 ( 1) (f) GDPR).
Data for the purpose of advertising (display, evaluation, campaigns) and by means of the use of cookies (see separate page Website settings) will only be passed on with your consent (Art. 6 (1) (a) GDPR)
In addition, we will also answer specific inquiries and offer direct social media support. This is usually done within the framework of our contractual relationship with you or, in the case of interested parties, as a pre-contractual measure (Art. 6 (1) (b) GDPR).
Transfer to third countries:Some data is transferred to the USA by the following providers Facebook/Instagram, TikTok, X (formerly Twitter), YouTube and LinkedIn. Since personal data is transferred to countries outside the EU or the EEA, standard contractual clauses have been concluded in addition.
More information about the social media we use:
Facebook and Instagram
Platform provider for both: Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland
Controller: The use of Facebook/Instagram itself, in particular the interactive functions, is your own responsibility and as a registered user within the framework of the user agreements that you have entered into with Facebook.
Insofar as personal data is processed in connection with our Facebook/Instagram page and where Meta alone decides on the purposes and means of processing, Meta is responsible for the data processing.
If you submit personal data to us via our Facebook page or our Instagram profile or are processed by us and we alone decide on the purposes and means of the processing, we are responsible. This applies in particular to all interaction and communication with our company via this channel as well as the evaluation, comparison and measurement of campaigns (provision of campaign reports). Meta processes data on behalf of Zilex (Art. 28 GDPR).
Insofar as data is processed by Meta and us in connection with our Facebook page or Instagram profile and we contribute to deciding on the purposes and means of this processing, we are jointly responsible for the processing of the data (Art. 26 GDPR). This primarily concerns the processing of insights data of our Facebook and Instagram page. Joint responsibility also includes the collection of personal information through certain Meta business tools and their subsequent transfer to Meta Platforms Ireland (in detail, targeting and ad targeting, improving and optimizing our advertising services, and personalized ads).
In order to regulate joint responsibility, an agreement has been concluded with Meta in accordance with Art. 26 GDPR, which can be viewed under https://www.facebook.com/legal/controller_addendum.
Further information: For information on data protection, how Meta processes personal data, including the legal basis on which Meta Platforms Ireland relies and the ways in which it can exercise data subject rights vis-à-vis Facebook, please refer to Meta's Privacy Policy at https://www.facebook.com/about/privacy.
Data subjects can assert their rights under Art. 15-21 GDPR directly against Meta with regard to their data processed by Meta. If you contact us, we will pass on corresponding requests to Facebook. https://www.facebook.com/about/privacy.
Data subjects can assert their rights under Art. 15-21 GDPR directly against Meta with regard to their data processed by Facebook. If you contact us, we will pass on corresponding requests to Meta.
If you would like to object to personalized advertising on Facebook, you can edit this at any time in your settings directly on Facebook or generally under http://www.aboutads.info/choices or http://www.youronlinechoices.com/de/praferenzmanagement/.
TikTok
Platform provider: TikTok Technology Limited, 10 Earlsfort Terrace Dublin, D02 T380, Ireland
Responsible:The use of TikTok itself is your own responsibility and as a registered user within the framework of the user agreements that you have entered into with TikTok yourself
Insofar as personal data is processed in connection with our TikTok account and TikTok alone decides on the purposes and means of processing, TikTok is responsible for data processing. This is the case, for example, with the use of event data for the purpose of security, fraud prevention and development
If you submit personal data to us via our TikTok account or are processed by us and we alone decide on the purposes and means of the processing, we are responsible. This applies in particular to all interaction and communication with our company via this channel as well as evaluation, comparison and measurement of campaigns (provision of campaign reports), customer audiences and lead ads. TikTok processes data on behalf of 1&1 (Art. 28 GDPR).
Insofar as personal data is processed by TikTok and us in connection with our TikTok account and we contribute to deciding on the purposes and means of this processing, we are jointly responsible for the processing of the data (Art. 26 GDPR). This primarily concerns the processing of insights data (event data), for reporting purposes as well as target group creation and ad targeting, improvement and optimization of our advertising services as well as personalized ads on TikTok
In order to regulate joint responsibility, an agreement has been concluded with TikTok in accordance with Art. 26 GDPR, which can be viewed under https://ads.tiktok.com/i18n/official/policy/jurisdiction-specific-terms.
More information:Users can control the use of their data in the settings section of their TikTok profile. Only users who have provided their date of birth and are over 16 years of age (age of consent according to GDPR) can consent to receive personalized advertising.
For information on data protection, how TikTok processes personal data, including the legal basis on which TikTok relies and the options for exercising the rights of data subjects, please refer to TikTok's Germany Privacy Policy at https://www.tiktok.com/legal/privacy-policy?lang=de.
Data subjects can assert their rights under Articles 15-21 GDPR directly against TikTok with regard to their data processed by TikTok. When you reach out to us, we'll pass on requests to TikTok
X (former Twitter)
Platform Provider: X, 1355 Market Street, Suite 900, San Francisco, CA 94103, USA.
Further information on the data collected by Twitter, purposes and all other data protection information can be found in the Twitter privacy policy at: https://x.com/de/privacy.
You can find an opt-out option under https://x.com/settings/account/personalization.
YouTube
Platform providerGoogle LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
Further information on data protection and the personal data collected during the integration at Google/YouTube can be found in the following privacy policy: https://www.google.com/policies/privacy/.
An opt-out is also possible: https://adssettings.google.com/authenticated
Platform providerLinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland.
We also maintain a company profile on LinkedIn. If you are a member there, LinkedIn can assign the access to the content and functions on our profile to your user profile there. For more information, please refer to LinkedIn Ireland's privacy policy at: https://www.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy.
We use HubSpot CRM on this website. The provider is HubSpot Inc., 25 First Street, Cambridge, MA 02141 USA.
HubSpot CRM enables us to manage existing and potential customers and customer contacts, communicate with you, and plan and execute marketing activities according to your interests. HubSpot CRM allows us to capture, sort, and analyze customer interactions via email, social media, or phone across multiple channels. The personal data collected in this way can be evaluated and used for communication with the prospect or for marketing measures (e.g., newsletter dispatch). HubSpot CRM also allows us to record and analyze the user behavior of our contacts on our website.
The use of HubSpot CRM is based on Article 6(1)(f) GDPR. The website operator has a legitimate interest in efficient customer management and communication. If consent has been requested, processing is carried out exclusively on the basis of Article 6(1)(a) GDPR; consent can be revoked at any time
Further information can be found in HubSpot's privacy policy: https://legal.hubspot.com/de/privacy-policy
Data transfer to the USA is based on the European Commission's Standard Contractual Clauses (SCC). In the USA, HubSpot Inc. is also certified under the Data Privacy Framework, ensuring an adequate level of data protection.
We use SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as inquiries you send to us as the site operator. You can recognize an encrypted connection by the change in the browser's address line from "http://" to "https://" and the lock symbol in your browser line. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
If your personal data are processed, you are a data subject in the sense of the GDPR, and you have the following rights:
The supervisory authority responsible for us is:
The State Commissioner for Data Protection and Freedom of Information Rhineland-Palatinate
PO Box 30 40
55020 Mainz
(Additional contact options: https://www.datenschutz.rlp.de/de/themenfelderthemen/kontakt/)
If you have given us consent for the processing of personal data, you have the right to withdraw your declaration at any time with effect for the future.
You can object to data processing that we have based on the legal basis of "legitimate interest" (Article 6(1)(f) GDPR).
You also have the right to object to the processing of personal data for direct marketing purposes (Article 21(2) GDPR). After an objection has been made, your data will no longer be processed for direct marketing purposes (Article 21(3) GDPR).
Please send your withdrawal or objection by email or post to the contact details of ZILEX GmbH mentioned at the beginning.
This privacy policy is currently valid and has the status of November 2024.
Due to the further development of the website or changes in legal or regulatory requirements, it may become necessary to change this privacy policy.
Please ensure that all information is correct and up to date. It is advisable to have the privacy policy reviewed by a legal professional to guarantee full legal compliance.