Alphabet IT Logo
Alphabet IT MANAGED SERVICES
Legal

Privacy policy.

Our privacy policy according to GDPR – transparent and in plain language.

Version April 2023 – with notes on the services used on this website (status 2025).

Contents

  • Introduction and overview
  • Scope
  • Legal bases
  • Contact details of the controller
  • Data retention
  • Rights under GDPR
  • Contact form and mailto processing
  • Web fonts and icons (locally hosted)
  • No external resources
  • Cal.com appointment booking
  • Push notifications
  • Cloud services
  • External online platforms
  • Closing words

Introduction and overview

We've written this privacy policy to explain – according to the GDPR (EU) 2016/679 and applicable national laws – which personal data we as controllers (and the processors we engage, such as providers) process, will process in the future, and what lawful options you have. The terms used should be understood as gender-neutral.

In short: we inform you comprehensively about the data we process about you. This privacy policy aims to describe the key points as simply and transparently as possible.

Scope

This privacy policy applies to all personal data processed by us in the company and to all personal data processed by companies engaged by us (processors). By personal data we mean information in the sense of Art. 4 No. 1 GDPR such as name, email address, and postal address of a person.

The scope covers all our online presences (websites, online stores), social media presences, and email communication as well as mobile apps.

Legal bases

We process your data only when at least one of these conditions applies:

  1. Consent (Article 6(1)(a) GDPR): You have given consent to process data for a specific purpose.
  2. Contract (Article 6(1)(b) GDPR): To fulfill a contract or pre-contractual obligations with you.
  3. Legal obligation (Article 6(1)(c) GDPR): If we are subject to a legal obligation.
  4. Legitimate interests (Article 6(1)(f) GDPR): In case of legitimate interests that do not restrict your fundamental rights.

In Germany the Federal Data Protection Act (BDSG) also applies.

Contact details of the controller

Alphabet IT – Robert Weissbach
Oberheinrieter Straße 49
D-74199 Untergruppenbach, Germany
Email: info@alphabet-it.de

Data retention

We store personal data only as long as absolutely necessary to provide our services. In some cases we are legally required to store certain data even after the original purpose has ceased (e.g. accounting). If you wish to have your data deleted or wish to revoke consent, the data will be deleted as quickly as possible, unless retention is required.

Rights under GDPR

According to Articles 13, 14 GDPR you have the following rights:

  1. Right of access (Art. 15 GDPR)
  2. Right to rectification (Art. 16 GDPR)
  3. Right to erasure – „right to be forgotten" (Art. 17 GDPR)
  4. Right to restriction of processing (Art. 18 GDPR)
  5. Right to data portability (Art. 20 GDPR)
  6. Right to object (Art. 21 GDPR)
  7. Right not to be subject to a decision based solely on automated processing (Art. 22 GDPR)
  8. Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)

The competent supervisory authority for our company is:

State Commissioner for Data Protection and Freedom of Information Baden-Württemberg
Königstraße 10a, 70173 Stuttgart, Germany
Phone: +49 711 / 615541-0
Email: poststelle@lfdi.bwl.de
Web: www.baden-wuerttemberg.datenschutz.de

Contact form and mailto processing

The contact form on our website opens your local email program with a pre-filled message when submitted. The data are not processed on a server – they only leave your browser when you manually send the email from your mail program. Legal basis is Art. 6(1)(a) GDPR (consent) or Art. 6(1)(b) GDPR (pre-contractual measures). We store inquiries only as long as necessary to process them.

Web fonts and icons (locally hosted)

This website uses the fonts „Inter" and „Outfit" as well as the icon library „Lucide". All these resources are hosted locally on our server – no connection is established to Google Fonts, unpkg.com, jsDelivr, or any other third party. Loading fonts or icons therefore does not transmit personal data (in particular IP addresses) to external servers.

No external resources

This website does not load any external resources during normal operation. All stylesheets (Tailwind CSS), JavaScript files, fonts, icons, and images are served from the same server as this website. No content delivery network (CDN) is used. Connections to third parties only occur if you actively click a corresponding link (e.g. the Cal.com booking link, see the section below).

Cal.com appointment booking

For online appointment booking we use Cal.com (Cal.com, Inc., 2261 Market Street #4493, San Francisco, CA 94114, USA). When you book via the Cal.com link, your inputs (name, email, desired time, optional notes) are transmitted to Cal.com. Legal basis: Art. 6(1)(b) GDPR (pre-contractual measure). Cal.com offers EU hosting and signs a data processing agreement with us. Provider's privacy policy: cal.com/privacy.

Push notifications

If we offer push notifications on our website, they are only sent after explicit consent. Legal basis: Art. 6(1)(a) GDPR. You can revoke your consent at any time in your browser settings.

Cloud services

Cloud services provide us with storage and computing power over the internet. We use cloud services particularly to store business data securely and access it from anywhere. Legal basis: Art. 6(1)(f) GDPR (legitimate interest) or Art. 6(1)(a) GDPR (consent).

Microsoft Azure / Microsoft 365 / OneDrive

Service provider: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA. Microsoft processes data also in the USA. As a basis for processing by recipients in third countries Microsoft uses standard contractual clauses according to Art. 46(2) and (3) GDPR. More info: privacy.microsoft.com.

Google Cloud

Service provider: Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland). Google processes data also in the USA. Standard contractual clauses apply here as well. More info: policies.google.com/privacy.

External online platforms

To offer our services or products outside our website we use external platforms. Data processed and stored by the platform serves on one hand to log activities, on the other to optimize the platform's marketing. Which data are processed depends on the platform. Please refer to the privacy policies of the respective platforms.

Closing words

If you have questions on data protection on our website, please don't hesitate to contact us. We take the protection of your personal data seriously and will respond to inquiries as transparently as possible.

All texts are protected by copyright.