Skip to Content

Legal

Privacy Policy

Information about the handling of your personal data

1. Data Controller

The data controller within the meaning of the General Data Protection Regulation (GDPR) is:

PRISMO lights GmbH
Wilhelm-Iwan-Ring 9
21035 Hamburg
Germany

Phone: +49 40 XXXXXXXX
 Email: info@prismo-lights.com

Managing Director: Martin Haferstroh

Hosting Provider

This website is hosted by Odoo SA, Chaussée de Namur 40, 1367 Grand-Rosière, Belgium. Odoo SA processes the data required for the operation of the website (e.g. IP addresses, log files) under a data processing agreement pursuant to Art. 28 GDPR. Data processing takes place on servers within the European Union.

More information: https://www.odoo.com/privacy

2. Collection and Storage of Personal Data and the Nature and Purpose of Their Use

a) When visiting the website

When you access our website, the browser used on your device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file. The following information is collected without any action on your part and stored until it is automatically deleted:

  • IP address of the requesting computer
  • Date and time of access
  • Name and URL of the file accessed
  • Website from which access is made (referrer URL)
  • Browser used and, where applicable, the operating system of your computer and the name of your access provider

The aforementioned data is processed by us for the following purposes:

  • Ensuring a smooth connection to the website
  • Ensuring comfortable use of our website
  • Evaluation of system security and stability
  • Other administrative purposes

Server log files are automatically deleted after 14 days.

The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest follows from the purposes listed above for data collection. Under no circumstances do we use the collected data for the purpose of drawing conclusions about you personally.

b) When using our contact form

For questions of any kind, we offer you the opportunity to contact us via a form provided on the website. A valid email address and your name are required so that we know who the enquiry is from and can respond to it. Further information may be provided voluntarily.

Data processing for the purpose of contacting us is carried out in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR on the basis of your voluntarily given consent. The personal data collected by us for the use of the contact form will be deleted after your enquiry has been dealt with, but no later than 6 months after submission.

3. Cookies

We use cookies on our website. These are small files that your browser automatically creates and stores on your device (laptop, tablet, smartphone, etc.) when you visit our site. Cookies do not cause any damage to your device and do not contain viruses, trojans, or other malicious software.

Information is stored in the cookie that relates to the specific device used. However, this does not mean that we directly obtain knowledge of your identity.

The use of cookies serves, on the one hand, to make the use of our website more pleasant for you. We use so-called session cookies to recognise that you have already visited individual pages of our website. These are automatically deleted after leaving our site.

In addition, we also use temporary cookies to optimise user-friendliness, which are stored on your device for a specific defined period. If you visit our site again to use our services, it is automatically recognised that you have already been with us and what entries and settings you have made, so that you do not have to enter them again.

The data processed by cookies is necessary for the purposes mentioned to safeguard our legitimate interests and those of third parties pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR.

Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or a notice always appears before a new cookie is created. However, the complete deactivation of cookies may mean that you cannot use all functions of our website.

4. Integration of Google Maps

On this website, we use the Google Maps service. This enables us to display interactive maps directly on the website and allows you to conveniently use the map function.

By visiting the website, Google receives the information that you have accessed the corresponding subpage of our website. In addition, the data mentioned in section 2a is transmitted. This occurs regardless of whether Google provides a user account through which you are logged in or whether no user account exists.

If you are logged in to Google, your data is directly assigned to your account. If you do not wish the assignment to your Google profile, you must log out before activating the button.

Google stores your data as usage profiles and uses them for the purposes of advertising, market research, and/or the needs-based design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) for the purpose of providing needs-based advertising. You have the right to object to the creation of these user profiles, whereby you must contact Google to exercise this right.

For more information on the purpose and scope of data collection and its processing by Google, please refer to Google's privacy policy: https://policies.google.com/privacy

Transfer to Third Countries

By integrating Google Maps, data is transmitted to Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google LLC is certified under the EU-US Data Privacy Framework, ensuring an adequate level of data protection pursuant to Art. 45 GDPR.

The legal basis for the integration of Google Maps is your consent pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR. The map is only loaded after your active confirmation. You can withdraw your consent at any time by reloading the page.

5. SSL Encryption

This site uses SSL encryption for security reasons and to protect the transmission of confidential content, such as enquiries you send to us as the site operator. You can recognise an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

When SSL encryption is activated, the data you transmit to us cannot be read by third parties.

6. Rights of the Data Subject

You have the right:

  • pursuant to Art. 15 GDPR, to request information about your personal data processed by us. In particular, you may request information about the purposes of processing, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right to lodge a complaint, the origin of your data if it was not collected by us, and about the existence of automated decision-making including profiling and, where applicable, meaningful information about its details;
  • pursuant to Art. 16 GDPR, to request without delay the rectification of inaccurate or completion of your personal data stored by us;
  • pursuant to Art. 17 GDPR, to request the erasure of your personal data stored by us, unless processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise, or defence of legal claims;
  • pursuant to Art. 18 GDPR, to request the restriction of processing of your personal data, insofar as the accuracy of the data is disputed by you, the processing is unlawful but you object to its erasure and we no longer need the data, but you require it for the establishment, exercise, or defence of legal claims, or you have objected to processing pursuant to Art. 21 GDPR;
  • pursuant to Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, commonly used, and machine-readable format, or to request the transfer to another controller (data portability);
  • pursuant to Art. 7 para. 3 GDPR, to withdraw your consent at any time. This means that we may no longer continue the data processing that was based on this consent in the future;
  • pursuant to Art. 77 GDPR, to lodge a complaint with a supervisory authority. As a rule, you may contact the supervisory authority of your usual place of residence or workplace for this purpose.

The supervisory authority responsible for us is:
The Hamburg Commissioner for Data Protection and Freedom of Information
(Der Hamburgische Beauftragte für Datenschutz und Informationsfreiheit)
Ludwig-Erhard-Str. 22, 7th floor
20459 Hamburg, Germany
Phone: +49 40 428 54-4040
Email: mailbox@datenschutz.hamburg.de
Website: https://datenschutz-hamburg.de

7. Right to Object

If your personal data is processed on the basis of legitimate interests pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR, you have the right pursuant to Art. 21 GDPR to object to the processing of your personal data, provided there are grounds arising from your particular situation, or if the objection is directed against direct marketing. In the latter case, you have a general right to object, which is implemented by us without specifying a particular situation.

If you wish to exercise your right of withdrawal or objection, an email to info@prismo-lights.com is sufficient.

8. Currency and Amendments to This Privacy Policy

This privacy policy is currently valid and has the status of March 2026.

Due to the further development of our website and offers, or due to changed legal or regulatory requirements, it may become necessary to amend this privacy policy. The current privacy policy can be accessed and printed at any time on the website.