If you contact us via the contact form or by email, the data you enter (name, email address, company, message) is transmitted to us via Microsoft Graph and delivered to a mailbox operated by us on Microsoft 365 (Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland).
Content of contact form submissions is not stored in our application database — it is processed solely by email.
Legal basis: Art. 6 (1) (b) GDPR where the enquiry relates to the performance of a contract or pre-contractual measures; otherwise Art. 6 (1) (f) GDPR on the basis of our legitimate interest in responding to enquiries.
Retention: we retain enquiries for as long as needed to handle your request and, where applicable, to comply with statutory retention obligations (typically up to 6 or 10 years under §§ 147 AO, 257 HGB). Beyond that, messages are deleted.
Microsoft may transfer data to the United States. Where this happens, Microsoft relies on the EU-US Data Privacy Framework and the European Commission Standard Contractual Clauses (Art. 46 (2) (c) GDPR) as transfer safeguards.