Privacy Policy

Logicc GmbH ("Logicc," "we," or "us") processes your personal data in various situations. The legal basis for this is derived in particular from the General Data Protection Regulation (GDPR), the Telecommunications Digital Services Data Protection Act (TDDDG), and the Federal Data Protection Act (BDSG).

This privacy policy informs you in accordance with Art. 12 to 14 GDPR about how we process your personal data insofar as we act as the controller in accordance with Art. 4 (7) GDPR. In particular, it explains what data we collect, for what purposes we use it, and on what legal basis the processing takes place—in particular for the following data processing processes:

  • Visiting our website www.logicc.com (see sections 2.1 and 2.2),
  • Contacting us via the website contact form (see section 2.3),
  • Sending newsletters (see section 2.4),
  • Company presence on social networks (see section 2.5),
  • Ordering, concluding contracts, and providing our services, as well as handling business relationships (see section 2.6)
  • Use of our platform and AI applications (see section 2.7).

This privacy policy also contains information about the categories of recipients of personal data (see section 3), data transfers to third countries (see section 4), the duration of data processing (see section 5), your rights as a data subject (see sections 6 and 7), the obligation to provide personal data (see section 8), and automated decision-making (see section 9).

1. Controller

According to the GDPR, the controller is the natural or legal person who, alone or jointly with others, determines the purposes and means of the processing of personal data (Art. 4 No. 7 GDPR). The controller for the data processing operations covered by this privacy policy is:

Logicc GmbH

Kattrepelsbrücke 1
20095 Hamburg
Email: kontakt@logicc.com

If you have any questions about our privacy policy, you can contact our external data protection officer at any time. The contact details are provided below:

KaMUX GmbH & Co. KG Herzogstraße 25
D-66953 Primasens
Email: info@kamux.eu

2. Purposes and legal basis for data processing

2.1 Visiting our website

When you visit our website, various personal data is processed depending on the type and scope of use. Personal data is information that relates to an identified or identifiable natural person; a natural person is considered identifiable if they can be identified directly or indirectly (e.g., by assigning an online identifier).

For the purpose of the technical provision of the website, it is necessary for us to process certain information automatically transmitted by your browser so that our website can be displayed in your browser and you can use the website. This information (the "access data") is automatically collected each time you visit our website and automatically stored in so-called server log files. Access data may include, among other things:

  • Browser type and browser version
  • Device ID and operating system used
  • IP address of the requesting device
  • Website from which access is made (origin or referrer URL)
  • Date, time, and duration of access

The processing of access data is technically necessary to provide a functional website and for system security. Beyond the purposes mentioned above, we use server log files exclusively for the needs-based design and optimization of our website, purely for statistical purposes and without any conclusions being drawn about your person. This data is not merged with other data sources, nor is it evaluated for marketing purposes, unless you otherwise consent to its use (see also section 2.2).

If you visit our website to find out about our range of products and services or to use them on a contractual basis, the basis for the temporary storage of access data is Art. 6 (1) (b) GDPR, which permits the processing of data for the performance of a contract or for the implementation of pre-contractual measures.

In addition, Art. 6 (1) (f) GDPR serves as the legal basis for the temporary processing of access data in this case. Our legitimate interests here are to provide you with a technically functional and user-friendly website and to ensure the security of our systems. You have the right to object to processing for the protection of legitimate interests (see section 7).

The storage period and deletion of your access data are governed by section 5 of this privacy policy. Your IP address is stored for a maximum of 7 days for IT security purposes.

2.2 Use of cookies and similar tracking technologies

We use cookies and similar tracking technologies, such as tracking pixels or fingerprinting technologies (collectively referred to as "tracking"), on our website. Depending on the purpose, tracking serves to make our offers more user-friendly, effective, and secure, as well as to personalize content and advertising. Tracking enables us to analyze how and, if applicable, which visitors use our websites. This allows us to tailor the website content to individual needs, for example by measuring the effectiveness of a particular ad and placing it in line with individual thematic interests.

a) Functional tracking:

The legal basis for accessing your device, collecting information, and further processing any personal data in these cases is Section 25 (2) No. 2 TDDDG and Art. 6 (1) (f) or (b) GDPR. The absolutely necessary tracking helps us to make a website technically usable and secure by enabling basic functions such as page navigation, login data, watch lists, or access to protected areas of the website. This also includes storing your selection in consent management, in particular whether and to what extent you want consent-based tracking. Without this type of tracking, the website cannot function properly. It is therefore necessary in order to implement the functions you have selected or to protect our legitimate interests in the functionality, security, and efficiency of our website.

b) Tracking for marketing, personalization, or analytics purposes:

Your voluntary consent is required for all other purposes mentioned; the legal basis for this is Section 25 (1) TDDDG and Art. 6 (1) (a) GDPR. You can give your consent for all purposes collectively by selecting "Accept all." In consent management (Manage Consent Preferences by Category), you can also individually specify the purposes for which tracking may be carried out by selecting the individual category via "Save settings". You can consent to tracking in order to display interest-based advertising and evaluate your user behavior for this purpose (marketing), to automatically take your browser preferences into account on future visits (personalization), and/or to understand your interests in order to optimize our website and services with specific content (analytics).

Once you have given your consent, you can revoke it at any time with future effect. To do so, click on "Cookie settings" at the bottom of the website and either select "Reject all" or deactivate individual categories. You can also reject tracking from the outset by making the same selection, so that only functional tracking takes place.

Detailed information on the individual providers of tracking technologies, including storage duration and deletion, can be found below.

c) List of individual tracking technologies

2.3 Contact via website contact form

Our website features a contact form (https://www.logicc.com/kontakt) that we provide to enable you to contact us quickly and easily by electronic means. If you send us inquiries via the contact form, your inquiries, including the contact details you provide there, will be stored and processed by us for the purpose of processing and responding to your inquiry and in the event of follow-up questions. This also applies to your IP address and the date and time you sent your message to us. We do not pass this data on to third parties unless this is necessary in the context of processing and responding to your contact request or you have given us your consent (Art. 6 (1) (a) GDPR).

If you contact us within the framework of an existing contractual relationship, submit support requests, or contact us in advance for information about our product and service offerings, the data and information you provide will be processed for the purpose of processing and responding to your contact request on the basis of Art. 6 (1) (b) GDPR.

Otherwise, we will process the data to protect our legitimate interests pursuant to Art. 6 (1) (f) GDPR in providing a contact form as a company and for appropriate responses to customer/contact requests.

You are not obliged to contact us via the contact form or to provide personal data. If you do not provide your personal data, we may not be able to process your request. Otherwise, there will be no consequences for you.

The storage period and deletion of your corresponding data are governed by Section 5 of this privacy policy.

2.4 Sending newsletters

a) Newsletter subscription

If you have given your consent, we will use your email address to send you our newsletter on a regular basis. To receive the newsletter, you only need to provide your email address; further information is voluntary. We use the so-called double opt-in procedure: After you register, you will receive an email asking you to confirm the newsletter subscription. Without this confirmation, your registration will not be completed and your request will be automatically deleted. If you would like to receive our newsletter at a later date, you will need to re-register and confirm your subscription. As proof of your registration and to clarify possible cases of misuse, we store your IP address, the time of registration and confirmation, and the respective status. The legal basis in this case is Art. 6 (1) (a) GDPR.

b) Newsletter after purchasing our products or services

If you purchase a product or service via our website and provide your email address, we may use this address to send you our newsletter without your separate consent, provided you have not objected to this. This newsletter contains only direct advertising for products or services similar to ours, as well as information and service emails on current topics related to your purchase. The legal basis for sending the newsletter in this case is § 7 (3) UWG in conjunction with Art. 6 (1) lit. f) GDPR. We have a legitimate interest in informing you about similar and comparable products and services as direct advertising, unless you have objected to receiving such information.

c) Unsubscribing from the newsletter: revocation of consent or objection

You can unsubscribe from the newsletter at any time, regardless of whether you receive it on the basis of consent or legitimate interests. To do so, use the unsubscribe link at the end of each newsletter or send us your unsubscribe request to the contact details listed in section 1. No costs other than the transmission costs according to the basic rates of your communication service provider will be incurred.

The storage period and deletion of your newsletter data are generally governed by section 5 of this privacy policy. After unsubscribing, the data stored for the newsletter will be deleted. Data stored by us for other purposes remains unaffected by this.

2.5 Company presence on social networks

We are present on various social networks, such as LinkedIn. We link directly to these networks on our website and operate a company page there. We use social networks to explain and promote our products and services and to improve your experience. You can also contact us directly via the respective network and find out about our offers.

a) Purposes and legal basis of processing by us in connection with the company's presence on social networks

We process the data from the use of our company's presence on social networks for the following purposes:

  • Communication: If you interact with us via social networks (e.g., through comments, messages, or by following our page), we process your personal data in order to respond to your inquiries and provide information.
  • Statistical evaluations (e.g., so-called page insights): We use the statistics provided by the social network to improve our content and to address our target groups within and outside the network in a more targeted manner.

The processing of your personal data is based on our legitimate interests pursuant to Art. 6 (1) (f) GDPR, namely to communicate with interested parties and customers, to analyze and optimize our online presence and our services, and in connection with inquiries about our products and services pursuant to Art. 6 (1) (b) GDPR.

We use the following social networks:

b) LinkedIn:

When you visit our company page on LinkedIn, personal data is processed by both LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland, and by us. We are joint controllers in accordance with Art. 4 No. 7, 26 GDPR, including in the context of tracking (so-called "Page Insights").

When you visit our company page, LinkedIn collects, among other things, your IP address, information from your LinkedIn profile (e.g., job title, company), and other information about your activities on LinkedIn (e.g., likes). Based on this data, LinkedIn provides us with statistical information about the interaction with our company page and our LinkedIn posts.

For more information on how LinkedIn processes your personal data, including the legal basis on which LinkedIn relies, the purposes, and the options for exercising your rights as a data subject vis-à-vis LinkedIn, please refer to their privacy policy at: https://de.linkedin.com/legal/privacy-policy.

In order to determine the respective responsibilities for fulfilling the obligations under the GDPR with regard to joint processing, we have entered into an agreement with LinkedIn which you can access here https://www.linkedin.com/legal/l/page-joint-controller-addendum

You can assert your rights (see also sections 6 and 7) both against us and against LinkedIn. We will then forward requests pursuant to Art. 15 to 20 GDPR internally to LinkedIn, because LinkedIn is responsible for processing them in accordance with the above agreement. Alternatively, you can contact LinkedIn directly at the following link: https://www.linkedin.com/help/linkedin/ask/PPQ?lang=de

We have also agreed with LinkedIn that the Irish Data Protection Commission is the lead supervisory authority for joint processing. You always have the right to lodge a complaint with the Irish Data Protection Commission (see www.dataprotection.ie) or with any other supervisory authority.

2.6 Ordering, concluding contracts, providing our services, and handling business relationships

Within the scope of our existing or future business relationships, we process personal data that is either collected directly from you or provided to us by your employer as our B2B customer. This applies in particular to employees of business partners or persons involved in the performance of the contract.

Our business relationships include suppliers, service providers, consultants, cooperation partners, and other companies with whom we work. In particular, this mainly concerns customers who purchase our products and services.

The provision of certain personal data may be required by law or contract, or may be necessary for the conclusion of a contract. If there is an obligation to provide such data, we will inform you separately. In this case, failure to provide such data may result in the requested service not being provided.

We primarily process personal data that you provide to us yourself within the scope of our business relationship or that we receive from business partners (e.g., from colleagues with whom we are already in contact, for example in connection with an inquiry or an order). In addition, we process information from publicly available sources (e.g., commercial registers, press, Internet) or data provided to us by third parties (e.g., other business partners). The scope of the data processed depends on your function within the respective company.

In the context of contract processing and business relationships, we process the following personal data in particular:

  • Company name
  • First and last name and position in the company
  • Address (delivery and billing address)
  • Sales tax ID
  • Phone numbers
  • Email
  • Bank details or payment methods

The processing of personal data serves the preparation, execution, and processing of contracts, in particular purchase and delivery contracts, service and work contracts, and other contractual relationships (e.g., processing and reviewing relevant offers and inquiries; authenticating contractual partners; preparing and signing contract documents; processing services; sending information letters, etc.). In addition, we use the data to optimize our business processes and for the general support of our business partners.

Your personal data is processed to safeguard legitimate interests on the basis of Art. 6 (1) (f) GDPR. This includes, in particular: processing non-contractual inquiries and requests, ensuring legally compliant conduct (e.g., prevention of and protection against legal violations, assertion of and defense against legal claims, internal and external compliance measures), ensuring the availability, operation, and security of technical systems, and technical data management.

In addition, data processing may be based on Art. 6 (1) (b) GDPR if we have a direct business relationship with you or your employer and the processing is necessary for the performance and fulfillment of your obligations arising from the employment relationship.

The storage period and deletion of your contractual data are governed by section 5 of this Privacy Policy.

2.7 Use of our platform and AI applications

If you use third-party AI applications via our platform as an authorized user because our customer—your employer or another company—has provided you with access, this customer is the controller within the meaning of Art. 4 no. 7 GDPR for the processing of your personal data in the context of use. In this context, we act exclusively on the instructions of the customer and have therefore concluded a data processing agreement with them (Art. 28 (3) GDPR).

For information on the processing of your personal data when using the platform and third-party AI applications, as well as on exercising your rights as a data subject (see sections 6 and 7), please contact the customer who granted you access directly. Alternatively, you can also assert these rights against us—we will then forward your request to the responsible customer for processing in accordance with our contractual obligations.

You can also obtain further information on the processing of your personal data in the context of the respective AI application directly from the relevant third-party provider:

2.8 Compliance with legal requirements

In connection with all of the above processes, we also process your personal data in order to comply with legal obligations that may apply to us in connection with our business activities. These include, in particular, commercial, trade, or tax law information obligations and retention periods.

We process your personal data in accordance with Art. 6 (1) (c) GDPR to fulfill a legal obligation to which we are subject.

2.9 Law enforcement

In connection with all of the above processes, we also process your personal data in order to assert our rights and enforce our legal claims or defend ourselves against legal claims. Finally, we process your personal data to the extent necessary to prevent or prosecute criminal offenses.

In this context, we process your personal data to protect our legitimate interests in accordance with Art. 6 (1) (f) GDPR, insofar as we assert legal claims or defend ourselves in legal disputes, or we need to prevent or investigate violations of our property or similar legal positions.

3. Categories of recipients

In order to provide our services and organize business processes efficiently, we work with external service providers who may have varying degrees of access to personal data. There are two categories:

  • Processors pursuant to Art. 28 GDPR, who act exclusively on our behalf and in accordance with our instructions.
  • Companies acting on their own responsibility, which decide for themselves on the processing and use of the data.

Some service providers are contractually bound to our instructions and process personal data exclusively for the agreed purposes on our behalf. For this purpose, we have concluded a data processing agreement with these recipients (Art. 28 (3) GDPR). In particular, the following categories of recipients are included:

  • Hosting, cloud, and IT security services: Provision of technical infrastructure and protection of IT systems (e.g., Hetzner, IONOS, Cloudflare).
  • Web and platform hosting: Provision and operation of our website and platform services (e.g., Webflow).
  • Authentication services: Verification and management of user logins (e.g., Clerk).
  • Payment processing: Processing payments via various payment methods, including credit cards and SEPA direct debit (e.g., Stripe, insofar as they act as a pure payment service provider).
  • Customer management and communication: Management of customer relationships, sending of emails and newsletters, and operation of the website live chat (e.g., Brevo
  • Woodpecker.co, Mailgun, Google).
  • Automation and integration services: linking applications and automating workflows (e.g., Make.com).

In certain cases, we work with companies that decide for themselves how to process personal data. In some cases, the recipients act independently under their own data protection responsibility and are also obliged to comply with the requirements of the GDPR and other data protection regulations. This includes the following categories of recipients in particular:

  • Payment service providers: Independent processing of transactions and fulfillment of regulatory requirements (e.g., Stripe).
  • Web analysis and tracking services: Collection and evaluation of user data to optimize online offerings (e.g., Google Analytics; see also section 2.2c)).
  • CRM and customer management systems: Management and analysis of customer interactions (e.g., Pipedrive).
  • Social networks: Processing of personal data for advertising analysis and campaign optimization (e.g., LinkedIn).
  • Shipping and logistics service providers: Processing of deliveries and shipping of goods.
  • Authorities and public bodies, insofar as there is a legal obligation to transfer data or the transfer is necessary for law enforcement.

Finally, in individual cases, we transfer personal data to our advisors in legal or tax matters, whereby these recipients are generally already are already bound to special confidentiality and secrecy due to their professional status.

4. Data transfer to third countries

If necessary for our purposes, we may also transfer your data to recipients outside the European Economic Area ("third countries"). This is particularly the case in the context of contract processing or due to legal requirements.

We only transfer your data to recipients in third countries in accordance with the provisions of Chapter V of the GDPR, i.e. if it is ensured that the EU Commission has determined an adequate level of data protection within the meaning of Art. 45 (1) GDPR or that appropriate safeguards within the meaning of Art. 46 (2) and (3) GDPR have been implemented, or if there is an exception under Art. 49 GDPR and there are no overriding interests worthy of protection that speak against the transfer of personal data.

To ensure an adequate level of protection at the recipient of the data, we use, in particular, the EU Commission's standard contractual clauses for the transfer of personal data to third countries (SCC). You can access the SCC via the link provided or request a copy from us.

5. Duration of data processing and deletion

We initially process your personal data for the duration required for the respective processing purpose – see above.

Insofar as the processing is carried out for the purpose of executing a contract, the processing period also includes the periods of initiating a contract (pre-contractual legal relationship) and executing a contract (including any subsequent claims).

If the processing is carried out to safeguard our legitimate interests, the processing period covers the period until the pursued processing purposes have been achieved.

If the processing is based on your consent, it will take place for the period between the granting and revocation of consent or until the processing covered by the consent has been completed.

In this respect, we would like to point out that even in the event of revocation, further processing may be possible on the basis of other legal grounds (Art. 17 (1) (b) GDPR).

Even when the primary processing purposes have been achieved, further processing of your personal data may take place, in particular if this is necessary to fulfill legal obligations and/or to protect our rights. This includes, in particular, the following purposes:

  • Compliance with statutory retention obligations, e.g., those arising from the German Commercial Code (Sections 238, 257 (4) HGB) and the German Fiscal Code (Section 147 (3), (4) AO). The retention and documentation periods specified therein are up to ten years.
  • Preservation of evidence in accordance with the statute of limitations. According to Sections 194 et seq. of the German Civil Code (BGB), these limitation periods can be up to 30 years, with the regular limitation period being three years.

6. Rights of data subjects

You can exercise the following rights at any time using the contact details provided in section 1:

Right to information: You have the right to request confirmation from us as to whether personal data concerning you is being processed; if this is the case, you have the right to information about this personal data concerning you and about information in accordance with Art. 15 (1) (a) – (h) GDPR. If personal data concerning you is transferred to a third country or to an international organization, you have the right to be informed of the appropriate safeguards pursuant to Art. 46 GDPR in connection with the transfer. Under the conditions set out in Art. 15 GDPR, you also have the right to obtain a copy of the personal data concerning you that is being processed.

Right to rectification: You have the right to request that we rectify personal data concerning you without undue delay if it is inaccurate. Taking into account the purposes of the processing, you have the right to request the completion of incomplete personal data concerning you, including by means of a supplementary statement.

Right to erasure: You have the right to request that we erase personal data concerning you without undue delay if one of the reasons specified in Art. 17 GDPR applies, e.g. if the data is being processed unlawfully.

Right to restriction of processing: Under the conditions specified in Art. 18 GDPR, you have the right to request that we restrict processing.

Right to data portability: Under the conditions specified in Art. 20 GDPR, you have the right to receive the personal data concerning you that you have provided to us on the basis of consent or for the performance of a contract in a structured, commonly used, and machine-readable format and to transmit this data to another controller without hindrance from us. When exercising this right, you have the right to have the personal data concerning you transferred directly from us to another controller, where technically feasible.

Right to withdraw consent: If data processing is based on consent pursuant to Art. 6 (1) (a), Art. 9 (2) (a) or Art. 49 (1) (a) GDPR, you may withdraw your consent at any time with effect for the future. The lawfulness of the processing of your personal data until revocation remains unaffected. When revoking your consent, you can also choose the same contact method you used when giving your consent.

Right to lodge a complaint with a supervisory authority: Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, your place of work, or the place of the alleged infringement, if you consider that the processing of personal data concerning you infringes the GDPR.

7. Right to object

Under the conditions specified in Art. 21 (1) GDPR, you have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is based on Art. 6 (1) (e) or (f) GDPR; this also applies to profiling based on this provision.

If personal data concerning you is processed for direct marketing purposes, you also have the right, pursuant to Art. 21 (2) GDPR, to object at any time to the processing of data concerning you for such marketing purposes; this also applies to profiling insofar as it is related to such direct marketing.

8. Obligation to provide data

In principle, you are not obliged to provide us with your personal data. However, if you do not do so, we will not be able to make our website available to you without restrictions or respond to your inquiries.

Personal data that we do not necessarily require for the above-mentioned processing purposes is marked accordingly as voluntary information.

9. Automated decision-making

We do not use automated decision-making within the meaning of Art. 22 (1), (4) GDPR.

This privacy policy is current as of June 04, 2026. Due to the further development of our website, products, and services, or due to changes in legal or regulatory requirements, it may become necessary to amend this privacy policy. In this case, we will update this privacy policy accordingly on our website.