Skip to content
Get started

Privacy Policy of Dino Lab GmbH

1. Introduction

Dino Lab GmbH ("we", "our", or "us") is committed to protecting your privacy and the confidentiality of your personal information. This Privacy Policy outlines how we collect, use, store, and process your personal data when you interact with our website and services.

We comply with the Data Protection Act 2018 (Act), incorporating the EU General Data Protection Regulation (GDPR), and other relevant German data protection laws.

2. Data Controller

The data controller responsible for your personal data is:

Dino Lab GmbH Unterscheibenrain 11 78166 Donaueschingen Deutschland Telefon: 077117514583 E-Mail: post@dino-lab.io

3. Data Protection Officer

Our Data Protection Officer can be reached at:

Dino Lab GmbH Unterscheibenrain 11 78166 Donaueschingen Deutschland E-Mail: datenschutz@dino-lab.io

4. Data We Process

We collect and process the following categories of personal data:

  • Identity Data: This includes your first name, last name, title, and date of birth. (Art. 6 (1) (b) GDPR for contractual purposes)
  • Contact Data: This includes your billing address, delivery address, email address, and telephone numbers. (Art. 6 (1) (b) GDPR for contractual purposes)
  • Technical Data: This includes your internet protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access our website. (Art. 6 (1) (f) GDPR for legitimate interests like website optimization)
  • Marketing Data: This includes your preferences in receiving marketing communications from us and your communication preferences. (Art. 6 (1) (a) GDPR for consent-based marketing)

We may also process anonymized and aggregated data for statistical and analytical purposes.

5. Special Categories of Personal Data

We do not collect any special categories of personal data about you (e.g., data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data, health data, or data concerning your sex life or sexual orientation).

6. Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Contractual Necessity: We process your data to fulfill our contractual obligations to you, such as providing our services and processing your orders. (Art. 6 (1) (b) GDPR)
  • Consent: We may process your data based on your consent, such as for sending you marketing communications. You can withdraw your consent at any time. (Art. 6 (1) (a) GDPR)
  • Legitimate Interests: We may process your data for our legitimate interests, such as improving our website and services, preventing fraud, and ensuring network and information security. We always balance our legitimate interests against your fundamental rights and freedoms. (Art. 6 (1) (f) GDPR)
  • Legal Obligations: We may process your data to comply with legal obligations, such as tax laws or requests from law enforcement authorities. (Art. 6 (1) (c) GDPR)

7. Data Security

We implement appropriate technical and organizational security measures to protect your personal data against unauthorized access, accidental or unlawful destruction, loss, alteration, and disclosure. These measures include:

  • Encryption of data sent between us using Transport Layer Security (TLS) with SHA 256 hashing algorithm.

8. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

9. Your Rights

Under the GDPR, you have the following rights regarding your personal data:

  • Right of Access: You have the right to request access to your personal data and information about how we process it.
  • Right to Rectification: You have the right to request correction of inaccurate or incomplete personal data.
  • Right to Erasure ("Right to be Forgotten"): You have the right to request deletion of your personal data under certain circumstances.
  • Right to Restriction of Processing: You have the right to request restriction of processing of your personal data under certain circumstances.
  • Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another controller.
  • Right to Object: You have the right to object to the processing of your personal data under certain circumstances.
  • Right to Withdraw Consent: You have the right to withdraw your consent to the processing of your personal data at any time if the processing is based on consent.

To exercise your rights, please contact our Data Protection Officer using the contact details provided above.

10. Complaints

If you have any concerns about our data processing practices, you have the right to lodge a complaint with the competent supervisory authority. In Germany, the competent supervisory authority is:

Der Landesbeauftragte für den Datenschutz und die Informationsfreiheit Baden-Württemberg Königstraße 10a 70173 Stuttgart

11. Updates to this Privacy Policy

We may update this Privacy Policy from time to time. We will post any changes on our website and, if the changes are significant, we may also notify you by other means.

12. Contact Us

If you have any questions about this Privacy Policy, please contact our Data Protection Officer using the contact details provided above.