GDPR
Your data is safe — we protect your privacy with the latest technology and heart!
Effective date: 04 Oct 2025
1. Controller
Hawk Intelligent Technologies GmbH
Schafäckerlein 23
91413 Neustadt an der Aisch, Germany
E-mail: management@hawk-intech.com
Phone: +49 9161 87192-0
2. Processing when visiting our website
2.1 General access data (server logs)
Each time our website is accessed, our web server automatically logs certain data (IP address, date/time of the request, data volume transferred, browser type/version, operating system). We use this data to provide the website, ensure system security, and optimize our offering. No combination with other data sources takes place. Log files are typically stored for 7 days unless security-related events require a longer retention.
Legal basis: Art. 6(1)(f) GDPR (legitimate interests).
2.2 Contact (contact form and e-mail)
If you contact us, we process the information you provide (e.g., name, e-mail address, message) to handle your inquiry. Mandatory fields are marked accordingly.
Legal basis: Art. 6(1)(a) GDPR (consent) or Art. 6(1)(b) GDPR (contract/pre-contractual measures), depending on the request.
2.2a Processing of contact inquiries in the CRM (Salesforce Web-to-Lead / Sales Cloud)
To process inquiries in a structured way, data entered in the contact form is automatically transferred to our CRM system Salesforce Sales Cloud (Web-to-Lead) and processed there (contact/lead management, documentation, follow-up).
Legal bases: Art. 6(1)(b) GDPR (contract/pre-contractual measures) and Art. 6(1)(f) GDPR (legitimate interest in efficient case handling).
Recipients & transfers: Salesforce Ireland Limited (Ireland). A transfer to Salesforce, Inc., USA, cannot be ruled out and, where required, takes place on the basis of the EU Standard Contractual Clauses (SCC) and additional safeguards.
Retention: Deletion/anonymization once the purpose ceases and after statutory retention periods expire.
2.3 Newsletter and marketing e-mails
If you subscribe, we send updates via e-mail using our CRM (Salesforce). We use the double opt-in procedure.
Legal basis: Art. 6(1)(a) GDPR (consent); where legally permissible, Art. 6(1)(f) GDPR in conjunction with Sec. 7 UWG (legitimate interest in direct marketing).
Unsubscribe: At any time via the link in every e-mail or by contacting us; unsubscribed addresses are kept on a suppression list to prevent further marketing.
Performance measurement: Tracking of opens/clicks only if explicitly indicated and consented.
2.4 Cookies and tracking technologies
We use cookies and similar technologies to provide functions and analyze usage. Essential cookies are technically necessary. Non-essential cookies/tools (e.g., analytics/marketing) are set only with your consent via the cookie banner.
We use the consent management platform CookieScript (Objectis Ltd., Vilnius, LT); a consent cookie is set to store your preferences.
Legal bases: Art. 6(1)(c) GDPR (compliance with legal obligations regarding consent management) and Art. 6(1)(f) GDPR (legitimate interest in documented consent control); for non-essential cookies/tools: Art. 6(1)(a) GDPR (consent).
Withdrawal: You can change your choices anytime via “Cookie settings”.
Google Analytics
Provider: Google Ireland Limited, Dublin. IP anonymization within the EU/EEA. Possible transfers to Google LLC (USA) under appropriate safeguards (e.g., SCC).
Legal basis: Art. 6(1)(a) GDPR (consent). Opt-out: Banner/browser add-ons/script blockers.
Meta Pixel (Facebook Pixel)
Provider: Meta Platforms Ireland Ltd., Dublin; statistical evaluation/optimization of ads; possible transfers to the USA (SCC). In parts, joint controllership with Meta.
Legal basis: Art. 6(1)(a) GDPR (consent).
LinkedIn Insight Tag
Provider: LinkedIn Ireland Unlimited Company, Dublin; campaign measurement (aggregated); possible transfers to the USA (SCC).
Legal basis: Art. 6(1)(a) GDPR (consent).
Google AdSense
Provider: Google Ireland Limited, Dublin; ad serving (personalized/contextual); possible transfers to the USA (SCC).
Legal basis: Art. 6(1)(a) GDPR (consent).
Examples of currently used cookies (excerpt)
CookieScriptConsent (first-party, ~4 weeks); _cfuvid (first-party/Cloudflare, session)._ga (~13 months); _ga_4LZHEK7E05 (~13 months).ClientId (outlook.office.com, up to 1 year), MS0 (.microsoft.com, ~30 min), OIDC (outlook.office.com, up to 6 months), msal.cache.encryption (session), MC1 (.microsoft.com, up to 1 year).2.5 Social media presences and links
We only link to external profiles (Facebook, LinkedIn, X/Twitter, Instagram/Threads, YouTube, WhatsApp). A connection is established only when you click a link. Processing then falls under the provider’s responsibility (their terms/privacy apply). We evaluate interactions only within our legitimate interests.
Legal basis: Art. 6(1)(f) GDPR.
2.6 Google reCAPTCHA
To protect our forms, we use Google reCAPTCHA (Google Ireland Limited, Dublin); technical data (including IP address) may be transmitted to Google.
Legal basis: Art. 6(1)(f) GDPR (spam/misuse protection).
2.7 Embedded YouTube videos
We use the extended privacy mode. A connection to YouTube/Google is established when the video page loads; cookies for profiling are not set before you actively start the video.
Legal basis: Art. 6(1)(f) GDPR.
2.8 Downloads via Google Drive
Downloads are provided directly from Google servers (Google Ireland Limited). For technical reasons, connection data is processed. Possible transfers to the USA (SCC).
Legal basis: Art. 6(1)(f) GDPR.
2.9 Hosting by Webflow
Our website is hosted by Webflow, Inc. (USA). Technical data is processed for provision/security/optimization. A data processing agreement is in place; international transfers may occur as part of the service (see Webflow privacy).
Legal basis: Art. 6(1)(f) GDPR.
2.10 Online appointment booking with Microsoft Bookings (appointment purpose only)
We embed Microsoft Bookings (Microsoft Ireland Operations Limited, Dublin) solely to provide the explicitly requested appointment booking. For technical rendering/execution, strictly necessary cookies/technologies may be used (e.g., session/authentication, abuse prevention). No cross-user analytics or marketing by us in this context.
Legal basis: Art. 6(1)(b) GDPR. Optional convenience features only with consent (Art. 6(1)(a) GDPR).
Recipients & transfers: Microsoft (Ireland); possible transfers to third countries (in particular the USA) based on SCC and additional safeguards.
Alternative: You may also book appointments via e-mail/phone.
3. Processing when using our SaaS services
We offer cloud-based software services (SaaS) (e.g., an intelligent shift-planning platform) and process registration/usage data to the extent necessary to provide the services.
Legal basis: Art. 6(1)(b) GDPR (contract); internal analyses preferably in aggregated/anonymous form.
Processing on behalf of business customers: Where customers use our platform as controllers, we act as a processor (DPA in place).
Service providers/transfers: Instructed service providers (hosting, e-mail, support, etc.); transfers only where contractually/legally required.
Retention: Data is stored only as long as necessary; afterwards deletion/anonymization.
4. Your rights as a data subject
To exercise your rights, please contact us by e-mail (see above). For access requests (Art. 15), we may ask for proof of identity.
5. Objection and opt-out options
6. Currency and changes to this Privacy Policy
We reserve the right to adapt this Privacy Policy as needed (e.g., if our services or legal requirements change). The current version is always available on our website.
7. Additional information for users outside the EU
Our offerings are primarily aligned with the GDPR. We do not sell personal data. When accessing from third countries, data transfers outside the EEA may occur (e.g., to service providers in the USA). Where required, we rely on EU Standard Contractual Clauses (SCC) and additional safeguards; details on recipients/transfers can be found in the sections on the respective services. Rights may vary by jurisdiction; we endeavor to honor legitimate requests under the applicable law.
© 2025 Copyrights, All Rights Reserved
