Privacy Policy

Protecting your personal data is important to us. This privacy policy explains which data we process when you visit this website, for what purpose, and what rights you have.

1. Controller

The controller within the meaning of the General Data Protection Regulation (GDPR) is: doraly GmbH Sommerhalde 60 72202 Nagold, Germany Phone: +49 176 31230969 Email: felix.nazarenus@doraly.co

2. General information on data processing

As a rule, we only process our users' personal data to the extent necessary to provide a functional website along with our content and services. Processing generally takes place only with the user's consent, or where obtaining prior consent is not possible for factual reasons and processing is permitted by law.

3. Legal bases for processing

Where we obtain consent for processing, Art. 6(1)(a) GDPR serves as the legal basis. For processing necessary to perform a contract or to take pre-contractual steps, Art. 6(1)(b) GDPR applies. Where processing is necessary to protect a legitimate interest, Art. 6(1)(f) GDPR applies. To fulfil legal obligations, Art. 6(1)(c) GDPR applies.

4. Hosting and delivery of the website

This website is hosted by an external provider (Cloudflare, Inc.) and delivered via its content delivery network. Technical connection data required for the secure and stable provision of the website may be processed. The legal basis is our legitimate interest in a reliable presentation (Art. 6(1)(f) GDPR). A data processing agreement (Art. 28 GDPR) is in place with the provider; any transfer of data to third countries is safeguarded by appropriate guarantees, in particular standard contractual clauses.

5. Server log files

When the website is accessed, information transmitted by your browser is collected automatically: browser type and version, operating system, referrer URL, date and time of access, and your (shortened) IP address. This data is used for technical provision, system security, and error analysis. It is not merged with other data sources. The legal basis is Art. 6(1)(f) GDPR.

6. Cookies

This website uses only technically necessary cookies required to operate the site. These do not require consent. Should non-essential cookies (e.g. for analytics or marketing) be used in future, this will happen exclusively on the basis of your consent (§ 25(1) TTDSG, Art. 6(1)(a) GDPR), which you can withdraw at any time.

7. Web analytics (Cloudflare Web Analytics)

To analyse website usage statistically, we use Cloudflare Web Analytics, a service provided by Cloudflare, Inc. This service is cookieless: it sets no cookies and stores or reads no information on your device, so no consent under § 25 TTDSG is required. Only aggregated data that cannot be used to identify individuals is collected (e.g. pages viewed, referrer, approximate region of origin, device type). No cross-site tracking or user profiling takes place. The legal basis is our legitimate interest in privacy-friendly reach measurement (Art. 6(1)(f) GDPR).

8. Contact and demo appointments

If you contact us by email or phone, or arrange a product demonstration via a scheduling service, we process the data you provide (e.g. name, email address, content of the request) to handle your enquiry. The legal basis is Art. 6(1)(b) GDPR (pre-contractual steps) or Art. 6(1)(f) GDPR. The data is deleted once it is no longer required for the purpose and no statutory retention obligations apply.

9. Fonts

This website uses fonts that are hosted locally on the server. No connection to third-party servers (such as Google) is established when the page loads, so no personal data is transmitted to third parties in this respect.

10. No use of your data for AI training

Personal data we process as part of our services is used exclusively to provide the respective service. Your data is not used to train AI models.

11. Data security

We use SSL/TLS encryption to protect the transmission of your data. You can recognise an encrypted connection by the 'https://' in your browser's address bar. We also take appropriate technical and organisational measures to protect your data against loss, manipulation, and unauthorised access.

12. Your rights

You have the right at any time to access (Art. 15 GDPR), rectification (Art. 16 GDPR), erasure (Art. 17 GDPR), restriction of processing (Art. 18 GDPR), data portability (Art. 20 GDPR), and to object to processing (Art. 21 GDPR). You may withdraw any consent at any time with effect for the future. To exercise these rights, please use the contact details in section 1.

13. Right to lodge a complaint

Without prejudice to other remedies, you have the right to lodge a complaint with a data protection supervisory authority if you believe that the processing of your personal data infringes the GDPR.

14. Currency of this privacy policy

This privacy policy is updated whenever changes to our data processing make it necessary. The version published on this page applies.

Note: This privacy policy is a carefully prepared template. Please have it reviewed and completed by a lawyer with regard to your specific use (services used, tracking, processors) before going live.