Sees4Health - The future of health - Logo schwarz
Get Started

Privacy Policy

Controller
SeeS4Health GmbH in formation
Asamstraße 20, 83671 Benediktbeuern, Germany
Email: ai360@sees4health.com · Phone: +49 (0)151 59 140 600

Data Protection Officer
Designation pending. Until appointed, please contact temporarily ai360@sees4health.com or use the postal address above.

1) Scope, purposes & legal bases

We process personal data when you visit our website and when you contact us.

Purposes & bases: Provide and secure the website (hosting, security, server log files) — Art. 6(1)(f) GDPR.Handle enquiries (contact form/email/phone) — Art. 6(1)(b) GDPR; alternatively Art. 6(1)(f) GDPR.

The optional features below apply only if used; they run with consent where required — Art. 6(1)(a) GDPR.Clarity:

We obtain personal data directly from you (e.g., via email) and automatically via server log files when you visit the website.
We do not collect data from third-party sources.

Clarity: Because we only use technically necessary cookies by default, no consent banner is required. If optional tools are enabled, obtain consent before activation.

2) Hosting (processor)

We use IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, Germany, under a Data Processing Agreement (Art. 28 GDPR).

3) Server log files

Data: IP address, date/time, requested URL, referrer, HTTP status, user-agent.
Basis: Art. 6(1)(f) GDPR (technical provision & security).
Retention: typically 7–14 days (longer only for incident analysis).

4) Cookies

No analytics/marketing/tracking cookies by default. Only technically necessary cookies may be set to operate the site (if any).

5) Newsletter

Data: email address, optional profile data; deliverability/open-rate metrics.
Legal basis: consent, Art. 6(1)(a) GDPR; proof via double opt-in; withdrawal at any time via unsubscribe link.
Processors/Transfers: if using a mailing service (e.g., Brevo/Mailjet), conclude a DPA (Art. 28). For third-country providers, implement safeguards (adequacy decision or EU SCCs).
Retention: until consent is withdrawn; opt-out proof may be stored for up to 3 years (Art. 6(1)(f)).

6) Careers / application form

Data: contact details, CV, cover letter, interview notes, metadata.
Legal basis: Art. 6(1)(b) GDPR (pre-contract), Art. 6(1)(f); in Germany also § 26 BDSG.
Retention: generally 6 months after decision, unless longer storage with consent (talent pool).

7) Web analytics / tracking

If enabled, analytics/marketing tools run only after your consent (Art. 6(1)(a) GDPR).
We will disclose provider, data categories, storage periods, and any third-country transfers in the consent banner and here before activation.

8) Embedded content (Maps, YouTube/Vimeo)

We may embed third-party content. Where available, we use privacy-enhanced or two-click modes so that content loads only after you opt in.
Legal basis: consent, Art. 6(1)(a) GDPR. Providers may receive your IP address and user agent.

9) Chat / support tools

If a chat or ticketing system is used, messages and metadata are processed to handle support.
Legal basis: Art. 6(1)(b) for customers/prospects; otherwise Art. 6(1)(f); cookies where required need consent.

10) Error & uptime monitoring

Purpose: reliability/security; technical telemetry (URLs, timestamps, performance metrics, error traces with masked IPs).
Legal basis: Art. 6(1)(f) GDPR (stability & security). Configure data minimisation/IP masking; conclude DPAs.

11) CDNs / font CDNs

CDNs may deliver static assets. For third-country providers, we use appropriate safeguards (adequacy decision like EU-US DPF or EU SCCs). Where feasible, assets are self-hosted.

12) reCAPTCHA or similar

To protect forms from abuse, bot-protection services may evaluate technical signals and set cookies.
Legal basis: consent (Art. 6(1)(a)) if cookies/marketing IDs are used; otherwise Art. 6(1)(f) (security interest).

13) Payments

If online payments are accepted, payment providers process identifiers, payment data, and fraud-prevention signals as independent controllers or processors.
Legal basis: Art. 6(1)(b) GDPR; fraud prevention may rely on Art. 6(1)(f).

14) Recipients & third-country transfers

Processors: hosting/IT and (if enabled) the optional tools above under Art. 28 GDPR.
Transfers to third countries occur only with suitable safeguards (adequacy decision or EU Standard Contractual Clauses with supplementary measures).

15) Your rights

Access (Art. 15), rectification (16), erasure (17), restriction (18), portability (20), objection (21).
If processing is based on consent, you may withdraw it at any time with future effect.
Complaints: Bayerisches Landesamt für Datenschutzaufsicht (BayLDA), Promenade 27, 91522 Ansbach, Germany.

16) Security (TLS/SSL)

We use HTTPS (TLS). Nonetheless, internet transmission can have security gaps.

17) Retention & deletion

We retain personal data only as long as necessary for the purposes above or as legally required; afterwards we delete or anonymise it.

18) Changes to this Policy

We may update this Policy to reflect legal/technical changes.


Last updated: 7 November 2025.