Privacy Policy

We appreciate your interest in our website. The protection of your personal data when using our website is very important to us. Below, we inform you about what data we collect when you visit our website, how it is used, and what rights you have in this regard.

1. Name and Contact Details of the Data Controller

The data controller within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws of the Member States, as well as other data protection provisions, is:

Soloof EOOD, Boulevard Shesti Septemvri 141, 4000 Plovdiv, Phone: +49 761 48899304, Email: info-<at>-soloof.com

2. General Information on Data Processing

We only process your personal data to the extent necessary to provide a functional website and our content and services. The processing of our users’ personal data is generally only carried out after the user has given consent, unless obtaining prior consent is not possible for factual reasons, or the processing of the data is permitted by legal provisions.

3. Collection of General Data and Information (Server Log Files)

Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing computer. This data is technically necessary to display our website to you and to ensure its stability and security. This includes the following data:

Browser type and browser version
Operating system used
Referrer URL (the previously visited page)
Hostname of the accessing computer
Time of the server request
IP address (possibly in truncated form)

The storage of this data in log files is necessary to ensure the website’s functionality. In addition, the data helps us optimize the website and ensure the security of our information technology systems. The data is not evaluated for marketing purposes in this context.

The legal basis for the temporary storage of the data and the log files is Article 6(1)(f) GDPR. Our legitimate interest lies in ensuring the security and stability of our website.

4. No Cookies and No Analytics Scripts

We do not use cookies on our website. Cookies are small text files that are stored in the internet browser or by the internet browser on the user’s computer system. Furthermore, we do not use any scripts that analyze or track user behavior on our website.

5. Contacting Us by Email (via Mailto Link)

You will find a contact form on our website. When you fill out this form and click the “Submit” button, the data you entered is not transmitted directly to our web server and stored there. Instead, your locally installed default email program (e.g., Outlook, Thunderbird) is opened. The information you entered in the contact form, such as your name, email address, and your message, is automatically transferred into an email addressed to the email address provided on our website.

This email is only sent to us when you actively confirm and send it from your email program. At that point, the data is transmitted from your email program to the mail server of your email provider and subsequently to our email server. The further processing and storage of this data then follows the process of a regular email correspondence.

The personal data you transmit (e.g., name, email address, content of the message) is used solely for the purpose of processing your inquiry and for communication with you.

The legal basis for this data processing is your consent pursuant to Article 6(1)(a) GDPR, which you grant by sending the email via your email program.

We store the transmitted emails and the data contained therein for as long as necessary to process your inquiry, to fulfill legal retention obligations, or to safeguard legitimate interests (e.g., in the event of a legal dispute).

6. Embedding of YouTube Videos

We have embedded YouTube videos on our website, which are stored on https://www.youtube.com and can be played directly from our website. These are all embedded in “enhanced privacy mode,” meaning that no data about you as a user is transmitted to YouTube if you do not play the videos. Data is only transmitted when you play the videos. We have no control over this data transfer.

By playing the video, YouTube receives the information that you have accessed the corresponding subpage of our website. Furthermore, additional data is transmitted to YouTube (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland). This occurs regardless of whether YouTube provides a user account that you are logged into or whether no user account exists. If you are logged into Google, your data will be directly associated with your account. If you do not wish this association with your YouTube profile, you must log out before activating the button. YouTube stores your data as usage profiles and uses them for purposes of advertising, market research, and/or the demand-oriented design of its website. Such evaluation is carried out in particular (even for users who are not logged in) to provide tailored advertising and to inform other users about your activities on our website. You have the right to object to the creation of these user profiles; to exercise this right, you must contact YouTube.

Further information on the purpose and scope of data collection and its processing by YouTube can be found in Google’s privacy policy. There you will also find further information on your rights and setting options to protect your privacy: https://policies.google.com/privacy.

The legal basis for the embedding of the YouTube videos and the associated data processing is your consent pursuant to Article 6(1)(a) GDPR, which you grant by actively clicking on and playing the video. By playing the video, you consent to the data processing by YouTube and Google.

Please note that YouTube is a service provided by Google, whose servers are located in the USA. This may result in a transfer of data to the USA. The USA is assessed by the Court of Justice of the European Union as a country with a level of data protection that is inadequate according to EU standards. There is a risk that your data may be processed by US authorities for control and monitoring purposes, without you necessarily having effective legal remedies against this.

7. Your Rights as a Data Subject

If your personal data is processed, you are a data subject within the meaning of the GDPR, and you have the following rights vis-à-vis the data controller:

Right of access (Article 15 GDPR): You can request confirmation as to whether personal data concerning you is being processed by us.
Right to rectification (Article 16 GDPR): You have the right to obtain from the controller without undue delay the rectification of inaccurate personal data concerning you. Taking into account the purposes of the processing, you have the right to have incomplete personal data completed.
Right to erasure (“right to be forgotten”) (Article 17 GDPR): You have the right to obtain from the controller the erasure of personal data concerning you without undue delay, and the controller is obliged to erase this data without delay where one of the grounds listed in Article 17(1) GDPR applies.
Right to restriction of processing (Article 18 GDPR): Under certain conditions, you have the right to obtain from the controller restriction of processing of your personal data.
Notification obligation (Article 19 GDPR): If you have exercised your right to rectification, erasure, or restriction of processing vis-à-vis the controller, the controller is obliged to communicate any rectification or erasure of personal data or restriction of processing to each recipient to whom the personal data has been disclosed, unless this proves impossible or involves disproportionate effort.
Right to data portability (Article 20 GDPR): You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used, and machine-readable format, and you have the right to transmit those data to another controller without hindrance, where the processing is based on consent or on a contract, and the processing is carried out by automated means.
Right to object (Article 21 GDPR): You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on Article 6(1)(e) or (f) GDPR.
Right to withdraw consent (Article 7(3) GDPR): You have the right to withdraw your data protection consent at any time. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
Right to lodge a complaint with a supervisory authority (Article 77 GDPR): Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the GDPR.

8. Changes to this Privacy Policy

We reserve the right to adapt this privacy policy as necessary to ensure it always complies with current legal requirements or to implement changes to our services in the privacy policy, for example, when introducing new services. The current privacy policy will apply for any subsequent visit.