Privacy policy

Privacy policy

You can manage your consent to the use of tools for personalization and usage analysis at any time by clicking on the following button:
Change privacy settings

Name and contact details of the controller

The controller responsible for data processing is
CYA GmbH
An der Wiesenmühle 13
09224 Chemnitz

Phone: +49 371 3371711-0
Fax: #49 371 2783-2000
E-mail: info@cya.international
Contact details of the company data protection officer:
You can contact our company data protection officer at the above address or by e-mail at datenschutz@cya.international.

 

2. processing of personal data, legal bases and purposes of use

a) When visiting the website
When you visit our website at https://cya.international, the browser used on your device automatically sends information to the server of our website. This information is temporarily stored stored in a so-called log file. The following information is collected without any action on your part and stored until it is automatically deleted:

  • IP address of the requesting computer,
  • Date and time of access,
  • Name and URL of the retrieved file,
  • Website from which access is made (referrer URL),
  • the browser used and, if applicable, the operating system of your computer and the name of your access provider.

We process the aforementioned data for the following purposes:

  • Ensuring a smooth connection to the website,
  • To ensure a comfortable use of our website,
  • Evaluation of system security and stability and for other administrative purposes.
  • The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest follows from the purposes for data collection listed above. Under no circumstances do we use the data collected for the purpose of draw conclusions about your person.

We also use cookies and analysis services when you visit our website. You can find more detailed explanations on this in sections 4 and 5 of this privacy policy.

b) When using our contact form
For questions of any kind, we offer you the opportunity to contact us via a form provided on the website. It is necessary to provide a valid e-mail address so that we know who sent the the request comes from and to be able to answer it. Further information can be provided voluntarily.

Data processing for the purpose of contacting us is carried out in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR on the basis of your voluntarily given consent.

The personal data collected by us for the use of the contact form will be automatically deleted after your request has been dealt with.

 

3. disclosure of data

Your personal data will not be transferred to third parties for purposes other than those listed below.
We only pass on your personal data to third parties if:

  • you have given your express consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR,
  • the disclosure pursuant to Art. 6 para. 1 sentence 1 lit. b GDPR is necessary for the performance of a contract with you or for the implementation of pre-contractual measures taken at your request.
  • this is necessary pursuant to Art. 6 para. 1 sentence 1 lit. c GDPR for compliance with a legal obligation to which the controller is subject
  • this is necessary pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR for the establishment, exercise or defense of legal claims and there is no reason to assume that you have an overriding legitimate interest in not disclosing your data of your data

 

4. cookies

We use cookies on our website. These are small files that your browser automatically creates and that are stored on your end device (laptop, tablet, smartphone, etc.) when you visit our website. Cookies do not cause any damage to your end device and do not contain any viruses, Trojans or other malware.

Information is stored in the cookie that results in each case in connection with the specific end device used. However, this does not mean that we obtain direct knowledge of your identity.

On the one hand, the use of cookies serves to make the use of our website more pleasant for you. For example, we use so-called session cookies to recognize that you have already visited individual pages of our website. These are automatically deleted after you leave our site.

In addition, we also use temporary cookies to optimize user-friendliness, which are stored on your end device for a specified period of time. If you visit our site again to use our services services, it is automatically recognized that you have already visited us and which entries and settings you have made so that you do not have to enter them again.

On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimizing our offer for you (see section 5). These cookies enable us to automatically recognize that you have already automatically recognize that you have already visited our site. These cookies are automatically deleted after a defined period of time.

We will only use cookies that are not absolutely necessary for the operation of the website with your consent.

Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or a message always appears before a new cookie is created. However, completely deactivating cookies may mean that you cannot use all the functions of our website. 

 We use the "Real Cookie Banner" consent tool to manage the cookies and similar technologies used (tracking pixels, web beacons, etc.) and related consents. Details on how "Real Cookie Banner" can be found at https://devowl.io/de/rcb/datenverarbeitung/.

The legal basis for the processing of personal data in this context is Art. 6 para. 1 lit. c GDPR and Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the management of the cookies and similar technologies used similar technologies and the related consents.

The provision of personal data is neither contractually required nor necessary for the conclusion of a contract. You are not obliged to provide the personal data. If you do not provide the personal data, we will not be able to manage your consents.

 

5. analysis tools

a) Tracking tools

The tracking measures listed below and used by us are only carried out with your consent. With the tracking measures used, we want to ensure a needs-based design and continuous optimization of our website. ensure the continuous optimization of our website. On the other hand, we use the tracking measures to statistically record the use of our website and to evaluate it for the purpose of optimizing our offer for you. These interests are to be regarded as legitimate within the meaning of the aforementioned provision.

The respective data processing purposes and data categories can be found in the corresponding tracking tools.

I) Google Analytics

We use Google Analytics, a web analysis service of Google Ireland Limited (Gordon House, Barrow Street, Dublin, D04 E5W5, Dublin, Ireland; hereinafter referred to as "Google") for the purpose of designing and continuously optimizing our pages to meet your needs. hereinafter referred to as "Google"). In this context, pseudonymized user profiles are created and cookies (see section 4) are used. The information generated by the cookie about your use of this website such as

  • Browser type/version,
  • operating system used,
  • Referrer URL (the previously visited page),
  • Host name of the accessing computer (IP address),
  • Time of the server request,

are transmitted to a Google server in the USA and stored there. The information is used to evaluate the use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage for the purposes of market research and the needs-based design of this website. use of the website and the Internet for the purposes of market research and the needs-based design of this website. This information may also be transferred to third parties, if this is required by law or if third parties process this data on our behalf. Under no circumstances will your IP address be merged with other Google data. The IP addresses are anonymized so that they cannot be assignment is not possible (IP masking).

The data sent by us and linked to cookies, user identifiers (e.g. user ID) or advertising IDs are automatically deleted after 26 months. The deletion of data whose retention period has been reached takes place automatically once a month.

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. can be used.

In this context, we have concluded an order processing agreement with Google in order to ensure data protection-compliant processing for you.
Further information on data protection in connection with Google Analytics can be found in the Google Analytics Help ( https://support.google.com/analytics/answer/6004245?hl=de).

 

6. facebook page

We operate a Facebook page.
Meta Platforms Ireland Limited, Block J, Serpentine Avenue, Dublin 4, Ireland ("Meta Ireland") is a controller of the joint processing of personal data and the information required under Article 13(1)(a) and (b) GDPR can be found in Meta Ireland's data policy at https://www.facebook.com/about/privacy to find.

Meta Ireland and we have entered into a joint data processing agreement with corresponding responsibilities, a processing between two data controllers, which, among other things, regulates who performs which obligations. obligations. For example, that we provide you with this information here, and that Meta Ireland is responsible for the fulfillment of the rights of data subjects under Articles 15-20 of the GDPR with regard to all personal data processed by Meta Ireland. personal data processed by Meta Ireland. The agreement itself is a requirement of the GDPR and can be viewed at https://www.facebook.com/legal/controller_addendum.

We also use the Meta Business Tools in connection with the Facebook Page. Their terms and conditions as well as their regulations on the joint data responsibility of Meta Ireland and us can be viewed at https://www.facebook.com/legal/terms/businesstools can be viewed.

Further information on how Meta Ireland processes personal data, including the legal bases on which Meta Ireland bases these processing operations and ways for data subjects to exercise their rights against Meta Ireland can be found in Meta Ireland's Data Processing Policy at Ireland are available in Meta Ireland's Data Processing Policy at https://www.facebook.com/about/privacy.

7. rights of data subjects

You have the right:

  • to request information about your personal data processed by us in accordance with Art. 15 GDPR. In particular, you can request information about the purposes of processing, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right to lodge a complaint, the origin of your data, if it was not collected by us, as well as the existence of automated decision-making including profiling and, if applicable, meaningful information on its details;
  • in accordance with Art. 16 GDPR, to immediately request the correction of incorrect or incomplete personal data stored by us;
  • in accordance with Art. 17 GDPR, to demand the deletion of your personal data stored by us, unless the processing is necessary for the exercise of the right to freedom of expression and information, for the fulfillment of a legal obligation, for reasons of public interest or for the establishment, exercise or defense of legal claims;
  • in accordance with Art. 18 GDPR, to demand the restriction of the processing of your personal data if the accuracy of the data is contested by you, the processing is unlawful but you oppose the erasure of the data and we no longer need the data, but you need it for the establishment, exercise or defense of legal claims or you have objected to processing pursuant to Art. 21 GDPR;
  • in accordance with Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request that it be transmitted to another controller
  • in accordance with Art. 7 para. 3 GDPR, to withdraw your consent once given to us at any time. As a result, we may no longer continue the data processing that was based on this consent in the future and
  • to lodge a complaint with a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters.

 

8. right of objection

If your personal data are processed on the basis of legitimate interests pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR, you have the right to object to the processing of your personal data pursuant to Art. 21 GDPR, provided that there are reasons for this arising from your particular situation or if you object to direct marketing. data if there are reasons for this arising from your particular situation or if the objection is directed against direct advertising. In the latter case, you have a general right to object, which we will implement without implemented by us without specifying a particular situation.

If you wish to exercise your right of revocation or objection, simply send an e-mail to datenschutz@gvf.de .

 

9. data security

We use the widespread TLS (Transport Layer Security)/ SSL (Secure Socket Layer) method in conjunction with the highest level of encryption supported by your browser when you visit our website. supported by your browser. As a rule, this is 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is transmitted in encrypted form can be recognized by the closed display of the key or lock symbol in the address bar of your browser.

We also use suitable technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by third parties. unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

 

10. topicality and amendment of this privacy policy

Due to the further development of our website and offers on it or due to changed legal or official requirements, it may become necessary to change this data protection declaration. The current privacy policy can be accessed and printed at any time on the website at https://cya.international/datenschutz/ and printed out at any time.

This privacy policy is currently valid and was last updated in April 2025.


Cookie Consent with Real Cookie Banner