Privacy policy
The protection of your personal data is of the utmost importance to us at WEESS GmbH. We therefore process your personal data exclusively in accordance with the applicable data protection regulations, in particular the General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG). In this privacy policy, we inform you about the nature, scope and purpose of the collection and use of your personal data.
Privacy policy
1. Data controller
The controller responsible for the processing of your personal data is:
WEESS GmbH
Graf-Adolf Str. 14, 40212 Düsseldorf, Germany
+49-211-6509-7777
info@eu.weess.com
2. Collection and processing of personal data
When you use our website, we collect personal data that you actively provide to us, for example by filling in forms, subscribing to the newsletter or submitting enquiries. Personal data includes:
-Name
-Email address
-Telephone number
-Address
-IP address
-Usage data (e.g. pages visited, click behaviour)
In addition, we automatically collect data generated when you use our website, for example through cookies or similar technologies.
3. Purpose of data processing
Your personal data is processed for the following purposes:
-Processing enquiries and orders
-Sending of information material and newsletters (provided you have given your consent)
-Improving and adapting our offers and services
-Execution of contracts and fulfilment of contractual obligations
-Compliance with legal requirements, such as accounting and tax retention obligations
-Ensuring the security of our IT systems and website
4. Legal basis for data processing
The processing of your personal data is carried out on the basis of the following legal grounds:
-Consent (Art. 6(1)(a) GDPR): If you give us your explicit consent to process certain personal data, e.g. to receive newsletters.
-Contract performance (Art. 6(1)(b) GDPR): Where processing is necessary for the performance of a contract or for the implementation of pre-contractual measures.
-Legal obligations (Art. 6(1)(c) GDPR): Where processing is necessary for compliance with a legal obligation.
-Legitimate interests (Art. 6(1)(f) GDPR): Where we have a legitimate interest in processing your data, e.g. to ensure IT security or to optimise our website.
5. Disclosure of data to third parties
Your personal data will only be disclosed to third parties if this is necessary to fulfil a contract, if you have given your prior consent, or if we are legally obliged to do so. Your data may be disclosed to third parties, for example, when using payment service providers, dispatching products, or engaging external service providers for technical services (e.g. hosting, maintenance of our website).
6. Transfer of data to third countries
In some cases, it may be necessary to transfer your personal data to countries outside the European Union (EU) or the European Economic Area (EEA). Such transfers will only take place if an adequate level of data protection exists in the recipient country, for example through an agreement under the EU-US Privacy Shield or standard contractual clauses.
7. Retention period for your data
We only store your personal data for as long as is necessary to fulfil the purposes set out above or as required by law. Once the statutory retention periods have expired, the data will be deleted or anonymised.
8. Your rights as a data subject
You have the right at any time to:
-Right of access (Art. 15 GDPR): You may request confirmation from us as to whether we are processing your personal data and, if so, obtain information about that data.
-Rectification (Art. 16 GDPR): If your personal data is inaccurate or incomplete, you may request that it be rectified.
-Erasure (Art. 17 GDPR): You may request the erasure of your personal data if it is no longer required or if you have withdrawn your consent.
-Restriction of processing (Art. 18 GDPR): Under certain circumstances, you may request that the processing of your personal data be restricted.
-Data portability (Art. 20 GDPR): You may request that your personal data be provided to you in a structured, commonly used and machine-readable format.
-Objection (Art. 21 GDPR): You may object to the processing of your personal data if it is based on a legitimate interest or is used for direct marketing purposes.
If you wish to exercise any of these rights, please contact us at the address given above.
9. Security of your data
We take technical and organisational measures to protect your data against loss, destruction, unauthorised access, alteration or disclosure. Despite these security measures, complete security cannot be guaranteed when data is transmitted over the internet.
10. Cookies and tracking technologies
We use cookies and similar technologies on our website to analyse website usage and to provide you with a better user experience. You can adjust or disable the use of cookies in your browser settings. Please note, however, that disabling cookies may restrict some of the website’s functions.
11. Changes to this privacy policy
We reserve the right to amend this privacy policy at any time. Any changes will be published on this website, and the date of the last update will be displayed at the end of this policy.
12. Contact
If you have any questions or concerns regarding this privacy policy or the processing of your personal data, please feel free to contact us at any time:
WEESS GmbH
Graf-Adolf Str. 14, 40212 Düsseldorf, Germany
+49-211-6509-7777
info@eu.weess.com
As of March 2026