Privacy Policy

Last updated: March 27, 2026
 

1. Data Controller

​

The entity responsible for data processing on this website is:

mylantech GmbH
Blütenstraße 15
80799 Munich, Germany
📧 info@mylantech.de

​

2. Data Protection Officer

​

We have appointed an external Data Protection Officer:

Marvin Schmidt
DSEV Consulting & Akademie GmbH
Am Mittleren Moos 53
86167 Augsburg, Germany

Phone: +49 (0) 821 999 639 10
📧 beratung@dsev.online

You may contact the Data Protection Officer at any time regarding all data protection matters.

​

3. Hosting

​

This website is hosted by Wix (Wix.com Ltd.).

Wix stores data on servers located in the EU, the USA, and other countries.
Data transfers to third countries are safeguarded by appropriate measures, such as Standard Contractual Clauses (SCCs).

For more details, please refer to Wix’s privacy policy.

 

4. Scope

 

This Privacy Policy applies to all personal data collected through our website, services, or other communication channels.

Personal data means any information relating to an identified or identifiable natural person.

 

5. Legal Basis for Processing

​

We process personal data based on:

• Art. 6(1)(b) GDPR – Contractual performance or pre-contractual measures

• Art. 6(1)(a) GDPR – Consent (e.g., cookies, marketing)

• Art. 6(1)(f) GDPR – Legitimate interest (security, functionality, optimization)

• Art. 6(1)(c) GDPR – Legal obligations

 

6. Data Collection

 

6.1 Automatically Collected Data

 

When visiting the website, the following data is collected:

• IP address

• Browser type and version

• Operating system

• Date and time of access

• Pages visited

Purpose: Ensuring functionality, security, and optimization
Retention: 7–14 days, up to 30 days for security purposes

 

6.2 Contact Forms / Emails

​

• Name

• Email address

• Message content

Purpose: Processing inquiries

Retention: Until completion + 1 year

 

6.3 Newsletter & Marketing

​

• Email address

• Consent status

Purpose: Sending marketing communication
Retention: Until withdrawal

 

6.4 Minors

 

Our services are not directed at individuals under 16 without parental consent.

 

7. Cookies & Consent Management

 

We use cookies and similar technologies.

Consent is managed via Usercentrics.

Usercentrics ensures that:

• Cookies requiring consent are only activated after approval

• Consent is documented

• Withdrawal is possible at any time via the “Cookie Settings” link

 

Cookie Categories

​

CategoryPurposeLegal BasisRetention

EssentialWebsite operationArt. 6(1)(f) GDPRSession / up to 30 days

FunctionalPreferencesArt. 6(1)(a) GDPRUntil withdrawal

AnalyticsStatisticsArt. 6(1)(a) GDPRup to 13 months

MarketingAdvertisingArt. 6(1)(a) GDPR6–12 months

 

8. Use of AI and Cloud Services

​

Data is processed only within customer-specific environments where applicable.

• No general AI model training with customer data

• Demo environments use anonymized data

 

9. Data Transfers to Third Countries

 

Transfers outside the EU/EEA occur only if:

• an adequacy decision exists, or

• Standard Contractual Clauses (SCCs) are applied

Copies can be requested.

 

10. Rights of Data Subjects

 

You have the right to:

• Access (Art. 15 GDPR)

• Rectification (Art. 16 GDPR)

• Erasure (Art. 17 GDPR)

• Restriction (Art. 18 GDPR)

• Data portability (Art. 20 GDPR)

• Objection (Art. 21 GDPR)

• Withdraw consent (Art. 7(3) GDPR)

 

📧 Contact: datenschutz@mylantech.de

 

11. Data Breaches

 

We report data breaches to the competent authority within 72 hours where required.

 

12. Supervisory Authority

 

Bavarian Data Protection Authority (BayLDA)
Promenade 18
91522 Ansbach
Germany
📧 poststelle@lda.bayern.de

 

13. Data Security

 

We implement appropriate technical and organizational measures (TOMs), including:

• SSL/TLS encryption

• Access controls

• Two-factor authentication

• Backups

• Firewalls

 

14. Changes

 

We may update this Privacy Policy at any time to reflect legal or technical changes.