Privacy Policy
1. Controller
The controller within the meaning of the General Data Protection Regulation (GDPR / DSGVO) is:
Transhover GmbHGrünauer Straße 57, 12557 Berlin, Germany
Managing Director: Andreas Hoffmann
E-mail: info@transhover.com · Phone: +49 1577 8929298
A data protection officer has not been appointed as required by law; if you have any questions regarding data protection, please contact us using the contact details given above.
2. General information, legal bases
We process personal data only to the extent necessary. The legal bases arise from Art. 6 para. 1 GDPR:
- lit. a — consent
- lit. b — performance of a contract or pre-contractual measures
- lit. c — compliance with a legal obligation
- lit. f — protection of legitimate interests
3. Your rights
You have the right of access (Art. 15), rectification (Art. 16), erasure (Art. 17), restriction of processing (Art. 18), data portability (Art. 20) and objection (Art. 21 GDPR). You may withdraw any consent given at any time with effect for the future (Art. 7 para. 3 GDPR).
You have the right to lodge a complaint with a supervisory authority (Art. 77 GDPR). The authority responsible for us is:
Berliner Beauftragte für Datenschutz und Informationsfreiheit (BlnBDI)
(Berlin Commissioner for Data Protection and Freedom of Information),
Alt-Moabit 59–61, 10555 Berlin — www.datenschutz-berlin.de
You may contact any supervisory authority of your choice.
4. Hosting and server log files (Netlify)
Our website is hosted by Netlify, Inc. (512 2nd Street, Suite 200, San Francisco, CA 94107, USA) and delivered via their Content Delivery Network. Each time the site is accessed, the server automatically collects what are known as server log files: IP address, date and time, the URL accessed, the volume of data transferred, the referrer, browser type and operating system. This data serves the secure and stable operation of the site as well as the prevention of attacks.
Legal basis: Art. 6 para. 1 lit. f GDPR (legitimate interest in a functional, secure provision of the website).
A data processing agreement pursuant to Art. 28 GDPR is in place with Netlify. The processing may involve a transfer to the USA. Netlify is certified under the EU-US Data Privacy Framework and additionally bases the transfer on the European Commission's Standard Contractual Clauses (Art. 46 GDPR).
5. Fonts
This website uses exclusively system fonts already present on the end device or fonts delivered locally via our own server. No fonts are loaded from external providers; a transmission of your IP address to third parties for this purpose does not take place.
6. Contacting us
If you contact us by e-mail or telephone, we process your details in order to handle your enquiry. The legal basis is Art. 6 para. 1 lit. b GDPR (for contract-related enquiries) or lit. f GDPR (legitimate interest in answering general enquiries).
7. Order processing in the shop
To process an order, we process the data you provide (name, address, e-mail address, order details). You can view the status of your order via a personalised link secured with an access token, which you receive with your order confirmation. The link only works with knowledge of the token.
Legal basis: Art. 6 para. 1 lit. b GDPR (performance of a contract). We retain order and invoice data for up to ten years on the basis of commercial and tax law obligations (§§ 257 HGB, 147 AO).
8. Payment processing (Mollie)
For payment processing we use the payment service provider Mollie B.V. (Keizersgracht 126, 1015 CW Amsterdam, Netherlands). Depending on the payment method chosen, the data required for the payment (e.g. name, address, invoice amount, possibly IBAN/BIC, transaction data) is transmitted to Mollie.
Mollie processes this data as an independent controller; Mollie's privacy notice also applies (www.mollie.com/legal/privacy). Legal basis: Art. 6 para. 1 lit. b GDPR (performance of a contract). No transfer to a third country takes place in this respect (registered office within the EU).
9. Transactional e-mail dispatch (Resend)
For sending order confirmations and other contract-related e-mails (including the acknowledgement of receipt of a withdrawal) we use the service Resend (Resend, Inc., USA). We process your e-mail address as well as the content and metadata of the respective message.
Legal basis: Art. 6 para. 1 lit. b GDPR (performance of a contract). A data processing agreement pursuant to Art. 28 GDPR is in place with Resend. The processing takes place in the USA; Resend is certified under the EU-US Data Privacy Framework and additionally uses the European Commission's Standard Contractual Clauses (Art. 46 GDPR).
10. Content management (Netlify Identity / Decap CMS)
The website content is maintained via a Git-based content management system with login via Netlify Identity. This affects only the login data of the editors, not the data of website visitors. Legal basis: Art. 6 para. 1 lit. f GDPR (secure content management). With regard to the US connection, the explanations under section 4 apply accordingly.
11. Cookies and local storage
This website does not use any cookies or storage technologies for analytics, tracking or marketing purposes. A consent banner is therefore not required.
Only technically necessary storage accesses are used, which are strictly required for the functions you have expressly requested (§ 25 para. 2 no. 2 TDDDG):
- Shopping cart / configuration — in your browser's local storage (localStorage), so that your selection is retained across page changes.
- Display setting (light/dark mode) — design preference stored in your browser's local storage.
- Payment session — technically required session attributes set within the Mollie checkout.
These entries remain on your device and are not evaluated for any further purposes. You can delete them at any time via your browser settings.
12. Changes to this privacy policy
We will adapt this privacy policy as soon as changes to our processing operations or the legal situation make this necessary. The version published on this page at any given time shall apply.