Sign Up Pricing About us Contact English
About us Contact Pricing Sign Up English

Privacy Statement

1. Privacy at a Glance

General Information

The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data is any data that can be used to personally identify you. Detailed information on data protection can be found in the full privacy policy below.

Data Collection on This Website

Who is responsible for data collection on this website?

The data processing on this website is carried out by the website operator. You can find the contact details in the section “Controller Information” below.

How do we collect your data?

Some data is collected when you provide it to us, for example by filling out a contact form.

Other data is automatically collected or collected with your consent by our IT systems when you visit the website. This mainly includes technical data (e.g. internet browser, operating system, or time of the page visit). This data is collected automatically as soon as you access this website.

What do we use your data for?
Part of the data is collected to ensure the proper functioning of the website. Other data may be used to analyze user behavior. If our website allows for the initiation or completion of contracts, the submitted data will also be used for handling inquiries, quotes, and orders.

What rights do you have regarding your data?

You have the right at any time to request free information about the origin, recipient, and purpose of your stored personal data. You also have the right to request the correction or deletion of this data. If you have given consent to the processing of your data, you may withdraw this consent at any time with future effect. Under certain circumstances, you also have the right to request the restriction of the processing of your personal data. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.

You can contact us at any time regarding this or other questions about data protection.

2. Hosting

We host the content of our website with the following provider:

Ycode

Provider: Ycode, Inc., 228 Park Ave S, PMB 54955, New York, NY 10003-1502, United States of America.

Ycode is a platform for building and hosting websites. When you visit our website, your personal data is processed on Ycode’s servers.

Ycode states that hosting is handled through certified data centers, primarily located within the European Union (EU) and compliant with established security standards (e.g., ISO 27001). However, because Ycode is a U.S.-based company, it is possible that data may also be accessed from the U.S. (e.g., for support or maintenance). To ensure adequate protection, such transfers are based on standard contractual clauses (SCCs) in accordance with Art. 46 GDPR or other applicable safeguards.

The use of Ycode is based on Art. 6(1)(f) GDPR. We have a legitimate interest in the reliable presentation of our website. Where consent has been requested (e.g., for storing cookies or accessing device data), processing is based solely on Art. 6(1)(a) GDPR and § 25(1) TDDDG. Consent can be withdrawn at any time.

Data Processing Agreement (DPA)

We have concluded a data processing agreement (DPA) with Ycode. This legally required contract ensures that Ycode processes personal data only according to our instructions and in compliance with the GDPR.

3. General Information and Mandatory Disclosures

Data protection

We take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations as well as this privacy policy.

When you use this website, various personal data may be collected. Personal data refers to any data that can be used to personally identify you. This privacy policy explains what data we collect, how we use it, and for what purpose.

Please note that data transmission over the internet (e.g., communication via email) may be subject to security vulnerabilities. A complete protection of data against access by third parties is not possible.

Controller Information

The controller responsible for data processing on this website is:

Trace Mobility GmbH
Annastr. 28
52062 Aachen, Germany

Phone: +49 241 98093599
Email: datenschutz@tracemobility.com

The controller is the natural or legal person who, alone or jointly with others, determines the purposes and means of processing personal data (e.g., names, email addresses, etc.).

Storage Period

Unless a more specific storage period is mentioned within this privacy policy, your personal data will remain with us until the purpose for the data processing no longer applies. If you request deletion or revoke your consent to data processing, your data will be deleted, provided there are no other legally permissible reasons for retaining your personal data (e.g., retention periods under tax or commercial law). In such cases, deletion takes place after these reasons cease to apply.

Legal Bases for Data Processing

If you have consented to data processing, we process your personal data based on Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR (for special categories of data). In the event of express consent to the transfer of personal data to third countries, processing is also based on Art. 49(1)(a) GDPR. If you have consented to the storage of cookies or access to information on your device (e.g., via device fingerprinting), processing is additionally based on § 25(1) of the German Telecommunications and Telemedia Data Protection Act (TDDDG). Consent can be revoked at any time.

If your data is necessary for the performance of a contract or for pre-contractual measures, we process your data based on Art. 6(1)(b) GDPR. If processing is necessary to fulfill a legal obligation, it is based on Art. 6(1)(c) GDPR. In other cases, processing is based on our legitimate interest according to Art. 6(1)(f) GDPR. The specific legal basis is detailed in the respective sections of this privacy policy.

Recipients of Personal Data

In the course of our business operations, we work with various external service providers. This may require the transfer of personal data to these entities. We only share personal data with external parties when it is necessary for contract performance, when legally obligated, based on a legitimate interest under Art. 6(1)(f) GDPR, or if another legal basis permits such transfer. In the case of data processors, personal data is only shared based on a valid data processing agreement. If processing is carried out jointly, a joint processing agreement is concluded.

Revocation of Your Consent to Data Processing

Many data processing operations are only possible with your explicit consent. You may revoke your consent at any time. The legality of processing carried out before the revocation remains unaffected.

Right to Object to Data Collection in Special Cases and to Direct Marketing (Art. 21 GDPR)

If data processing is based on Art. 6(1)(e) or (f) GDPR, you have the right to object at any time, on grounds relating to your particular situation, to the processing of your personal data. This also applies to profiling based on these provisions. The relevant legal basis can be found in this privacy policy. If you object, we will no longer process your affected personal data unless we can demonstrate compelling legitimate grounds that override your interests, rights, and freedoms, or the processing serves the establishment, exercise, or defense of legal claims (objection under Art. 21(1) GDPR).

If your personal data is processed for direct marketing purposes, you have the right to object at any time to such processing. This includes profiling insofar as it is related to direct marketing. If you object, your personal data will no longer be used for direct marketing purposes (objection under Art. 21(2) GDPR).

Right to Lodge a Complaint with a Supervisory Authority

If you believe there has been a violation of the GDPR, you have the right to lodge a complaint with a supervisory authority, particularly in your habitual residence, workplace, or the place of the alleged infringement. This right exists without prejudice to any other administrative or judicial remedies.

Right to Data Portability

You have the right to receive data that we process based on your consent or for contract performance in a commonly used, machine-readable format. You also have the right to have this data transferred directly to another controller, where technically feasible.

Access, Rectification, and Erasure

You have the right, within the framework of applicable laws, to request information about your stored personal data, its origin and recipients, the purpose of processing, and, if necessary, the right to correct or delete this data. For this and other questions related to personal data, you may contact us at any time.

Right to Restriction of Processing

You have the right to request the restriction of the processing of your personal data. You can contact us at any time regarding this. The right applies in the following cases:

  • If you contest the accuracy of your data, we will usually need time to verify it. You have the right to request restriction during the verification period.

  • If processing is unlawful, you may request restriction instead of deletion.

  • If we no longer need the data, but you require it for legal claims, you may request restriction instead of deletion.

  • If you have objected under Art. 21(1) GDPR, a balance must be made between your and our interests. Until it is clear whose interests prevail, you have the right to request restriction.

If processing is restricted, your data may only be stored – not otherwise processed – unless with your consent or for legal claims or the protection of the rights of another person or due to important public interest.

SSL or TLS Encryption

For security reasons and to protect the transmission of confidential content (such as orders or contact requests), this site uses SSL or TLS encryption. You can recognize an encrypted connection by the address bar in your browser changing from "http://" to "https://" and the lock icon appearing in your browser.

If SSL or TLS encryption is enabled, the data you transmit to us cannot be read by third parties.

Objection to Promotional Emails

The use of contact data published within the scope of legal obligations for the purpose of sending unsolicited advertisements or informational materials is hereby objected to. The operators of this site reserve the right to take legal action in the event of unsolicited promotional information, such as spam emails.

4. Data Collection on This Website

Cookies

Our website uses so-called "cookies." Cookies are small text files that do not harm your device. They are either stored temporarily for the duration of a session (session cookies) or permanently (persistent cookies) on your device. Session cookies are automatically deleted after your visit. Persistent cookies remain stored on your device until you delete them or your browser deletes them automatically.

Cookies can be set by us (first-party cookies) or by third-party providers (third-party cookies). Third-party cookies enable the integration of specific services from external providers within websites (e.g., live chat, analytics, or marketing tools).

Cookies serve various purposes. Many cookies are technically necessary, as certain website functions would not work without them (e.g., cookie consent management, language preferences, or contact forms). Other cookies are used to analyze user behavior or for marketing purposes.

Legal basis:

Necessary cookies are stored in accordance with Art. 6(1)(f) GDPR unless another legal basis is specified. The website operator has a legitimate interest in the technically correct and optimized provision of its services. If consent for storing cookies and comparable recognition technologies is obtained, data processing takes place exclusively on the basis of that consent (Art. 6(1)(a) GDPR and § 25(1) TDDDG). Consent can be withdrawn at any time.

You can configure your browser to notify you about cookie settings, allow cookies only in specific cases, reject all cookies, or delete them automatically when the browser is closed. Disabling cookies may limit the functionality of this website.

You can view and manage the specific cookies used at any time via the “Settings” link in the cookie banner or later on the Privacy page on the corresponding settings button. Reload the page after you have made any changes for the changes to become effective.

Consent Management with Usercentrics

We use the consent management platform provided by Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich, Germany, to manage the legally required consent for data processing. When you visit our website, a cookie is set to record your consent (or denial) in a legally compliant way. This information is not shared with third parties. Processed data: Consent status, timestamp, anonymous identifier, browser used, and device type.

Legal basis:

Art. 6(1)(c) GDPR (legal obligation) and Art. 6(1)(f) GDPR (legitimate interest in transparent user communication).

For more information, please refer to Usercentrics' privacy policy: https://usercentrics.com/privacy-policy/

Registration Form

If you submit inquiries via the registration form, we store your input, including the contact details you provided, to process your request and in case of follow-up questions. We do not share this data without your consent. The registration process is provided via Brevo (formerly Sendinblue). The provider is Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, Germany. Brevo processes your personal data on our behalf according to a data processing agreement. Data is processed exclusively on servers located in the EU.

Legal basis:

Data is processed based on Art. 6(1)(b) GDPR if your request is related to the performance of a contract or to carry out pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective handling of incoming inquiries (Art. 6(1)(f) GDPR) or your consent (Art. 6(1)(a) GDPR) if it was requested. Consent can be withdrawn at any time.

The data you provide via the contact form remains with us until you request its deletion, revoke your consent, or the purpose for storing it no longer applies (e.g., after your inquiry has been fully processed). Mandatory legal provisions – particularly retention periods – remain unaffected.

Contact by Email, Phone, or Chat (Brevo)

If you contact us via email, phone, or chat, we will store and process your inquiry, including all related personal data (such as name and content), for the purpose of responding to your request.

The live chat function is provided via Brevo (formerly Sendinblue). The provider is Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, Germany. Brevo processes your personal data on our behalf according to a data processing agreement. Data is processed exclusively on servers located in the EU.

Legal basis:

Processing is carried out in accordance with Art. 6(1)(b) GDPR if your inquiry relates to a contractual relationship or pre-contractual measures. Otherwise, processing is based on our legitimate interest in effective communication (Art. 6(1)(f) GDPR) or your consent (Art. 6(1)(a) GDPR), if given.

We retain this data until you request deletion, withdraw your consent, or the storage purpose no longer applies. Legal obligations to retain data (e.g., tax law) remain unaffected.

Further details: https://www.brevo.com/legal/privacypolicy/

5. Newsletter

Newsletter Data

If you would like to receive the newsletter offered on our website, we require your email address and information that allows us to verify that you are the owner of the provided email address and that you agree to receive the newsletter. No additional data is collected or only on a voluntary basis. We use this data exclusively for sending the requested newsletter and do not pass it on to third parties without your consent.

Legal basis:

The processing of the data entered in the newsletter subscription form is based solely on your consent (Art. 6(1)(a) GDPR). You can withdraw your consent to the storage of your data, your email address, and its use for sending the newsletter at any time, for example via the “unsubscribe” link in the newsletter. The legality of any data processing that has already taken place remains unaffected by the withdrawal.

The data you provide to us for the purpose of receiving the newsletter will be stored by us or the newsletter service provider until you unsubscribe from the newsletter and will be deleted from the mailing list after you unsubscribe or after the purpose has ceased. We reserve the right to remove or block email addresses from our mailing list at our own discretion, within the scope of our legitimate interest pursuant to Art. 6(1)(f) GDPR.

Data stored by us for other purposes remains unaffected.

After you unsubscribe from the newsletter distribution list, your email address may be stored in a blacklist if this is necessary to prevent future mailings. The data in the blacklist will only be used for this purpose and not merged with other data. This is both in your interest and in our interest to comply with legal requirements for sending newsletters (legitimate interest in the sense of Art. 6(1)(f) GDPR). Storage in the blacklist is not time-limited. You may object to the storage if your interests outweigh our legitimate interest.

6. Plugins and Tools

Cloudflare Turnstile

We use “Turnstile” by Cloudflare Inc., 101 Townsend St, San Francisco, CA 94107, USA to protect our web forms from automated abuse (e.g., bots). Turnstile helps verify that a user is human — typically without displaying a visible captcha.

The following data may be processed:

  • IP address

  • User agent (browser type and version, operating system)

  • Screen size and language settings

  • Mouse movements and user interactions

  • Referrer URL and timestamps

  • TLS fingerprints and similar technical identifiers

Legal basis:

The processing is based on Art. 6(1)(f) GDPR (legitimate interest in securing our website against abuse and spam). If consent is required (e.g., due to cookie banners), processing is carried out solely on the basis of Art. 6(1)(a) GDPR in conjunction with § 25(1) TDDDG. Consent may be withdrawn at any time.

Cloudflare may process data in the USA. These transfers are safeguarded using Standard Contractual Clauses (SCCs) under Art. 46 GDPR.

For more information, please refer to Cloudflare’s privacy policy: https://www.cloudflare.com/privacypolicy

Google Fonts

This site uses Google Fonts provided by Google to ensure consistent font display. When you open a page, your browser loads the required web fonts into its browser cache to display text and fonts correctly.

To do this, the browser you use must connect to Google’s servers. This lets Google know that your IP address has been used to access our website.

Legal basis:

The use of Google Fonts is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the consistent and visually appealing presentation of their website. If consent has been requested, processing takes place based on Art. 6(1)(a) GDPR and § 25(1) TDDDG. Consent can be withdrawn at any time.

More information about Google Fonts can be found at: https://developers.google.com/fonts/faq, and in Google’s privacy policy: https://policies.google.com/privacy

Note: This English version of the privacy policy is provided for convenience only. In the event of any discrepancies or legal interpretation, the German version shall prevail.

Terms of Service Privacy Statement Legal Notice
© 2025 Trace Mobility GmbH. All rights reserved.