Legal Information

Privacy Policy

in accordance with GDPR (EU) 2016/679 and TTDSG – valid from 01.01.2026

Data Controller

arian IT Service GmbH

Monschauer Straße 12, 40549 Düsseldorf

Managing Director: Erdem Aklibasinda

HRB 108208, District Court Düsseldorf

Data Protection Inquiries

0800 800 81 80 (free of charge)
info@arian-it.de

No data protection officer required (§ 38 BDSG). Inquiries directly to management.

Data Processing

What we process and why

Legal basis for data processing

The processing of personal data is based on the following legal grounds: Art. 6 para. 1 lit. a GDPR – Consent Art. 6 para. 1 lit. b GDPR – Contract performance Art. 6 para. 1 lit. c GDPR – Legal obligation Art. 6 para. 1 lit. f GDPR – Legitimate interests § 25 TTDSG – Cookies/Tracking

Server log files

When visiting our website, the web host automatically records: IP address (pseudonymized), date/time, retrieved file, browser, operating system, referrer URL and data volume. Deletion after 30 days at the latest. Legal basis: Art. 6 para. 1 lit. f GDPR.

Cookies and Tracking (§ 25 TTDSG)

Technically necessary cookies (session, security) are set without consent (§ 25 para. 2 no. 2 TTDSG). Analytics cookies are activated only after explicit consent via our cookie banner. You can withdraw your consent at any time.

Google Analytics 4

Only after consent (§ 25 TTDSG, Art. 6 para. 1 lit. a GDPR). GA4 records page views, dwell time and click paths in pseudonymized form. IP addresses are shortened by default. Storage duration: 14 months. Third country transfer: Google LLC is certified under the EU-US Data Privacy Framework. More information: policies.google.com/privacy

Contact (form, email, phone)

We process your contact details (name, email, phone, message) to handle your inquiry. Legal basis: Art. 6 para. 1 lit. b GDPR. Deletion after 3 years, unless retention obligations apply.

Contract processing and customer data

We process master data, contract data, payment data (SEPA, encrypted) and communication data. Legal basis: Art. 6 para. 1 lit. b GDPR. Storage duration: business relationship + 10 years (retention obligations).

Managed Services and remote maintenance

As an IT service provider, we can technically access customer data (RMM, endpoint protection, backup, M365 backup, dark web monitoring). We act exclusively as data processor (Art. 28 GDPR) according to our customers' instructions. DPA: We conclude a data processing agreement with each customer. Request at: info@arian-it.de

Data processors

We employ carefully selected data processors (cloud hosting EU, RMM platform, email archiving, payment service providers, accounting). All are contractually obligated to comply with data protection. Overview available upon request.

Your rights

What you can demand from us

What data we have stored about you (Art. 15) Correction Have incorrect data corrected (Art. 16) Have your data deleted (Art. 17) Restriction Have processing restricted (Art. 18) Data portability Receive data in machine-readable format (Art. 20) Objection & withdrawal Object to processing or withdraw consent (Art. 21, Art. 7) To exercise your rights: info@arian-it.de

Right to complain (Art. 77 GDPR)

No profiling We do not use automated decision-making procedures or profiling (Art. 22 GDPR). External links We assume no responsibility for the data protection practices of linked third-party websites. State Commissioner for Data Protection and Freedom of Information NRW – Kavalleriestraße 2–4, 40213 Düsseldorf – Tel. +49 211 38424-0 – www.ldi.nrw.de This privacy policy may be adapted in case of changes to the legal situation or our business processes. The current version is always available on this website. Status: 01.01.2026 | arian IT Service GmbH | HRB 108208, District Court Düsseldorf