Privacy

Privacy Policy

Last updated: 26 April 2026

1. Data Controller

The controller within the meaning of the General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG) is:

Arota GmbH

Ringstr. 13

84431 Rattenkirchen

Germany

Managing Director: Elfi Kobler · Amtsgericht Traunstein HRB 23393

E-Mail: ab [at] arota [.] de

2. Data We Collect

Server Log Files

When you visit our website, your browser automatically transmits the following data, which our server stores temporarily:

  • IP address (anonymised after 7 days)
  • Date and time of access
  • URL accessed and referrer
  • Browser type and operating system

Legal basis: Art. 6 para. 1 lit. f GDPR (legitimate interest in technically sound operation and security).

Contact by E-Mail

If you contact us by e-mail, we process your e-mail address and the content of your message solely for the purpose of handling your enquiry. Legal basis: Art. 6 para. 1 lit. b or f GDPR.

Cookies and Tracking

This website uses no tracking cookies, no analytics services (such as Google Analytics) and no social-media tracking. No external services are embedded. Fonts are rendered exclusively using system fonts on your device — no connection to any third party takes place.

3. Hosting

This website is hosted on a server located in Germany. The hosting provider processes connection data (IP address, timestamp, resources accessed) in the course of operations. A data processing agreement pursuant to Art. 28 GDPR is in place.

4. Retention Period

Personal data is stored only for as long as necessary for the respective purpose or as required by statutory retention obligations. Server log files are deleted automatically after no more than 30 days, unless a security-relevant incident requires longer retention.

5. Your Rights (Art. 15–22 GDPR)

You have the right to:

  • Access: Obtain information about the data we hold about you (Art. 15 GDPR)
  • Rectification: Have inaccurate data corrected (Art. 16 GDPR)
  • Erasure: Have your data deleted where no statutory retention obligation applies (Art. 17 GDPR)
  • Restriction: Restrict the processing of your data (Art. 18 GDPR)
  • Data portability: Receive your data in a machine-readable format (Art. 20 GDPR)
  • Object: Object to processing based on legitimate interests (Art. 21 GDPR)

To exercise your rights, please contact us at: ab [at] arota [.] de

6. Right to Lodge a Complaint

You have the right to lodge a complaint with the competent data protection supervisory authority. The authority responsible for Bavaria is the Bayerisches Landesamt für Datenschutzaufsicht (BayLDA), Promenade 27, 91522 Ansbach, Germany, www.lda.bayern.de.

7. Data Security

For security reasons and to protect the transmission of data, this website uses SSL/TLS encryption (HTTPS). You can recognise an encrypted connection by the padlock icon in your browser's address bar.

8. Changes to this Privacy Policy

We reserve the right to update this Privacy Policy to reflect changes in the legal situation or in the functionality of the website. The current version is always available at this link. Last updated: 26 April 2026.

← Back to Home