Privacy Policy

The controller within the meaning of the General Data Protection Regulation (GDPR) is:

We only process personal data of our users to the extent necessary to provide a functional website and our content and services. Personal data is generally only processed with the user's consent. An exception applies where prior consent cannot be obtained for practical reasons and processing is permitted by law.

The legal bases for processing personal data are in particular Art. 6(1)(a) GDPR (consent), Art. 6(1)(b) GDPR (contract performance), Art. 6(1)(c) GDPR (legal obligation), and Art. 6(1)(f) GDPR (legitimate interest).

This website is hosted by IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, Germany.

When you visit our website, IONOS automatically records so-called server log files. These contain, among other things:

• IP address of the requesting device
• Date and time of access
• Page or file accessed
• Browser and operating system used
• Referrer URL (previously visited page)
• Data volume transferred and HTTP status code

These data are not merged with other data sources. The legal basis is Art. 6(1)(f) GDPR (legitimate interest in the secure and uninterrupted operation of the website). Log files are deleted after a maximum of 30 days.

A data processing agreement has been concluded with IONOS SE pursuant to Art. 28 GDPR.

Our website uses a technically necessary cookie to store your cookie consent (localStorage entry coex_cookie_consent). This entry contains no personal data and is used solely to remember your preference.

The legal basis is Art. 6(1)(f) GDPR (legitimate interest in error-free operation). You can disable cookies in your browser settings or delete previously stored cookies at any time.

When you send us a request via the contact form on our website, the information you provide — including the contact details supplied — will be stored by us for the purpose of processing your enquiry and for any follow-up questions.

Incoming data is stored and processed in our CRM system HubSpot. The provider is HubSpot, Inc., 25 First Street, Cambridge, MA 02141, USA. HubSpot is a customer relationship management (CRM) service that processes data on our behalf on the basis of a data processing agreement pursuant to Art. 28 GDPR.

As HubSpot is based in the USA, personal data may be transferred to the United States. This transfer is safeguarded by the European Commission's Standard Contractual Clauses (Art. 46(2)(c) GDPR) and HubSpot's certification under the EU–US Data Privacy Framework.

The legal basis for processing data entered in the contact form is Art. 6(1)(b) GDPR (pre-contractual measures) and Art. 6(1)(f) GDPR (legitimate interest in handling customer enquiries). Data will be deleted once no longer required and provided no statutory retention obligations apply.

For more information, see HubSpot's privacy policy: legal.hubspot.com/privacy-policy

This website loads stylesheet resources via the content delivery network (CDN) of Tailwind CSS (cdn.tailwindcss.com). When loading this resource, your IP address is transmitted to the servers of Tailwind Labs, Inc. This is done on the basis of our legitimate interest in the technically correct display of the website (Art. 6(1)(f) GDPR).

Our website contains links to WhatsApp. Clicking such a link opens the WhatsApp application and initiates a conversation with us. Data is only transmitted to WhatsApp when you actively click the link. We have no influence over data processing by WhatsApp (Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland).

For information on how WhatsApp processes data, please visit: www.whatsapp.com/legal/privacy-policy

We reserve the right to use Google Analytics in the future. Google Analytics is a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Once Google Analytics is actively used, we will update this privacy policy accordingly and ask for your consent via the cookie banner.

Google Analytics is not currently active on this website.

You have the following rights regarding your personal data:

• Access (Art. 15 GDPR) – You may request information about the data we hold about you.
• Rectification (Art. 16 GDPR) – You may request correction of inaccurate data.
• Erasure (Art. 17 GDPR) – You may request deletion of your data, provided no statutory retention obligations apply.
• Restriction of processing (Art. 18 GDPR) – You may request that processing be restricted.
• Data portability (Art. 20 GDPR) – You have the right to receive your data in a machine-readable format.
• Objection (Art. 21 GDPR) – You may object to processing based on legitimate interests.
• Withdrawal of consent (Art. 7(3) GDPR) – You may withdraw any consent given at any time with effect for the future.

To exercise your rights, please contact: privacy@coex.supply

You have the right to lodge a complaint with a data protection supervisory authority regarding our processing of your personal data. The competent authority is: