Data protection and privacy

Thank you for your interest in wirefly GmbH & Co. KG. Data protection and privacy is particularly important for the management of wirefly GmbH & Co. KG. The internet pages of wirefly GmbH & Co. KG can be used without any indication of personal data. Should data collection become necessary and there is no legal basis for processing, we generally obtain the consent of the persons concerned.

The use of personal data, such as the name, address or e-mail address of the persons concerned, is always carried out in accordance with the General Data Protection Regulation (GDPR) and in compliance with the specific data protection provisions applicable to wirefly GmbH & Co. KG. Through this privacy policy we would like to inform the public about the type, scope and purpose of the personal data we process. Furthermore, interested parties are informed about their rights by means of this privacy policy.

Wirefly GmbH & Co. KG has implemented comprehensive technical and organizational measures to ensure the best possible protection of the processed personal data. Nonetheless, Internet-based data transmissions can always contain security vulnerabilities, so that complete protection cannot be guaranteed. Therefore, each person concerned is free to transfer any personal data that may be required to us by alternative means, e. g. by post or telephone.

  1. terms used
  2. name and address of the person responsible
  3. name and address of the data protection officer
  4. Cookies
  5. Gathering data and information
  6. Deletion and blocking
  7. Rights of data subjects
  8. applications
  9. payment service providers
  10. use of Google Analytics (with anonymization function)
  11. Hotjar (hotjar Ltd.)
  12. subscribe to our newsletter (Mailjet)
  13. use of Tito/
  14. Legal basis
  15. legitimate interests
  16. duration of storage
  17. provision of personal data
  18. automated decisions

terms used

The privacy policy of wirefly GmbH & Co. KG uses the terms used in the General Data Protection Regulation (GDPR). Our privacy policy should be easy to read and understand for all parties involved, therefore a brief explanation of the terms used below:

a) personal data

Personal data are all information that can be uniquely attributed to a natural person ("affected person") and are suitable for identifying them. An identifiable person is a person who can be uniquely identified by linking names, identifiers or the like to other data.

b) the person concerned

The data subject is the person whose personal data are processed by us.

c) processing

Processing is any operation involving personal data such as the collection, storage, adaptation and alteration, use, transmission or any other form of provision or linking, deletion and destruction.

d) restriction of processing

Restriction of processing is the identification of certain personal data with the aim of limiting their future use.

e) profiling

Profiling refers to the types of automated processing of personal data used for evaluations, analyses and forecasts, e. g. with regard to work performance, economic situation, health or whereabouts of these persons.

f) pseudonymisation

Pseudonymisation is the processing of personal data without direct identification of the person. This is ensured by means of technical and organisational measures that prevent the aggregation of information that could be used to identify the natural person.

g) controller responsible for data processing

The controller or controller shall be the natural or legal person, body or other body which, alone or in association with others, decides on the purposes and means of processing personal data.

h) processor of the order

A processor is a natural or legal person who processes personal data on behalf of the person actually responsible.

i) recipients

The recipient is the natural or legal person or other entity to which personal data are disclosed. Authorities receiving such data on a legal basis within the framework of an investigation shall not be considered as recipients.

j) third parties

Third parties shall be any other than the person concerned, the person responsible or the processor.

k) Consent

Consent is an expression of the will to process the data concerning the persons.

name and address of the person responsible

Person responsible according to the applicable data protection regulations:

wirefly GmbH & Co. KG
Kampstraße 4
T: +49 40 4321 4333
F: +49 40 4332 4331

name and address of the data protection officer

The data protection officer of wirefly GmbH & Co.

wirefly GmbH & Co. KG
Kampstraße 4
T: +49 40 4321 4333

Any person concerned may contact the Data Protection Officer directly for all questions relating to data protection.


The pages of wirefly GmbH & Co. KG use cookies. These are text files that are stored on a computer system via the Internet browser.

Cookies contain a so-called cookie ID. This ID can be used to identify an Internet browser when it is used to call up the website again. In the long term, we can evaluate their movements on the website and thus improve them.

Through the use of cookies, we also want to offer users of this website more user-friendly services that would not be possible without the use of cookies.

If you do not want us to store and analyze any information about your browsing behaviour, you can opt-out of this at any time. If you do not agree to the use of cookies, an opt-out cookie will be stored in your browser. This cookie does not contain any information whatsoever and is used solely to identify your objection. If you delete your cookies, the opt-out cookie will also be deleted. The opt-out procedure must then be repeated.

You can also deactivate the storage of cookies in your browser. You will find instructions on how to do this in the help section of your browser.

Gathering data and information

We collect a number of general data and information with each visit to the site. These general data and information are stored in the log files of the server. This includes browser types and versions, the operating system used, the Internet site visited by our site (referrer), the subpage accessed, the date and time of access, the Internet protocol address (IP address), the Internet service provider and other data and information that are used to avert danger in the event of attacks on our systems.

The wirefly GmbH & Co. KG does not draw any conclusions about the person concerned. Rather, this data is used to deliver the content of our site and to optimize advertising for it, to guarantee the functionality of our systems and to support law enforcement agencies in the event of a violation. Only an anonymous statistical evaluation is carried out. The server log files are stored separately from the other data.

Deletion and blocking

We process the data of the person concerned only for as long as it is necessary for the stated purpose or if this is required by law.

If the purpose of data collection ceases or if the legally prescribed storage period expires, the data will be blocked or deleted.

Rights of data subjects

Our data protection officer is available at all times as the first point of contact for exercising the rights listed below. He will initiate all further steps immediately.

a) right to obtain confirmation/ right to be informed

In order to exercise its right of confirmation of the processing concerned, the data subject may at any time turn to our Data Protection Officer or to any other employee of the controller.

b) right of access by the data subject

We provide free information at any time about the data stored about a person. We also provide information on the following issues:

  • the processing purposes
  • the categories of personal data
  • the recipients or categories of recipients to whom the personal data have been disclosed, in particular recipients in third countries or international organisations
  • where possible, the planned duration for which the data will be stored, or the criteria for determining that duration
  • with regard to the right to correct or delete personal data concerning that person or to restrict the processing or the right of opposition to such processing
  • with regard to the right of appeal to the competent supervisory authority
  • all available information about the origin of the data
  • the existence of automated decision-making, including profiling (Articles 22 (1) and (4) of the GDPR) including the logic involved and the scope and impact on the person concerned

c) right to correction

You have the right to have inaccurate personal data concerning you corrected. Furthermore, you may request the completion of incomplete data.

d) right to erasure (right to be forgotten)

It is their right to have their data stored by us deleted if one of the following reasons applies and processing is not necessary:

  • The purpose of the data collection has ceased to exist.
  • You revoke your consent in accordance with Article 6 (1)(a) of the GDPR or Article 9 (2)(a) of the GDPR, and there is no other legal basis for processing.
  • You file an objection pursuant to Art. 21 para. 1 GDPR and there are no primordial legitimate grounds for processing, or the data subject lodges an objection against processing pursuant to Art. 21 para. 2 GDPR.
  • The data have been processed without legal basis.
  • The deletion of data is necessary for the fulfilment of a legal obligation.
  • The personal data were collected in relation to the information society services offered in accordance with Art. 8 para.

If the data have been published by wirefly GmbH & Co. KG, we as the person responsible pursuant to Art. 17 para. 1 GDPR are obliged to delete the personal data, then wirefly GmbH & Co. KG takes appropriate measures to inform other persons in charge if necessary.

e) right to restrict processing

You have the right to restrict the processing of your data under the following conditions:

  • You deny the accuracy of the data and allow us sufficient time to verify this.
  • Processing is unlawful, but they refuse to delete personal data and instead demand that the use of the data be restricted.
  • We no longer need the data for the original purposes, but they do need the data for asserting, exercising or defending legal claims.
  • You have lodged an objection against the processing in accordance with Art. 21 para. 1 GDPR and it is still unclear whether our legitimate reasons outweigh their grounds.

f) right to data portability

You have the right to receive all data stored by us in a common format from us. You also have the right to transmit this data to another person in charge without hindrance by us, provided that the legal basis of the processing is correct (art. 6 par. 1 or art. 9 par. 2 GDPR) and the processing is carried out by means of automated procedures and is not necessary for the fulfilment of a task that is in the public interest or in the exercise of official authority.

g) right to object

You have the right to object at any time to the processing of your data on the basis of your personal situation, which is carried out on the basis of Art. 6 para. 1 letter e or f GDPR.

In this case, we will no longer process your personal data unless we have legitimate grounds for processing that outweigh your interests or the processing serves to enforce legal claims.

You have the right to object at any time to the processing of your personal data for advertising purposes and, if applicable, to profiling in connection with such advertising.

Depending on their personal situation, they may object to the use of data that could be used by wirefly GmbH & Co. KG for scientific research purposes or for other purposes in accordance with Article 89 (1) GDPR, provided that such fulfilment of one is in the public interest.

h) rights in relation to automated decisions in individual cases including profiling

You may object to the use of your data for the purpose of making automated case-by-case decisions (including profiling), provided that this decision would have legal effect or would otherwise affect them. Insofar as this is necessary for the performance of a contract between them and us, or if this is required by law or expressly approved by us, this right shall not apply.

If the decision to fulfil the contract or with its consent is made, wirefly GmbH & Co. KG shall take appropriate measures to protect its rights and freedoms. This includes at least the right of wirefly GmbH & Co. KG to intervene on the part of a person and to present their position and to challenge the decision.

i) Right to revoke consent under data protection law

You may revoke your consent to the processing of your personal data at any time.


We collect personal data from applicants for the purpose of carrying out the application procedure. If we conclude an employment contract with the applicant, we store the data for the purpose of carrying out the employment relationship. If no employment contract is concluded, the application documents will be automatically deleted two months after the cancellation if no legitimate interests of wirefly GmbH & Co. KG stand in the way of deletion. A legitimate interest would be, for example, an obligation to provide evidence in proceedings under the General Equal Treatment Act (Allgemeines Gleichbehandlungsgesetz, AGG).

payment service providers

Within the framework of contractual and other legal relationships, due to legal obligations or otherwise on the basis of our legitimate interests, we offer the persons concerned efficient and secure payment options and use other payment service providers in addition to banks and credit institutions (collectively "payment service providers").

The data processed by the payment service providers include inventory data such as name and address, bank data such as account numbers or credit card numbers, passwords, TANs and checksums as well as contract, total and recipient details. The information is required to complete the transactions. However, the data entered will only be processed and stored by the payment service providers. This means that we do not receive any account- or credit card-related information, but only information with confirmation or negative information about the payment. Under certain circumstances, the data may be transmitted by the payment service provider to credit agencies. The purpose of this transmission is to check identity and creditworthiness. Please refer to the general terms and conditions and the data protection information of the payment service providers.

For payment transactions, the terms and conditions and the data protection notices of the respective payment service providers apply, which can be accessed within the respective websites or transaction applications. We also refer to these for the purpose of further information and assertion of revocation, information and other rights affected.

Processed data types: inventory data (e.g. names, addresses), payment data (e.g. bank details, invoices, payment history), contract data (e.g. subject of contract, term, customer category), usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).

Data subjects: Customers, interested parties.

Purposes of processing: Contractual services and service.

Legal basis: Performance of contract and pre-contractual enquiries (Art. 6 para. 1 sentence 1 letter b. DSGVO), legitimate interests (Art. 6 para. 1 sentence 1 letter f. DSGVO).

Services used and service providers:

Stripe: payment services; service providers: Stripe, Inc., 510 Townsend Street, San Francisco, CA 94103, USA; Website:; Privacy Policy:

use of Google Analytics (with anonymization function)

We have integrated the component Google Analytics (with anonymization function) on this page. Google Analytics is a web analytics service. Web analysis involves the collection, collection and evaluation of data on the behaviour of website visitors. Among other things, the web analysis service collects data about which website it came from (referrer), which subpages of the website it accesses or how often and for how long it looks at a subpage. We use this to optimize the site and to analyse the cost-benefit analysis of Internet advertising.

The Google Analytics component is operated by Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

We use the addition "_gat. _anonymizeIp"for the web analysis via Google Analytics. This will reduce the IP address of your Internet connection by Google and thus make it anonymous if you access our site from the EU or another country party to the European Economic Area Agreement.

The purpose of the Google Analytics component is to analyse visitor flows on our site. Among other things, Google uses the data and information obtained to evaluate the use of our website in order to compile online reports for us that show the activities on our website and to provide other services related to the use of our website.

Google Analytics places a cookie on your computer. By setting the cookie, Google will be able to analyse the use of our site. Each time you access one of the individual pages of this site, your Internet browser is prompted by the Google Analytics component to submit data to Google. As part of this procedure, Google receives information about personal data, such as your IP address, which is used by Google, among other things, to trace the origin of the visitors and clicks and subsequently to enable commission payments.

The cookie is used to store your personal information, such as the access time, the place from which you accessed our site and the frequency of visits to our site by you. Whenever you visit our website, these personal data, including the IP address of the Internet connection used by the person concerned, are transmitted to Google in the United States of America. These personal data are stored by Google in the United States of America. Google may pass on this personal data collected via the technical procedure to third parties.

As already shown above, you can prevent a cookie and thus also the setting of cookies from permanently contradicting at any time by means of a corresponding setting of the Internet browser used. This browser setting would also prevent Google from setting a cookie on your computer. In addition, a cookie already set by Google Analytics can be deleted at any time via the browser.

Furthermore, they have the possibility to object to the collection of the data generated by Google Analytics relating to the use of this site as well as the processing of this data by Google and to prevent it. To do this you need to download and install a browser add-on under the link This browser add-on tells Google Analytics via JavaScript that no data or information about visits to websites may be transmitted to Google Analytics. The installation of the browser add-on is regarded by Google as a contradiction.

Further information and Google's privacy policy can be found at and Google Analytics is explained in more detail under this link

Hotjar (hotjar Ltd.)

Hotjar Ltd. is a European company based in Malta (Hotjar Ltd, Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta, Europe Tel: +1 (855) 464-6788). With this tool movements on the web pages, on which Hotjar is used, can be reconstructed (so-called Heatmaps). For example, you can see how far users scroll and which buttons they click and how often. Furthermore, the tool also makes it possible to obtain feedback directly from the users of the website. In this way we obtain valuable information in order to make our websites even faster and more customer-friendly. The above analysis is based on our legitimate interests in optimisation and marketing purposes and the design of our website in line with our interests in accordance with Art. 6 Para. 1 Letter f DSGVO. When using this tool, we pay particular attention to the protection of your personal data. In this way we can only track which buttons you click and how far they scroll. Areas of the website in which personal data from you or third parties is displayed are automatically hidden by Hotjar and are therefore not traceable at any time.

Hotjar offers every user the possibility to prevent the use of the Hotjar tool with the help of a "Do Not Track Header", so that no data about the visit of the respective website is recorded. This is a setting that supports all common browsers in the current version. For this purpose, your browser sends a request to Hotjar to deactivate the tracking of the respective user. If you use our website with different browsers or computers, you must set up the "Do Not Track Header" for each of these browsers or computers separately.

Detailed instructions with information about your browser can be found at:

More information about Hotjar Ltd. and the Hotjar tool can be found at:

The privacy policy of Hotjar Ltd. can be found at:

subscribe to our newsletter (Mailjet)

If you subscribe to our e-mail newsletter, we will regularly send you information about our offers. Your e-mail address is the only mandatory information for sending the newsletter. The provision of further data is voluntary and is used to address you personally. We use the so-called double opt-in procedure to send the newsletter. This means that we will only send you an e-mail newsletter after you have expressly confirmed that you agree to receive the newsletter. We will then send you a confirmation e-mail asking you to confirm that you wish to receive the newsletter in the future by clicking on the appropriate link.

By activating the confirmation link, you consent to the use of your personal data in accordance with Art. 6 para. 1 letter a DSGVO. When you register for the newsletter, we store your IP address entered by the Internet Service Provider (ISP) as well as the date and time of registration in order to be able to track any possible misuse of your e-mail address at a later point in time. The data collected by us when you register for the newsletter will be used exclusively for the purposes of advertising in the newsletter. You can unsubscribe from the newsletter at any time via the link provided for this purpose in the newsletter or by sending a corresponding message to the responsible person named at the beginning. After you have unsubscribed, your e-mail address will be immediately deleted from our newsletter distribution list unless you have expressly consented to the further use of your data or unless we reserve the right to make further use of your data which is permitted by law and about which we inform you in this declaration.

The newsletter will be sent by Mailjet (SAS Mailjet, 13-13bis, Rue de l'Aubrac - 75012 Paris, France). Mailjet's privacy policy can be found at

The mail service provider may use your data in pseudonymous form, i.e. without allocation to a user, to optimise or improve its own services, e.g. for technical optimisation of the dispatch and presentation of the newsletter or for statistical purposes. The dispatch service provider will use your data from the newsletter exclusively for the purpose of order processing and not to write to you or to pass the data on to third parties.

use of Tito/

We use the services of Team Tito Limited, of Unit 2, 64 Dame Street, Dublin 2 for subscriber registration, and the Tito Privacy Policy applicable thereto can be found at

The Service Provider will only use your data for the purpose of processing your order on our behalf and will not contact you or disclose the data to third parties.

Legal basis

Art. 6 para. 1 letter a GDPR serves wirefly GmbH & Co. KG as the legal basis for processing operations in which we obtain your consent for the respective processing purpose. If the processing of personal data is necessary for the performance of a contract to which they are party, as is the case, for example, with regard to processing operations necessary for the provision of a service or consideration, the processing shall be based on Article 6 (1)(b) of the GDPR. This also applies to pre-contractual measures, e. g. inquiries about our services. For the fulfilment of tax obligations, processing is based on Article 6 (1)(c) of the GDPR. If a visitor to our premises were injured, his or her name, age, health insurance data or other vital information would have to be passed on to a doctor, hospital or other third party. In this case, the processing would be based on Article 6 (1)(d) of the GDPR. Finally, processing operations could be based on Article 6 (1)(f) of the GDPR. This applies in cases in which wirefly GmbH & Co. KG or a third party is concerned with the protection of a legitimate interest, provided that their interests, fundamental rights and freedoms do not predominate. See also recital 47 sentence 2 of the GDPR.

legitimate interests

If the processing of data, as mentioned above, is based on Art. 6 para. 1 letter f of the GDPR, our legitimate interest is to carry out our business activities for the benefit of the well-being of our employees and shareholders.

duration of storage

Our criteria for the storage duration of data are the respective legal retention periods. After the expiry of this period, your data will be deleted or blocked routinely, as long as it is not necessary for the fulfilment or initiation of a contract.

provision of personal data

We would like to inform you that the provision of personal data is partly required by law or may result from contractual regulations. Sometimes it may be necessary to provide us with personal data in order to conclude a contract, which will then be processed by us. Failure to deliver would mean that the contract could not be concluded with you. Before any personal data is provided by you, you must contact our data protection officer. Our data protection officer will then inform you whether the provision of data is required by law or contract, whether there is an obligation to provide the data and what consequences it would have if the data were not made available.

automated decisions

We refrain from automatic decision-making or profiling.