Home About us Contact

Language

Privacy Policy

Learn how we protect and use your data

Last updated: April 20, 2026

The German version of this policy is the only legally binding version.

Introduction

At InvisibleX, we process personal data only in accordance with applicable data protection law, in particular the General Data Protection Regulation (GDPR). This Privacy Policy explains which personal data we process, for which purposes, on which legal bases, and which rights you have.

What Data We Collect

We process personal data that you provide when using our website, creating an account, placing an order, signing documents electronically, or contacting us. Where certain information is required for concluding or performing a contract, we identify it accordingly. Without such mandatory information, we may be unable to conclude the contract or fully provide our services:

  • Personal identification data such as name, address, date of birth, email address(es), and phone number(s)
  • Payment and billing data required for transaction processing
  • Usage, device, and security-related technical data generated when using our website
  • Communication data and content of enquiries that you send to us

How We Use Your Data

We process your data in particular to initiate, perform, and administer contracts, manage your customer account, process payments, prepare and document deletion requests, communicate with you, ensure IT security, and comply with statutory retention and documentation obligations. Depending on the processing activity, the legal bases are in particular Art. 6(1)(b) GDPR (contract and pre-contractual steps), Art. 6(1)(c) GDPR (legal obligation), Art. 6(1)(f) GDPR (legitimate interests in secure and efficient operation), and, where applicable, Art. 6(1)(a) GDPR (consent). We do not sell your personal data.

How We Protect Your Data

We implement appropriate technical and organisational measures to protect your personal data. These include, in particular, access restrictions, encryption, secure transmission channels, and measures to ensure confidentiality, integrity, and availability. We store personal data only for as long as necessary for the relevant purposes. Contract and billing data are retained beyond that period where statutory retention obligations apply; after that, the data is deleted or restricted. Data from enquiries is generally deleted once the matter has been resolved, unless statutory or contractual retention obligations require longer storage.

Third-Party Providers

To provide our services, we use external service providers as recipients or processors. Personal data is disclosed only where this is necessary for the relevant service, where a valid legal basis exists, and where applicable data protection requirements are met. The service providers we use can in particular be assigned to the following categories:

Payment service providers

For payment processing, payment service providers may process payment and billing data to the extent necessary for contract performance and payment handling.

Signature and document service providers

For the electronic signing and provision of contract-related documents, such providers may process identification, contact, contract, and signature data.

Hosting and infrastructure providers

For the technical operation of our platform, hosting and infrastructure providers may process account, usage, and system data.

Security and network service providers

To provide, secure, and protect our website against misuse, security and network service providers may process IP addresses and technical connection or device data.

Communication service providers

For sending and receiving service-related communications, communication service providers may process email addresses, message content, and technical delivery data.

Optional marketing and reach measurement services

Where you have given consent, we may use optional marketing and reach measurement services that process usage and device data. Such services are activated only on the basis of your consent and may involve transfers to third countries; where applicable, we provide information about appropriate safeguards in the context of the respective processing.

Your Rights

Subject to the statutory requirements, you have the following rights. You may also withdraw any consent you have given at any time with effect for the future. In addition, you have the right to lodge a complaint with a data protection supervisory authority, in particular at your place of habitual residence, work, or the place of the alleged infringement:

  • Right of access to your stored data and to rectification of inaccurate data
  • Right to erasure and restriction of processing within the statutory framework
  • Right to data portability and to object to processing based on legitimate interests
  • Right to withdraw consent and to lodge a complaint with a supervisory authority

Cookies, Local Storage and Tracking

We use technically necessary cookies and local storage where required to provide the website, store your language settings, enable login functions, document your cookie choices, and temporarily save unfinished checkout entries as a draft on your device. Where optional marketing or reach measurement involves storing information on your device or accessing information already stored there, this takes place only on the basis of your consent. You may withdraw consent at any time with effect for the future via the cookie settings. Browser data and local-storage entries can also be deleted via your browser or device settings.

Contact Us

The controller for the processing of personal data is: InvisibleX (Simon Walz, Kevin Hahn, Richard Weissgerber & Nico Weissgerber GbR) Am Alten Sportplatz 20 35423 Lich Germany Email: [email protected] Phone: +49 173/7010357 If you have any questions about this Privacy Policy or wish to exercise your rights, you may contact us at any time.