General Information and Scope

The provider (hereinafter also referred to as “we”) collects, uses, and stores your personal data in accordance with the provisions of the EU General Data Protection Regulation (GDPR), the German Federal Data Protection Act, and the Telemedia Act. Personal data refers to individual details about the personal or factual circumstances of a specific or identifiable natural person. Below, we inform you about the type, scope, and purpose of the collection and use of personal data by the provider on the provider’s website at aerion.app.

Who is responsible for data processing and whom can you contact?

The party responsible for data processing is:

CoffeeCup GmbH
Hohenzollernstraße 81
80796 Munich
Email: info@aerion.app
Commercial Register No.: HRB 211838

You can reach the Data Protection Officer at: security@aerion.app

What data is processed and where does it come from?

We process personal data (Art. 4 No. 1 GDPR) that we receive in the course of operating this website. When you access our websites, your internet browser (for technical reasons) transmits data to our web server. The following data is recorded during an active connection between your internet browser and our web server:

  • Date and time of request

  • Name of the requested file

  • Page from which the file was requested

  • Access status (file transferred, file not found, etc.)

  • Browser and operating system used

  • Complete IP address of the requesting computer

  • Amount of data transferred

Use of Cookies

Our website uses “cookies” on the basis of Art. 6 para. 1 lit. f GDPR. A cookie is a file that stores device-related information on the user’s device (PC, tablet, smartphone, etc.). When our website is accessed from the relevant device, our server can retrieve information from the cookie. This information can be used in various ways, such as tailoring ads to user behavior recorded by cookies or gathering statistical data about website usage.

You can check which cookies are stored in your browser, adjust cookie settings, or delete cookies via your browser settings. If you do not wish data to be stored in cookies, you can set your browser to notify you when cookies are being set and allow them only in individual cases. If you block cookies completely, some website functions may not work as expected.

Necessary Cookies

Without your consent, we store the following cookie:

  • Name: cookiePolicy

  • Function: Stores information about accepted cookies

  • Storage Duration: 30 days

Further Cookies

Google Analytics

This website uses Google Analytics with the consent of visitors. Google Analytics is a web analytics service provided by Google Inc. (“Google”). Google Analytics uses cookies to enable an analysis of website usage. Data generated by the cookie is usually transmitted to a Google server in the USA and stored there. With IP anonymization activated, your IP address will be shortened within EU/EEA states. Only in exceptional cases will the full IP be sent to Google servers in the USA.

Cookies used:

  • _ga – Distinguishes visitors, storage: 2 years

  • _gid – Distinguishes visitors, storage: 24 hours

  • gat_gtag_UA – Distinguishes visitors, storage: 1 hour

Intercom

We use Intercom (Intercom, Inc., USA) to stay in contact with users via the website. Privacy details: Intercom Privacy.

Cookies used:

  • intercom-session-* – Maintains Intercom session, storage: 7 days

  • intercom-id-* – Identifies anonymous visitors, storage: 9 months

Stripe

We use Stripe (Stripe, Inc., USA) for payment processing. Privacy details: Stripe Privacy.

Cookies used:

  • __stripe_sid – Fraud prevention, storage: 30 minutes

Google reCAPTCHA

We use Google reCAPTCHA (Google Inc., USA) to protect against spam and bots. Legal basis: Art. 6 para. 1 lit. f GDPR. Details: Google Privacy & Google Terms.

SSL Encryption

For security reasons, our website uses SSL encryption to protect the transmission of confidential content, e.g., inquiries sent to us. You can recognize encrypted connections by “https://” in the browser’s address bar and the lock symbol. When SSL is active, transmitted data cannot be read by third parties.

Purpose and Legal Basis of Data Processing

We process website data on the basis of Art. 6 para. 1 lit. f GDPR. Our legitimate interest is conducting our business activities and communicating with you (Recital 47 GDPR).

Contact Form

We provide a contact form for electronic communication. Data entered (name, email, message) will be stored and processed for handling your inquiry. Alternatively, you may contact us by email. Data is used solely to respond to your request. Legal basis: Art. 6 para. 1 lit. f GDPR.

Transfer of Data to Third Countries

We do not transfer data collected on our website to third countries. However, through Google Analytics, reCAPTCHA, Intercom, and Stripe, data may be transferred to third countries (e.g., USA) without an adequacy decision by the European Commission.

Automated Decision-Making

We do not use automated decision-making pursuant to Art. 22 GDPR that has legal effects or similarly significant impacts on individuals.

Rights of Data Subjects

Under GDPR, you have the right:

  • To obtain information about stored personal data (Art. 15)

  • To correct, block, or delete incorrect personal data (Art. 16–18)

  • To receive personal data in a structured, machine-readable format and transfer it to another controller (Art. 20)

  • To object to processing based on Art. 6 para. 1 lit. e or f GDPR for reasons relating to your particular situation (Art. 21 para. 1)

Please send requests regarding your data to the contact details provided in our Imprint. Every data subject also has the right to lodge a complaint with a data protection supervisory authority.