Privacy policy

I. Introduction

As the operator of the website, Movia GmbH (hereinafter referred to as “Movia”) takes the protection of personal data very seriously. We treat personal data confidentially and in accordance with the statutory data protection regulations and on the basis of this data protection declaration. You can find the legal basis in particular in the General Data Protection Regulation (GDPR) and in the Federal Data Protection Act (BDSG).

When you use this website, various personal data are processed depending on the type and scope of use. Personal data is information that relates to an identified or identifiable natural person (hereinafter "data subject"). A natural person who can be identified directly or indirectly (e.g. by means of assignment to an online identifier) ​​is regarded as identifiable. This includes information such as name, address, telephone number and date of birth.

This data protection declaration informs you in accordance with Art. 12 ff. GDPR about the handling of your personal data when using our website. In particular, it explains what data we collect and what we use it for. It also informs you how and for what purpose this happens.

This data protection declaration expressly relates to the website-specific data processing processes when you visit our website at The protection of personal data also attaches great importance to the protection of personal data beyond the website-specific data processing processes. 


II. Person responsible:

The person responsible is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data (e.g. names, email addresses, etc.). The person responsible within the meaning of the GDPR and the applicable national data protection laws (in particular BDSG) as well as other data protection regulations is:     

Dr. Klaus Büttner

Tel .: 01794236628



III. Purposes and legal basis for processing data


  1. Calling up and visiting our website - server log files

For the technical provision of the website, it is necessary for us to process certain information automatically transmitted by your browser so that our website can be displayed in your browser and you can use the website. This information is automatically recorded every time you visit our website and automatically saved in so-called server log files. These are:

• Browser type and browser version

• the operating system used

• Website from which access is made (referrer URL)

• Host name of the accessing computer

• Date and time of access

• IP address of the requesting computer

The storage of the aforementioned access data is necessary for technical reasons to provide a functional website and to ensure system security. This also applies to the storage of your IP address, which is necessary and, under further conditions, can at least theoretically enable an assignment to your person. In addition to the above-mentioned purposes, we use server log files exclusively for the needs-based design and optimization of our website, purely statistically and without inferring any conclusions about your person. This data is not merged with other data sources, nor is the data evaluated for marketing purposes.

The access data collected as part of the use of our website is only stored for the period for which this data is required to achieve the above purposes. Your IP address is stored on our web server for a maximum of 8 weeks for IT security purposes. 

If you visit our website to find out about our range of products and services or to use them, the basis for the temporary storage and processing of access data is Art. 6 Para. 1 S. 1 lit. b GDPR, which allows the processing of data to fulfill a contract or to carry out pre-contractual measures. In addition, Article 6 (1) sentence 1 lit. f GDPR serves as the legal basis for the temporary storage of technical access data. Our legitimate interest here is to be able to provide you with a technically functioning and user-friendly website and to guarantee the security of our systems.

2. Contact form 

If you send us inquiries using the contact form, your message / message (comment), including the contact details you provided there, will be stored and processed accordingly for the purpose of processing and answering the request and in the event of follow-up questions. We do not pass this data on to third parties, unless this is necessary in the context of processing and answering your contact request or you have given us your consent.

If you contact us in the context of an existing contractual relationship or contact us in advance for information about our range of services or our other services, the data and information you provide will be used for the purpose of processing and answering your contact request in accordance with Art. 6 Para. 1 S. 1 lit. b GDPR (legal basis) processed.

The data you enter in the contact form will remain with us until the purpose for data storage / processing no longer applies (e.g. after your request has been processed). Mandatory legal provisions - in particular retention periods - remain unaffected.

3. Use of cookies and associated functions / technologies 

We sometimes use so-called cookies on our website. Cookies do not damage your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, more effective and safer and to enable the provision of certain functions. Cookies are small text files that are stored on your computer and saved by your browser. A cookie contains a characteristic string of characters that enables your browser to be clearly identified when you visit the website again.

Most of the cookies we use are so-called “session cookies”. They are automatically deleted at the end of your visit or your browser session (so-called transient cookies). Other cookies remain on your device for a specified period or until you delete them (so-called persistent cookies). These cookies enable us to recognize your browser the next time you visit. Upon written request, we are happy to provide further information on the functional cookies used. Please use the above contact details.

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when you close the browser. You can regularly obtain the procedure for deactivating cookies via the "Help" function of your Internet browser. If cookies are deactivated, the functionality and / or full availability of this website may be restricted. For further cookie-specific setting and deactivation options, please also see the individual explanations below on the cookies and associated functions / technologies used when visiting our website.

Some of the cookies that we use on our website come from third parties that help us to analyze the impact of our website content and the interests of our visitors, to measure the performance and performance of our website, or to send tailored advertising and other content to our or other websites set. As part of our website, we use both first party cookies (only visible from the domain you are currently visiting) and third party cookies (visible across domains and regularly set by third parties).

The cookie-based data processing takes place on the basis of your given consent in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR (legal basis) or on the basis of Art. 6 Para. 1 S. 1 lit. ) to protect our legitimate interests. Our legitimate interests are in particular to be able to provide you with a technically optimized, user-friendly and needs-based website and to guarantee the security of our systems. You can revoke consent that you have given us at any time, e.g. by deactivating the cookie-based tools / plugins listed in detail in the overview below. By making the appropriate settings, you can also object to processing based on legitimate interests.

Website uses the following cookie-based tools / plugins:

Technical session cookies, but no tracking cookies

4. Other Purposes of Processing

Compliance with legal regulations: We also process your personal data in order to comply with other legal obligations that we may have in connection with our business activities. These include, in particular, retention periods under commercial, trade or tax law. We process your personal data in accordance with Art. 6 Para. 1 S. 1 lit. c GDPR to fulfill a legal obligation to which we are subject.

Law enforcement: We also process your personal data in order to assert our rights and enforce our legal claims. We also process your personal data in order to be able to defend ourselves against legal claims. Finally, we process your personal data to the extent necessary to prevent or prosecute criminal offences. We process your personal data to protect our legitimate interests in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR (legal basis), insofar as we assert legal claims or defend ourselves in legal disputes or we prevent or investigate criminal offenses ( legitimate interest).

Consent: If you have given us your consent to the processing of personal data for specific purposes (e.g. sending information material and offers), the legality of this processing is given on the basis of your consent. A given consent can be revoked at any time. This also applies to the revocation of declarations of consent that were given to us before the GDPR came into force, i.e. before May 25th, 2018. Please note that the revocation is only effective for the future and processing until then is not affected.

III. Recipients of data

Within the company, those departments that need your data to fulfill our contractual and legal obligations will have access to it. Service providers and vicarious agents used by us (e.g. technical service providers, shipping companies, waste disposal companies) may also receive data for these purposes. We limit the transfer of your personal data to what is necessary, taking into account the data protection regulations. In some cases, the recipients receive your personal data as processors and are then strictly bound to our instructions when handling your personal data. In some cases, the recipients act independently under their own data protection responsibility and are also obliged to comply with the requirements of the GDPR and other data protection regulations.

Finally, in individual cases, we transmit personal data to our advisors in legal or tax matters, whereby these recipients are obliged to maintain special confidentiality and secrecy due to their professional status.

IV. Data transfer to third countries

When using the above tools, fonts, eg. Google, we may transfer your IP address to third countries (see above). The data transfer is based on the implementation decision (EU) 2016/1250 of the EU Commission of July 12, 2016 in accordance with Directive 95/46/EC of the European Parliament and of the Council on the adequacy of the protection offered by the EU-US data protection shield. Otherwise, we do not transfer your personal data to countries outside the EU or the EEA or to international organizations, unless expressly stated otherwise in this data protection declaration.

V. Duration of data storage

We process and store your personal data initially for the duration for which the respective purpose of use requires corresponding storage (see above for the individual processing purposes). This may also include the periods of initiation of a contract (pre-contractual legal relationship) and the execution of a contract. On this basis, personal data is regularly deleted as part of the fulfillment of our contractual and/or legal obligations, unless their temporary further processing is necessary for the following purposes:

• Fulfillment of legal storage obligations, which result, for example, from the German Commercial Code (§§ 238, 257 Para. 4 HGB) and the Tax Code (§ 147 Para. 3, 4 AO). The retention and documentation periods specified there are up to ten years.

• Preservation of evidence, taking into account the statute of limitations. According to §§ 194 ff. of the German Civil Code (BGB), these limitation periods can be up to 30 years, whereby the regular limitation period is three years.

VIII. Data security

Personal data is protected by us using appropriate technical and organizational measures to ensure an appropriate level of protection and personal to protect the rights of the data subjects. The measures taken serve, among other things, to prevent unauthorized access to the technical facilities used by us and to protect personal data from unauthorized access by third parties. In particular, this website uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as your contact requests that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line. If SSL or TLS encryption is activated, the data that you transmit to us cannot be read by third parties. Nevertheless, we would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security gaps. A complete protection of the data from access by third parties is not possible in this respect.

VI. Your rights as a data subject

You are entitled to the following rights as the data subject under the legal requirements:

Right to information: You are entitled at any time within the scope of Art. 15 DS-GVO to request confirmation from us as to whether we are processing personal data relating to you; if this is the case, you are also entitled under Art automated decision-making and, in the case of third-country transfers, the appropriate safeguards) and to receive a copy of your data. The restrictions of § 34 BDSG apply.

Right to rectification: According to Art. 16 DS-GVO, you are entitled to request that we correct the personal data stored about you if it is inaccurate or incorrect.

Right to erasure: You are entitled, subject to the requirements of Art. 17 GDPR, to request that we immediately erase personal data concerning you. The right to deletion does not exist, among other things, if the processing of the personal data is required, for example, to fulfill a legal obligation (e.g. statutory storage obligations) or to assert, exercise or defend legal claims. In addition, the restrictions of § 35 BDSG apply.

Right to restriction of processing: You are entitled, under the conditions of Art. 18 DS-GVO, to request that we restrict the processing of your personal data.

Right to data transferability: You are entitled, under the conditions of Art. 20 DS-GVO, to request that we provide you with the personal data that you have provided to us in a structured, common and machine-readable format.

Right of revocation: You can revoke your consent to the processing of personal data at any time. This also applies to the revocation of declarations of consent that were given to us before the GDPR came into force, i.e. before May 25th, 2018. Please note that the revocation only applies to the future. Processing that took place before the revocation is not affected. An informal notification, e.g. by e-mail, to us is sufficient to declare the revocation.

Right of objection: You are entitled to object to the processing of your personal data under the conditions of Art. 21 DS-GVO, so that we have to stop processing your personal data. The right of objection only exists within the limits provided for in Art. 21 DS-GVO. In addition, our interests may conflict with the termination of processing, so that we are entitled to process your personal data despite your objection. We will take into account any objection to any direct marketing measures immediately and without reconsidering existing interests.

Information about your right of objection according to Art. 21 DS-GVO

You have the right at any time to object to the processing of your data, which is based on Art. 6 Para. 1 S. 1 lit. f GDPR (data processing on the basis of a balance of interests) or Art. 6 Para. 1 S. 1 lit. e DS-GVO (data processing in the public interest) to file an objection if there are reasons for this that arise from your particular situation.

If you file an objection, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

The objection can be made informally and should be addressed to

Right of appeal to a supervisory authority: Under the conditions of Art. 77 GDPR, you have the right to appeal to a competent supervisory authority. In particular, you can lodge a complaint with the supervisory authority responsible for us, e-mail, telephone or any other competent supervisory authority. A list of the data protection supervisory authorities and their contact details can be found at the following link:

VII. Obligation to provide data

In principle, you are not obliged to provide us with your personal data. However, if you do not do this, we will not be able to make our website fully available to you or to respond to your inquiries to us. Personal data that we do not necessarily need for the processing purposes mentioned above are marked as voluntary information.

VIII. Automated decision making/profiling

We do not use automated decision-making or profiling (an automated analysis of your personal circumstances).

XII. Updating and changing this data protection declaration

1. This data protection declaration is currently valid and has the status 15.1.2022

2. Due to the further development of our website and offers on it or due to changed legal or official requirements, it may become necessary to change this data protection declaration.