Privacy Policy of Velyxis
Last updated: June 4, 2026
Protecting your personal data is an important concern for us. Below, we inform you in detail about the handling of your data when using our SaaS hosting platform.
§ 1 General Information and Controller
This privacy policy applies to data processing on our platform. The controller for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is: Mark Holstein Camino los Rosales 10 38438 Las Canales (Icod de los Vinos) Spain Email: m.holstein@mail.de
§ 2 Data Collection When Visiting Our Website (Log files)
When using our website for informational purposes only, we only collect data that your browser transmits to our server. This includes: - The visited website - Date and time of access - Amount of data sent in bytes - Source/referrer from which you reached the page - Browser used - Operating system used - IP address of the requesting device Processing is carried out in accordance with Art. 6 Para. 1 lit. f GDPR based on our legitimate interest in improving the stability and functionality of our website.
§ 3 Data Processing for Contract Fulfillment and Billing
We process personal data if you provide it to us during registration or ordering. Processing is carried out in accordance with Art. 6 Para. 1 lit. b GDPR for the performance of the contract. For payment processing, we work with the payment service provider Stripe Payments Europe Ltd. Your payment data is transmitted directly to Stripe and processed there. Velyxis does not store full credit card data.
§ 4 Cookies and Local Storage
We use only technically necessary cookies to provide core website functions. No third-party tracking, marketing, or analysis scripts are loaded. The following cookies are set: - next-auth.session-token (or __Secure-next-auth.session-token): Stores the authentication status of the user session. - NEXT_LOCALE: Stores your preferred language setting. Since these cookies are strictly necessary to provide the services you explicitly requested, no prior consent via a cookie banner is required under applicable law (Art. 6 Para. 1 lit. f GDPR, § 25 Para. 2 TDDDG).
§ 5 Data Security
To protect the security of your data during transmission, we use state-of-the-art encryption methods (e.g. SSL/TLS via HTTPS). All WordPress instances are hosted on a secure, certified Kubernetes infrastructure within the European Union (Germany). The system is protected by eBPF kernel monitoring and a Web Application Firewall (WAF).
§ 6 Processors and Data Disclosure
To provide our services, we use carefully selected service providers as processors in accordance with Art. 28 GDPR (e.g. hosting and billing service providers). Your data will not be passed on to other third parties unless we are legally obliged to do so or it is absolutely necessary for contract fulfillment.
§ 7 Retention Period
We store your personal data only as long as necessary to achieve the purposes stated herein or as prescribed by the retention periods provided by law (e.g. tax and commercial retention obligations). The data is then routinely deleted.
§ 8 Your Rights as a Data Subject
You have the right to: - Information about your data stored by us (Art. 15 GDPR) - Rectification of incorrect data (Art. 16 GDPR) - Erasure of your data stored by us (Art. 17 GDPR) - Restriction of data processing (Art. 18 GDPR) - Data portability (Art. 20 GDPR) - Objection to data processing (Art. 21 GDPR) You also have the right to lodge a complaint with a data protection supervisory authority about our processing of your personal data.