Data Protection - Privacy Policy

Last updated: April 2026  ·  Applies to: kogsy.care
This policy covers data processed through this website only. Data processing within care settings - including radar-based movement monitoring operated by home care providers - is governed by separate data processing agreements concluded directly with those operators.

1. Controller

The controller responsible for data processing on this website is:

HG Connect UG (haftungsbeschränkt)
Spatzenweg 17
85238 Petershausen
Germany
Email: hello@kogsy.care

HG Connect UG operates the Kogsy brand. Kogsy is not a separate legal entity.

2. What Data We Collect and Why

2.1 Server Log Files

When you visit this website, our hosting provider automatically collects and stores information in server log files. This includes:

  • Browser type and version

  • Operating system

  • Referrer URL

  • Hostname of the accessing device

  • Date and time of the server request

  • IP address (anonymised or in full, depending on hosting configuration)

This data is not combined with other data sources. It is collected on the basis of our legitimate interest in the technically secure and stable operation of this website (Art. 6(1)(f) GDPR). Retention period: up to 14 days, then automatically deleted.

2.2 Contact Form

If you submit an enquiry via our contact form, we process the data you enter - including your name, email address, and message content — for the purpose of handling your enquiry and any follow-up questions.

Legal basis: Art. 6(1)(b) GDPR (processing necessary for steps prior to entering into a contract) or Art. 6(1)(f) GDPR (our legitimate interest in responding to enquiries), as applicable.

Retention: We store contact enquiry data for as long as necessary to process the request, and for up to 3 years thereafter for documentation purposes, unless a longer retention period is required by law.

2.3 Email Communication

If you contact us directly by email, your email address, name, and the content of your message will be stored and used solely for the purpose of responding to your enquiry. Legal basis: Art. 6(1)(f) GDPR.

2.4 Cookies

This website uses only technically necessary cookies required for the website to function. These cookies do not track you across websites and are not used for advertising purposes. If we add analytics or third-party services in the future, this policy will be updated and appropriate consent mechanisms will be implemented before deployment.

3. Data Sharing and Recipients

We do not sell, trade, or rent your personal data. Data may be shared with the following categories of recipients:

  • Hosting provider: Server infrastructure and log data. The provider acts as a data processor under a data processing agreement.

  • Email service providers: Used solely for transactional communication.

  • Legal or regulatory authorities: Only where required by applicable law.

All processors are contractually bound and operate within the European Economic Area (EEA), or where outside the EEA, subject to appropriate safeguards under Art. 46 GDPR.

4. Data Transfers Outside the EEA

Where personal data is transferred to countries outside the European Economic Area, we ensure that appropriate safeguards are in place - typically Standard Contractual Clauses (SCCs) approved by the European Commission - or that the transfer is covered by an adequacy decision.

5. Your Rights

Under the GDPR, you have the following rights regarding your personal data:

  • Right of access (Art. 15 GDPR): You may request confirmation of whether we process your data and, if so, a copy of that data.

  • Right to rectification (Art. 16 GDPR): You may request correction of inaccurate or incomplete data.

  • Right to erasure (Art. 17 GDPR): You may request deletion of your data, subject to applicable legal retention obligations.

  • Right to restriction of processing (Art. 18 GDPR): You may request that we restrict processing in certain circumstances.

  • Right to data portability (Art. 20 GDPR): You may request your data in a structured, machine-readable format where processing is based on consent or contract.

  • Right to object (Art. 21 GDPR): You may object at any time to processing based on our legitimate interests (Art. 6(1)(f) GDPR).

  • Right to withdraw consent (Art. 7(3) GDPR): Where processing is based on your consent, you may withdraw it at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, contact us at: hello@kogsy.care

6. Right to Lodge a Complaint

You have the right to lodge a complaint with a data protection supervisory authority. The authority responsible for HG Connect UG is:

Bayerisches Landesamt für Datenschutzaufsicht (BayLDA)
Promenade 18
91522 Ansbach
Germany
www.lda.bayern.de

You may also lodge a complaint with the supervisory authority of your country of residence or place of work.

7. Security

This website uses TLS encryption (HTTPS) for all data transmission. We take appropriate technical and organisational measures to protect your personal data against accidental or unlawful destruction, loss, alteration, or unauthorised disclosure.

8. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. The date of the last update is indicated at the top of this page. We encourage you to review this policy periodically.

9. Contact

For any questions or concerns regarding this Privacy Policy or the handling of your personal data, please contact:

HG Connect UG (haftungsbeschränkt)
Attn: Data Protection
Spatzenweg 17, 85238 Petershausen, Germany
Email: hello@kogsy.care