DE | EN
Hey Services ← Back to home
🛡 Privacy

Privacy Policy

Information on the processing of personal data pursuant to Articles 13 and 14 of the General Data Protection Regulation (GDPR).

Note: This is a courtesy English translation. The German version is the legally binding original.
Last updated: April 2026 — This privacy policy applies to the website at hey-services.de in the period before the launch of the actual web app.

1. Controller

The controller within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws is:

Company
Haedge Consulting GmbH
Address
Grossbeerenstrasse 10, 28211 Bremen, Germany
P.O. Box
Postfach 10 06 15, 28006 Bremen, Germany
Phone
+49 421 40885636
Email
info@hey-services.de
Website
hey-services.de
Court of registration
Local court (Amtsgericht) Bremen · HRB 39352 HB
Managing Director
Florian Haedge

2. Data Protection Officer

For questions about data protection and to exercise your rights, please contact:

Postal address
e-health.software – Datenschutz –
P.O. Box 10 06 15
28006 Bremen
Germany
Email
datenschutz@hey-services.de

3. Which data we process

In the course of operating this website, we process the following categories of personal data:

  • Technical connection data (collected automatically): IP address, date and time of access, requested URL, transmitted data volume, HTTP status code, referrer URL, browser and operating system.
  • Contact data (when actively submitted): name, email address, phone number and the content of your message, when you contact us via the contact form or by email.
  • Email address for launch notification: If you sign up on the home page to be notified of the launch, we process your email address solely for that purpose.
  • Technical usage data via external services: When loading the Inter font, the visitor's IP address is transmitted to the CDN provider Bunny Fonts (see Section 6).

We do not collect any special categories of personal data within the meaning of Art. 9 GDPR.

4. Server log files

When you access this website, our hosting provider automatically stores information in so-called server log files. This is technically necessary data without which proper operation of the website is not possible:

  • IP address of the requesting device (where applicable in anonymised form)
  • Date and time of the request
  • Requested URL and transmitted data volume
  • HTTP status code and referrer URL
  • Name and version of the browser and operating system used

This data is processed exclusively to ensure trouble-free operation and to defend against attacks. It is not combined with other data sources.

Legal basis: Art. 6 (1) (f) GDPR (legitimate interest in secure and stable operation).

5. Contact requests

When you contact us via the contact form, by email or by phone, we process the data you provide (name, email address, phone number, message content) solely for the purpose of handling your request.

When the contact form is submitted, the entered data is forwarded to us by email immediately. The content is not stored server-side. Server logs contain only metadata (timestamp, IP address, response code), not the content of the inquiry. The server infrastructure is hosted by Hetzner Online GmbH; a data-processing agreement (AVV) is in place.

If you sign up via the notification form on the home page, we process the email address you provide solely to inform you once about the launch of Hey Services. Your address is not added to a mailing list or newsletter.

Your data is not shared with third parties unless this is necessary to handle your request or you have explicitly agreed.

Legal basis: Art. 6 (1) (b) GDPR (initiation or performance of a contract) and Art. 6 (1) (f) GDPR (legitimate interest in responding to inquiries).

6. External services (CDN)

Bunny Fonts (Inter font)

This website loads the Inter font via the service Bunny Fonts (BunnyCDN, Bunny Way d.o.o., Dunajska cesta 165, 1000 Ljubljana, Slovenia). Bunny Fonts is an EU-compliant service and does not transfer IP addresses to third countries outside the EU/EEA. No cookies are set and no user profiles are created.

More information: fonts.bunny.net/about

Legal basis: Art. 6 (1) (f) GDPR (legitimate interest in consistent and reliable presentation of the website).

7. Cookies & tracking

This website does not use any of its own cookies and does not employ tracking, web analytics or remarketing. No user profiles are created, no session data is permanently stored, and no data is processed for advertising purposes.

Only when external services are used (see Section 6) may technically necessary connection data be generated, used solely to deliver the resources.

Where we obtain consent from the data subject for processing operations involving personal data, Art. 6 (1) (a) GDPR serves as the legal basis. For processing of personal data necessary to perform a contract or to take pre-contractual steps, Art. 6 (1) (b) GDPR serves as the legal basis. Where processing is necessary to comply with a legal obligation, Art. 6 (1) (c) GDPR serves as the legal basis. Where vital interests of the data subject or another natural person make processing necessary, Art. 6 (1) (d) GDPR serves as the legal basis. Where processing is necessary to safeguard a legitimate interest of our company or a third party, and the interests, fundamental rights and freedoms of the data subject do not override the former interest, Art. 6 (1) (f) GDPR serves as the legal basis for processing.

9. Retention period

Personal data is deleted or blocked as soon as the purpose of storage no longer applies. Storage beyond this may take place if it is provided for by statutory regulations (e.g. tax and commercial retention obligations). In such cases, deletion takes place after the respective period has expired.

  • Server log files: usually 7–30 days, depending on the hosting provider's configuration
  • Contact requests: until the request has been finally processed, then until the expiry of statutory retention periods (max. 10 years), if a business relationship arises
  • Email for launch notification: until the launch notification has been sent, after which the address is deleted unless another business relationship has arisen

10. Your rights as a data subject

You have the following rights regarding the personal data concerning you:

Art. 15 GDPR
Right of access
You may request information about the data we have stored about you.
Art. 16 GDPR
Right to rectification
You may request the rectification of inaccurate data.
Art. 17 GDPR
Right to erasure
You may request the erasure of your data, provided no statutory retention obligations apply.
Art. 18 GDPR
Right to restriction
You may request the restriction of processing of your data.
Art. 20 GDPR
Right to data portability
You may request to receive your data in a machine-readable format.
Art. 21 GDPR
Right to object
You may object at any time to processing based on legitimate interests.
Art. 7 (3) GDPR
Withdrawal of consent
You may withdraw any consent given at any time with effect for the future.
Art. 22 GDPR
Automated decisions
You have the right not to be subject to a decision based solely on automated processing.

To exercise your rights, please contact: datenschutz@hey-services.de

11. Right to lodge a complaint with a supervisory authority

If you consider that the processing of personal data concerning you infringes the GDPR, you have the right to lodge a complaint with a data protection supervisory authority.

The supervisory authority responsible for us is:

Authority
Die Landesbeauftragte für Datenschutz und Informationsfreiheit Bremen
(State Commissioner for Data Protection and Freedom of Information of Bremen)
Address
Arndtstraße 1, 27570 Bremerhaven, Germany
Phone
+49 421 361-2010
Email
office@datenschutz.bremen.de
Website
www.datenschutz.bremen.de