Wir haben noch mehr zu bieten!
1.1 We are pleased that you are visiting our website and thank you for your interest. In the following we will inform you about the handling of your personal data when using our website. Personal data refers to all data that can be used to identify you personally.
1.2 The data controller for data processing on this website in accordance with the General Data Protection Regulation (GDPR) is EASY SmartHome GmbH, Neuer Weg 1, 59505 Bad Sassendorf Germany, Tel.: +49 2921 370 380, Email: kontakt@easy-smarthome.de. The data controller responsible for processing personal data is the natural or legal person who, alone or together with others, decides on the purposes and means of processing personal data.
1.3 For security reasons and to protect the transfer of personal data and other confidential content (e.g. order or inquiries to the data controller), this website uses SSL or TLS encryption. You can recognise an encrypted connection by the character string “https://” and the padlock icon in your address bar.
If you use our website for information purposes only, i.e. if you do not register or otherwise provide us with information, we only collect data that your browser transmits to our server (so-called “server log files”). If you visit our website, we collect the following data which are technically necessary for us in order to display the website:
The processing takes place pursuant to Article 6 para. 1 lit. f of the GDPR based on the legitimate interest of improving stability and functionality of our website. The data will not be passed on or used in any other way. However, we reserve the right to verify the server log files subsequently if there are specific indications of illegal use.
In order to make visiting our website attractive and enable the use of certain functions, we use so-called cookies on various pages. Cookies are small text files that are stored on your device. Some of the cookies we use are deleted again at the end of your browser session, i.e. when you close your browser (these are known as session cookies). Other cookies remain on your computer and enable us to recognise your browser on your next visit (so-called persistent cookies). If cookies are set, they collect and process specific user information individually such as browser and location data as well as IP address values. Persistent cookies are automatically deleted after a specified period of time, which may differ depending on the cookie. You can see the storage duration in the overview of cookie settings of your web browser.
Some cookies are used to simplify the ordering process by saving settings (e.g. remembering the content of a virtual shopping basket for a later visit to the website). If personal data are also processed by individual cookies we use, processing is carried out pursuant to Article 6 para. 1 lit. b GDPR either for the execution of the contract or pursuant to Article 6 para. 1 lit. a GDPR in the event of a granted consent or pursuant to Article 6 para. 1 lit. f GDPR to safeguard our legitimate interests in the best possible functionality of the website and a customer-friendly and effective design of the page visit.
Please note that you can set your browser so that you are informed about the setting of cookies and can decide individually whether to accept them or to exclude the acceptance of cookies for certain cases or in general. Each browser differs in the way it manages cookie settings. This is described in the Help menu of each browser, which explains how to modify your cookie settings. You can find these for each browser under the following links::
Internet Explorer: https://support.microsoft.com/de-de/help/17442/windows-internet-explorer-delete-manage-cookies
Firefox: https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen
Chrome: https://support.google.com/chrome/answer/95647?hl=de&hlrm=en
Safari: https://support.apple.com/de-de/guide/safari/sfri11471/mac
Opera: https://help.opera.com/de/latest/web-preferences/#cookies
Please note that if you do not accept the use of cookies, our website may have limited functionality.
Personal data are collected when you contact us (e.g. by contact form or email). Which data are collected when using a contact form can be seen from the respective contact form. These data are stored and used exclusively for the purpose of answering your request or contacting you and for the associated technical administration. The legal basis for processing these data is our legitimate interest in answering your request pursuant to Article 6, Para. 1, lit. f GDPR. If the aim of contacting us is to execute a contract, then the additional legal basis for the processing of the data is Article 6, Para. 1, lit. b GDPR. Your data will be deleted after your request has been processed. This is the case if it can be inferred from the circumstances that the matter in question has been finally clarified and provided that there are no statutory retention requirements.
Pursuant to Article 6 para. 1 lit. b GDPR, personal data will continue to be collected and processed if you provide them to us for the execution of a contract or when opening a customer account. The type of data collected is indicated in the respective data forms. Your customer account can be deleted at any time by sending a message to the abovementioned address of the data controller. We save and use the data you provide for the purpose of contract processing. Once the contract has been fully processed or your customer account deleted, your data will be blocked with regard to tax and commercial retention periods, and deleted once these periods have elapsed, unless you have expressly consented to further use of your data or a legally permitted further use of data on our part has been reserved, about which we will inform you accordingly.
When using our VPN service CloudMatic Connect and CloudMatic Complete, we log the IP address of the device establishing the connection, the time the connection was established and terminated, and the certificate used.
When using additional services of CloudMatic (email messages, SMS messages, push notifications, voice messages), additional data are stored for logging. These include (depending on the service):
When using the additional service IFTTT, the actions you create as well as the data points of your devices to be controlled are also stored for the use of incoming actions. The stored data come from the respective input fields.
When using our CloudMatic SmartHome service, we store the operating pages ("views") you create and the data points of your devices to be controlled. The stored data come from the respective input fields.
Signing up to our email newsletter
If you sign up to our email newsletter, we will send you regular information on our offers. The only mandatory information for sending the newsletter is your email address. The provision of further data is voluntary and is used in order to be able to address you personally. We use the so-called double opt-in process for sending the newsletter. This means that we will only send you an email newsletter if you have expressly confirmed to us that you consent to receiving the newsletter. We will then send you a confirmation email asking you to confirm that you want to receive the newsletter in the future by clicking on a corresponding link.
By activating the confirmation link, you give us your consent to the use of your personal data pursuant to Article 6 Para. 1 lit. a GDPR. When you sign up to the newsletter, we will save your IP address entered by the Internet Service Provider (ISP) as well as the date and time you sign up in order to trace potential misuse of your email address at a later time. The data we collect when you sign up to the newsletter are used exclusively for promotional purposes through the newsletter. You can unsubscribe from the newsletter at any time by using the link provided in the newsletter or by sending a message to the data controller mentioned at the beginning. Once you have unsubscribed, your email address will be immediately deleted from our newsletter distribution list, unless you have expressly consented to further use of your data or we reserve the right to use your data for other purposes permitted by law and about which we inform you in this declaration.
7.1 Insofar as it is necessary for the execution of the contract for delivery and payment purposes, the personal data collected by us will be passed on to the commissioned transport company and the commissioned bank pursuant to Article 6 para 1 lit. b GDPR.
If we owe you updates for goods with digital elements or for digital products on the basis of a corresponding contract, we process the contact data you provide when ordering (name, address, email address) in order to inform you within the framework of our legal information obligations pursuant to Article 6 para. 1 lit. c GDPR by a suitable communication channel (e.g. by post or email) about upcoming updates in the legally stipulated period. Your contact data will be used strictly for the purpose of notifying you of updates owed by us and will be processed by us for this purpose only insofar as this is necessary for the respective information.
In order to process your order, we also work together with the following service provider(s), who support us in whole or in part in the implementation of concluded contracts. Certain personal data are transmitted to these service providers in accordance with the following information.
7.2 Use of payment service providers (payment services)
- Paypal
For payment via PayPal, use of a credit card via PayPal, direct debit via PayPal or, if offered, “purchase on account” or “payment by instalments” via PayPal, we will pass on your payment data to PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter referred to as “PayPal”) as part of the payment process. This transfer takes place pursuant to Article 6 para. 1 lit. b GDPR and only insofar as this is necessary for payment processing.
PayPal reserves the right to carry out a credit check for payment by credit card via PayPal, direct debit via PayPal or, if offered, “purchase on account” or “payment by instalments” via PayPal. For this purpose, your payment data may be processed pursuant to Article 6 para. 1 lit. f GDPR on the basis of the legitimate interest of PayPal in determining your solvency to credit agencies. PayPal uses the result of the credit check with regard to the statistical probability of default for the purpose of deciding on the provision of the respective payment method. The credit check may contain scores. Insofar as score values are included in the result of the credit report, they are based on a scientifically recognised mathematical-statistical procedure. The calculation of the scores includes, but is not limited to, address data. Please refer to PayPal’s Privacy Statement for further information on data protection including the credit agencies used: https://www.paypal.com/de/webapps/mpp/ua/privacy-full
You can object to this processing of your data at any time by sending a message to PayPal. However, PayPal may still be entitled to process your personal data insofar as this is required for payment processing in accordance with the contract.
- SOFORT
If you select the "SOFORT" payment method, payment will be processed by the payment service provider SOFORT GmbH, Theresienhöhe 12, 80339 Munich, Germany (hereinafter referred to as “SOFORT”), to whom we will send the information you provided during the ordering process along with the information about your order pursuant to Article 6 para. 1 lit. b of the GDPR. Sofort GmbH is part of the Klarna Group (Klarna Bank AB (publ), Sveavägen 46, 11134 Stockholm, Sweden). Your data are passed on exclusively for the purpose of processing payments with the payment service provider SOFORT and only to the extent that it is necessary for this. You can find more information about SOFORT privacy policy at the following Internet address: https://www.klarna.com/sofort/datenschutz
8.1 We work together with the service providers below for the integration of further services in CloudMatic. Certain personal data are transmitted to these service providers in accordance with the following information.
8.2 Sending text messages
When text messages are sent via CloudMatic, we will pass on data provided by you to CM Telecom Germany GmbH, Mainfrankenpark 53, 97337 Dettelbach as part of the sending process. This transfer takes place pursuant to Article 6 para 1 lit. b GDPR and only to the extent that this is necessary for sending the message.
These data relate in particular to:
8.3 Sending push notifications
If the push service is used, a device token from Apple or a registration ID from Google is assigned. These are encrypted, anonymised device IDs. When sending push notifications via CloudMatic, the data you provide are sent to the push service of the platform, which forwards the push notification to the respective devices. This transfer takes place pursuant to Article 6 para 1 lit. b GDPR and only to the extent that this is necessary for sending the message.
These data relate in particular to:
8.4Sending voice messages
When voice messages are sent via CloudMatic, the data provided by you are sent to Nexmo Inc., 217 Second Street, 4th Floor, San Francisco, CA 94105 as part of the sending process. This transfer takes place pursuant to Article 6 para 1 lit. b GDPR and only to the extent that this is necessary for sending the message.
These data relate in particular to:
8.5 Amazon Alexa
When Amazon Alexa is integrated via CloudMatic, the data you specify is sent to Amazon Europe Core S.à r.l., 5 Rue Plaetis, L-2338 Luxembourg as part of the connection. This transfer takes place pursuant to Article 6 para. 1 lit. b GDPR and only insofar as this is necessary for the integration.
These data relate in particular to:
8.6 Google Assistant
When integrating Google Assistant via CloudMatic, the data you specify will be sent to Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043-1351 as part of the connection. This transfer takes place pursuant to Article 6 para. 1 lit. b GDPR and only insofar as this is necessary for the integration.
These data relate in particular to:
9.1When using the app, data are transferred via the internet - data are therefore processed by our servers as well as the app.
The following data are processed:
The processing takes place pursuant to Article 6 para. 1 lit. f GDPR on the basis of our legitimate interest in improving the stability and functionality of our app. The data will not be passed on or used in any other way. However, we reserve the right to verify the server log files subsequently if there are specific indications of illegal use.
When using our CloudMatic SmartHome, we store the operating pages (“views”) you create and the data points of your devices to be controlled. The stored data come from the respective input fields.
9.2 Data processing for quality assurance in the EASY app
As part of our quality assurance, data are processed and passed on to the Microsoft App Center. The processing takes place pursuant to Article 6 para. 1 lit. f because we have a legitimate interest in maintaining our quality.
The following data are processed:
All data are made anonymous. It is not possible to trace the user from these data.
9.3 Data processing within the scope of push notifications
To transmit push notifications, data are sent to the Firebase service from Google (Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA). The processing takes place pursuant to Article 6 para. 1 lit. f because we have a legitimate interest in using any communication channel for our app. The following data are processed:
Firebase Cloud Messaging is part of the backend service platform. Other services from Firebase are not used.
For more information on the Firebase Cloud Messaging Terms of Service, visit the Firebase website: https://firebase.google.com/terms/.
9.4 Permissions of the Smartha App
Under Android, the following authorisations are required to ensure the operation of the app:
9.5 Permissions of the EASY App
Under Android, the following authorisations are required to ensure the operation of the app:
9.6 Contact request within the Smartha app (by email, telephone or fax)
If you contact us (e.g. via the contact form within the app, by email, telephone or fax), your request, including all personal data resulting from it (e.g. name, request) will be stored and processed by us for the purpose of processing your request. The legal basis for collecting these data is Article 6 para. 1 lit. b GDPR, where your enquiry is in connection with fulfilment of a contract, or is required for execution of pre-contractual activities. In all other cases, processing is based on your consent (Art. 6 para. 1 lit. a GDPR) and/or our entitled interests (Article 6 para. 1 lit. f GDPR) as we have an entitled interest in the effective processing of the enquiries received by us.
The data you send to us via the contact form will remain with us until you request that we delete them, revoke your consent to their storage or the purpose of its storage no longer applies (e.g. after we have completed processing your request). Mandatory statutory provisions, especially statutory retention periods, remain unaffected. We will not share these data without your consent.
9.7 Use and collection of location data in the Smartha app (geofencing)
In order to be able to offer you certain functions of the app, we collect your position data using GPS. You can only use these functions after you have agreed to the location permission.
Your location data are never stored or transmitted to us. You can allow or revoke this function in the settings of the app or your operating system at any time by deactivating the authorisation for location transmission under "Settings".
The legal basis for data processing, insofar as this serves to fulfil the user contract with the user, is Article 6 para. 1 lit. b GDPR, otherwise our legitimate interest pursuant to Article 6, para. 1, lit. f GDPR.
9.8 Integration of external devices into the Smartha app
In order to integrate devices from external providers (Homematic IP, Philips Hue, Openweather Ltd., IFTTT) into the app, it is usually necessary for you to register with the respective provider of this device and/or its service and to accept their additionally applicable provisions. It is also necessary that you allow the connection to the Smartha app so that data can be exchanged.
In order to provide the functionalities of the Smartha app for the connected device of the external provider, it is essential that we transmit data to the respective external provider and receive data from this provider. Please note that this exchanged data may also be personal information.
Which data are exchanged depends on the respective device to be integrated. A list of the exchanged data tailored to the respective device to be integrated will be displayed to you for confirmation before each integration by the respective provider.
Typically, the following data are exchanged:
Matomo (formerly Piwik)
This website uses the web analysis service software Matomo (www.matomo.org), a service provided by InnoCraft Ltd., 150 Willis St, 6011 Wellington, New Zealand, (“Matomo”) to collect and store data on the basis of our legitimate interest in statistical analysis of user behaviour for optimisation and marketing purposes pursuant to Article 6 para. 1 lit. f GDPR. Pseudonymised user profiles can be created and analysed for the same purpose using these data. Cookies can be used for this purpose. Cookies are small text files which are saved locally in the web browser cache of the visitor to the website. Among other things, cookies make it possible for the website to recognise web browsers that return to the site. The data collected using Matomo technology (including your pseudonymised IP address) are processed on our servers.
The information generated by the cookie in the pseudonymous user profile is not used to identify the visitor to this website personally and is not combined with personal data about the bearer of the pseudonym.
If you do not agree to the storage and evaluation of these data from your visit, you can object to the storage and use for the future at any time with a mouse click. In this case, a so-called opt-out cookie is stored in your browser, with the result that Matomo does not collect any session data. Please note that if you completely delete your cookies, the opt-out cookie will also be deleted and you may have to reactivate it.
Insofar as this is legally required, we have obtained your consent to process your data as described above pursuant to Article 6 para. 1 lit. a GDPR. You can revoke your consent at any time with effect for the future. To exercise your revocation, please deactivate this service in the "Cookie Consent Tool" provided on the website.
OTRS
We use the email ticket system of OTRS AG, Zimmersmühlenweg 11, 61440 Oberursel ("OTRS") to process customer inquiries. If users of our website send contact requests by email, these are stored and organised in the ticket system to enable chronological processing and to improve the service experience. Users can always see the current status of the processing of their request via the individually assigned ticket number.
Personal data are collected as provided in the enquiry, exclusively for the organisation of enquiries and their processing, but in any case surname, first name and email address are transmitted to OTRS, are stored there and read out. The legal basis for the processing of these data is our legitimate interest in the efficient design of our customer service, in the fastest possible answer to your request and the optimisation of our service offer pursuant to Article 6 para. 1 lit. f GDPR
We have concluded an order processing contract with OTRS, with which we oblige OTRS to protect the data of our customers and not to pass them on to third parties.
Your data will be deleted after your request has been processed. This is the case if it can be inferred from the circumstances that the matter in question has been finally clarified and provided that there are no statutory retention requirements.
For more information on OTRS data protection, please visit https://otrs.com/de/dsgvo/
Cookie consent tool based on Usercentrics technology
This website uses a cookie consent tool with technology from Usercentrics GmbH, Sendlinger Strasse 7, 80331 Munich (hereinafter referred to as "Usercentrics") to obtain effective user consent for cookies that require consent and cookie-based applications..
By integrating a corresponding JavaScript code, a banner is displayed to users when the page is accessed, in which consent can be given for certain cookies and/or cookie-based applications by ticking the box. The tool blocks the setting of all cookies that require consent until the respective user gives their consent by ticking the box. This ensures that such cookies are only set on the respective end device of the user if consent has been given.
In order for the cookie consent tool to be able to clearly assign page views to individual users and to individually record, log and store the consent settings made by the user for a session duration, certain user information (including the IP address) is collected by the cookie consent tool when our website is called up, transmitted to servers of Usercentrics and stored there.
This data processing takes place pursuant to Article 6 para. 1 lit. f GDPR on the basis of our legitimate interest in a legally compliant, user-specific and user-friendly consent management for cookies and therefore in a legally compliant design of our website.
Another legal basis for the data processing described is Article 6 para. 1 lit. c GDPR. As the data controller, we are subject to the legal obligation to make the use of technically unnecessary cookies dependent on the respective user consent.
We have concluded an order processing contract with Usercentrics, with which we oblige Usercentrics to protect the data of visitors to our website and not to pass them on to third parties.
For more information on how Usercentrics uses data, see the Usercentrics Privacy Policy at https://usercentrics.com/privacy-policy/
13.1 The applicable data protection law grants you the following data subject rights (rights to information and intervention rights) with regard to the data controller with regard to the processing of your personal data, whereby reference is made to the legal basis given for the respective exercise requirements:
13.2 RIGHT TO OBJECT
IF WE PROCESS YOUR PERSONAL DATA ON THE BASIS OF OUR LEGITIMATE INTEREST, YOU HAVE THE RIGHT AT ANY TIME TO OBJECT THIS PROCESSING WITH EFFECT FOR THE FUTURE FOR REASONS ARISING FROM YOUR SPECIAL SITUATION.
IF YOU USE YOUR RIGHT TO OBJECT, WE WILL END THE PROCESSING OF THE DATA CONCERNED. HOWEVER, WE RESERVE THE RIGHT TO FURTHER PROCESSING IF WE CAN PROVE COMPULSORY REASONS FOR PROCESSING THAT OUTWEIGH YOUR INTERESTS, FUNDAMENTAL RIGHTS AND FREEDOM OR IF THE PROCESSING IS FOR THE ASSISTANCE, EXERCISE OR DEFENCE OF LEGAL CLAIMS.
IF YOUR PERSONAL DATA ARE PROCESSED BY US FOR DIRECT ADVERTISING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF PERSONAL DATA FOR THE PURPOSE OF SUCH ADVERTISING. YOU MAY OBJECT AS DESCRIBED ABOVE.
IF YOU MAKE USE OF YOUR RIGHT TO OBJECT, WE WILL END THE PROCESSING OF THE DATA CONCERNED FOR DIRECT ADVERTISING PURPOSES.
The duration of the storage of personal data is based on the respective legal basis, the processing purpose and, if relevant, additionally based on the respective statutory retention period (e.g. commercial and tax retention periods).
When processing personal data on the basis of express consent pursuant to Article 6 para. 1 lit. a GDPR, these data are stored until the data subject revokes his or her consent.
If there are any statutory retention periods for data that are required within the framework of legal or similar obligations on the basis of Article 6 para. 1 lit. b GDPR, these data are routinely deleted after the retention periods have expired, provided they are no longer required to fulfil or initiate a contract and/or we have no legitimate interest in further storage.
When processing personal data on the basis of Article 6 para. 1 lit. f GDPR, these data are stored until the data subject exercises his or her right of objection in accordance with Article 21 para. 1 GDPR, unless we can prove compelling legitimate reasons for the processing that outweigh the interests, rights and freedoms of the data subject, or the processing serves to assert, exercise or defend legal claims.
When processing personal data for the purpose of direct advertising on the basis of Article 6 para. 1 lit. f GDPR, these data are stored until the data subject exercises his or her right of objection in accordance with Article 21 para. 2 GDPR.
Unless otherwise stated in the other information in this declaration about specific processing situations, stored personal data will otherwise be deleted when they are no longer necessary for the purposes for which they were collected or otherwise processed.
EASY SmartHome GmbH reserves the right to update this privacy policy if necessary to adapt it to technical developments or in connection with the offer of new services or products. You can always view the current version on the website.
Last updated: 02/2022
EASY SmartHome GmbH
Neuer Weg 1
59505 Bad Sassendorf
Telefon: +49 (0)2921 / 370 380
Mo. - Fr.: 10.00 - 12:00 Uhr
und 13:00 - 17.00 Uhr
Copyright © 2025 EASY SmartHome GmbH / Alle Rechte vorbehalten