Skip to main navigation Skip to main content Skip to page footer
Novotruck Novotruck
novotruck logo weiss 1600 x 533

Privacy Policy | novotruck – GDPR-Compliant Data Protection

Our Commitment to Data Protection

At novotruck, protecting your personal data is a top priority.
Compliance with the General Data Protection Regulation (GDPR) is not just a legal requirement for us — it is a core part of how we build trust and transparency.

Why GDPR Matters to novotruck

Trust & Security

The GDPR ensures that your personal data is handled with the highest level of care.
By adhering to these standards, we create trust and ensure the security of your data at all times.

Legal Compliance

GDPR compliance protects both our company and our customers from legal risks.
We focus on preventive measures to identify and avoid potential data protection issues at an early stage.

Transparency & Control

We provide clear and understandable information about how your data is processed.
You remain in control of your personal data at all times and can review and manage its use.

Responsibility & Ethics

For us, data protection is also a matter of responsibility and ethics.
We are committed to using your data only for legitimate, transparent, and clearly defined purposes.

Our Commitment — The Foundation of Trust

For us, GDPR compliance is non-negotiable.
It forms the basis for long-term, reliable, and trust-based collaboration.

We expect all our business partners to share and actively support our high data protection standards.

“Together for Secure Data Protection”

Let’s work together to ensure that your data is always in safe hands.
Feel free to contact us to learn more about our data protection practices — and how we can build a successful partnership together.

1. Controller

novotruck Kühlfahrzeuge GmbH
Frankfurter Straße 53
49214 Bad Rothenfelde
Germany

Phone: +49 5424 2070490
Email: dialog@novotruck.eu

2. Data Protection Officer

Tanja Bamler
Email: datenschutz@novotruck.eu

3. How We Handle Your Data

We take data protection seriously and process personal data strictly in accordance with the General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG).

Personal data refers to any information that can identify you directly or indirectly.

4. Data Collected When You Visit Our Website

When you access our website, certain technical data is collected automatically:

  • IP address
  • Date and time of access
  • Browser type and version
  • Operating system
  • Referrer URL
  • Hostname of the accessing device

We use this data to:

  • ensure the stable operation of our website
  • maintain system security
  • analyse and resolve technical issues

Legal basis: Art. 6(1)(f) GDPR (legitimate interest)
Retention period: up to 7 days

5. Hosting

Our website is hosted by an external provider:

Contabo GmbH
Munich, Germany

We have concluded a data processing agreement in accordance with Art. 28 GDPR.

6. Cookies & Tag Management

Essential Cookies

We use technically necessary cookies to ensure the proper functioning of our website.

Legal basis: Art. 6(1)(f) GDPR

Google Tag Manager

We use Google Tag Manager, provided by Google Ireland Limited.

Google Tag Manager itself does not process personal data. It enables us to manage and deploy services on our website efficiently.

Any tracking tools integrated via Google Tag Manager are only activated with your consent.

Legal basis: Art. 6(1)(a) GDPR

Data transfers to countries outside the EU (e.g. the USA) may occur. These are based on standard contractual safeguards in accordance with Art. 46 GDPR.

7. Consent Management

We use the consent management tool CCM19 to manage and document your preferences regarding cookies and similar technologies.

The following data may be processed:

  • consent status
  • time of consent
  • browser information
  • shortened IP address

Legal basis:
Art. 6(1)(c) GDPR (legal obligation)
Art. 6(1)(f) GDPR (documentation of consent)

8. Contacting Us

If you contact us via email or our contact form, we will process your data to handle your request.

Purpose: communication and request handling
Legal basis: Art. 6(1)(b) GDPR
Retention: until your request has been fully resolved

9. Applications

If you apply to us, we process your data as part of the recruitment process.

Legal basis:
Section 26 BDSG
Art. 6(1)(b) GDPR

Retention period: up to 6 months after completion of the process

10. Social Media

We maintain profiles on social networks to communicate with customers and interested parties.

We are active on:

  • Facebook / Instagram (Meta Platforms Ireland Ltd.)
  • LinkedIn (LinkedIn Ireland Unlimited Company)

When you visit these platforms, your data may be processed by the respective providers.

Please note that this processing may take place outside our direct control.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in communication)

Joint Responsibility

For certain processing activities, we share responsibility with the platform providers (Art. 26 GDPR).

Further information:

Your Rights

You can exercise your rights both with us and directly with the platform providers.

11. Use of Artificial Intelligence (AI)

We use AI technologies to support and improve our business processes.

What we use AI for

  • content creation and analysis
  • process optimisation
  • improving internal efficiency

How we handle data

  • only processed where legally permitted
  • no sensitive personal data is entered into external AI systems
  • data is anonymised or pseudonymised wherever possible

External providers

We ensure:

  • GDPR compliance
  • data processing agreements
  • processing within the EU or under appropriate safeguards

Important note

We do not use fully automated decision-making with legal or similar significant effects (Art. 22 GDPR).

12. Data Sharing

We only share personal data when:

  • required by law
  • necessary for contract performance
  • based on legitimate interests
  • with authorised processors (e.g. hosting providers)

13. Data Retention

We retain personal data only for as long as necessary for the respective purpose.

Legal retention obligations remain unaffected.

14. Your Rights

You have the right to:

  • access your data (Art. 15 GDPR)
  • correct inaccurate data (Art. 16 GDPR)
  • request deletion (Art. 17 GDPR)
  • restrict processing (Art. 18 GDPR)
  • data portability (Art. 20 GDPR)
  • object to processing (Art. 21 GDPR)

15. Withdrawal of Consent

You may withdraw your consent at any time with future effect.

16. Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority.

Responsible authority in Lower Saxony:

State Commissioner for Data Protection of Lower Saxony

17. Data Security

We use appropriate technical and organisational measures to protect your data.

18. Updates

This privacy policy is valid as of: 04 April 2026