1. Introduction

This website is operated by: Clean Ocean Coatings GmbH.

It is very important to us to handle the data of our website visitors in a trustworthy manner and to protect it in the best possible way. For this reason, we make every effort to comply with the requirements of the GDPR.

Below we will explain to you how we process your data on our website. To do this, we use language that is as clear and transparent as possible so that you really understand what is happening with your data.

  1. General information
  1. Processing of personal data and other terms

Data protection applies when processing personal data. Personal means all data with which you can be personally identified. This is, for example, the IP address of the device (PC, laptop, smartphone, etc.) in front of which you are currently sitting. Such data is processed when 'something happens to it'. Here, for example, the IP is transmitted from the browser to our provider and automatically stored there. This is then processing (according to Art. 4 No. 2 GDPR) of personal data (according to Art. 4 No. 1 GDPR).

These and other legal definitions can be found in Article 4 GDPR.

  1. Applicable regulations/laws – GDPR, BDSG and TTDSG

The scope of data protection is regulated by law. In this case, these are the GDPR (General Data Protection Regulation) as a European regulation and the BDSG (Federal Data Protection Act) as a national law.

The TTDSG also supplements the provisions of the GDPR as far as the use of cookies is concerned.

  1. The person responsible

The person responsible for data processing on this website is the person responsible within the meaning of the GDPR. This is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data.

You can reach the person responsible at:

Clean Ocean Coatings GmbH

 Stadtdeich 2 - 4
20097 Hamburg

  1. This is how data is generally processed on this website

As we have already established, there is data (e.g. IP address) that is collected automatically. This data is primarily required for the technical provision of the homepage. If we use personal data or collect other data, we will inform you about this or ask for your consent.

You consciously share other personal data with us.

You can find detailed information about this below.

  1. Your rights

The GDPR gives you comprehensive rights. These include, for example, free information about the origin, recipient and purpose of your stored personal data. You can also request the correction, blocking or deletion of this data or complain to the responsible data protection supervisory authority. You can revoke your consent at any time.

You can find out what these rights look like in detail and how they should be exercised in the last section of this data protection declaration.

  1. Data protection – our view

For us, data protection is more than just a chore! Personal data has great value and careful handling of this data should be a given in our digitalized world. In addition, as a website visitor you should be able to decide for yourself what, when and by whom “happens” to your data. That's why we undertake to comply with all legal regulations, only collect the data we need and, of course, treat it confidentially.

  1. Sharing and Deletion

The sharing and deletion of data are also important and sensitive issues. That's why we would like to briefly inform you in advance about our general approach to this.

The data will only be passed on based on a legal basis and only if this is unavoidable. This can be the case in particular if it is a so-called processor and an order processing contract has been concluded in accordance with Art. 28 GDPR.

We will delete your data if the purpose and legal basis for processing no longer apply and there are no other legal obligations to prevent deletion. Article 17 GDPR also provides a 'good' overview of this.

Please find all further information in this data protection declaration and contact the person responsible if you have any specific questions.

  1. Hosting


Webflow, Inc., 398 11th Street, 2nd Floor, San Francisco, CA 94103, USA. .

  1. Legal basis

The processing of personal data always requires a legal basis. The GDPR provides for the following options in Article 6 Paragraph 1 Sentence 1:

  1. The data subject has given his or her consent to the processing of personal data concerning him or her for one or more specific purposes;
  2. the processing is necessary for the performance of a contract to which the data subject is party or in order to take steps prior to entering into a contract at the data subject's request;
  3. the processing is necessary for compliance with a legal obligation to which the controller is subject;
  4. the processing is necessary to protect the vital interests of the data subject or another natural person ;
  5. the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
  6. processing is necessary to safeguard the legitimate interests of the controller(s) or a third party(s), unless the interests or fundamental rights and freedoms of the data subject which require the protection of personal data outweigh them, in particular if the data subject is the data subject is about a child.

In the following sections we will provide you with the specific legal basis for the respective processing.

  1. This is what happens on our website

When you visit our website, we process your personal data.

In order to best protect this data against unauthorized interference by third parties, we use SSL or TLS encryption. You can recognize this encrypted connection by the fact that there is an https:// or a lock symbol in the address bar of your browser.

Below you will find out what data is collected when you visit our website, for what purpose and on what legal basis.

  1. Data collection when you visit the website

When you access the website, information is automatically stored in so-called server log files. This is the following information:

  • Browser type and browser version
  • operating system used
  • Referrer URL
  • Host name of the accessing computer
  • Time of server request
  • IP address

This data is temporarily required in order to be able to display our website to you permanently and without any problems. In particular, this data serves the following purposes:

  • Website system security
  • System stability of the website
  • Troubleshooting the website
  • Establishing a connection to the website
  • Presentation of the website

Data processing is carried out in accordance with Article 6 Paragraph 1 Letter f of the GDPR and is based on our legitimate interest in processing this data, in particular the interest in the functionality of the website and its security.

If possible, this data is stored pseudonymously and deleted after the respective purpose has been achieved.

If the server log files enable the data subject to be identified, the data will be stored for a maximum period of 14 days. An exception exists when a safety-relevant event occurs. In this case, the server log files are stored until the security-related event has been eliminated and finally clarified.

Otherwise, it will not be merged with other data.

  1. Cookies
  1. General

This website uses so-called cookies. This is a data set, information that is stored in the browser of your device and is related to our website.

By setting cookies, the navigation of the website can be made easier for the visitor.

  1. Decline cookies

The setting of cookies can be prevented by adjusting your browser settings.

Here you will find the corresponding links to frequently used browsers:

Mozilla Firefox:

Google Chrome:

Microsoft Edge:

Safari: and If you use a different browser, it is recommended to enter the name of your browser and 'Delete and manage cookies' in a search engine and follow the official link to your browser.

Alternatively, you can also change your cookie settings at administer.

However, we must point out that comprehensive blocking/deleting of cookies can lead to impairments in the use of the website.

  1. Technically necessary cookies

We use technically necessary cookies on this website so that our website functions error-free and in accordance with applicable laws. They help make the website user-friendly. Some functions of our website cannot be displayed without the use of cookies.

  1. Cookies that are not technically necessary

We also use cookies on our website that are not technically necessary. These cookies are used, among other things, to analyze the surfing behavior of the website visitor or to offer functions of the website that are, however, not technically necessary.

The legal basis for this is your consent in accordance with Article 6 Paragraph 1 Letter a GDPR.

Cookies that are not technically necessary are only set with your consent, which you can revoke at any time in the cookie consent tool.

  1. Data processing through user input
  1. Own data collection

We offer the following service on our website: Contact form.

For this purpose we collect the following data:

e-mail address

The legal basis for this data processing is Article 6 Paragraph 1 Letter b GDPR.

The data will be deleted as soon as the respective purpose no longer applies and it is possible in accordance with the legal requirements.

  1. contact
  1. e-mail

If you contact us by email, we process your email address and, if necessary, other data contained in the email. These are stored on the mail server and partly on the respective end devices. Depending on the issue, the legal basis for this is usually Article 6 Paragraph 1 Letter f GDPR or Article 6 Paragraph 1 Letter b GDPR. The data will be deleted as soon as the respective purpose no longer applies and it is possible in accordance with the legal requirements.

  1. contact form

We offer a contact form. This is used to contact our company.

In this form we usually process your first and last name, your telephone number, your email address, a postal address and the content of the message. The data is stored on our web server and forwarded internally to the relevant email addresses.

The legal basis for the processing is Article 6 Paragraph 1 lit. b and lit. f GDPR.

We delete this data no later than 3 months after receipt, unless it is needed for a contractual relationship that has arisen.

We bind the contact form from


Webflow, Inc., 398 11th Street, 2nd Floor San Francisco, CA 94103, United States of America .

on our website.

  1. Website construction system
  1. Webflow

We use Webflow to create our website. This is a service of Webflow, Inc., 398 11th Street, 2nd Floor San Francisco, CA 94103, United States of America.

Webflow is a website building system. With this service we can design our website according to our wishes and meet our goal of user-friendliness.

Webflow uses cookies for security when browsing and to prevent cross-site request forgery (session cookies), as well as for secure transactions.

The service is technically necessary to display our website. The legal basis for processing is Article 6 Paragraph 1 Letter f GDPR.

Webflow also processes data in the USA. We have concluded standard contractual clauses (SCCs) with webflow.

Further information: .

  1. Newsletter
  1. Mailchimp

We use Mailchimp to deliver our newsletter.

Mailchimp is a service for sending newsletters and is offered by Rocket Science Group LLC, 675 Ponce De Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA.

Mailchimp can be used to organize the sending of newsletters. The data entered to receive the newsletter is stored on Mailchimp's servers in the USA. If success measurement is deactivated, the user data is not evaluated.

Mailchimp evaluates performance data, email delivery statistics and other communication data.

If data transfer is not desired, you must unsubscribe from the newsletter.

Mailchimp uses cookies to ensure the security and reliability of its systems, compliance with terms of use and to prevent misuse. These cookies are only used if you register for the newsletter.

The legal basis for the processing is Article 6 Paragraph 1 Letter a GDPR and Section 25 Paragraph 1 TTDSG. Your consent can be revoked at any time by unsubscribing from the newsletter. The lawfulness of the processing that has already taken place remains unaffected by any revocation.

When data is transferred to the USA, the EU Commission's Standard Contractual Clauses (SCC) apply. .

The data will be deleted when the contract between us and Mailchimp ends, unless you revoke your consent beforehand. In this case, the data will be deleted when the consent is revoked.

You can also find further information at and You can find out more at .

  1. Audio and video conferences
  1. Microsoft Teams

We use Microsoft Teams to communicate with customers. Microsoft Teams is an online conferencing tool. This service is offered by Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland.

When communicating with this tool via video or audio conferences, personal data is processed by us and the tool provider. The data collected includes all the information that you provide when using the tool. Metadata relating to the conference is also processed. Furthermore, technical information is processed that is required for the online communication to function. Furthermore, all files that are shared within the tool are stored on the tool provider's servers.

Microsoft Teams can also set cookies. These cookies are only set with consent. This consent can be revoked at any time. The legal basis for this is Article 6 Paragraph 1 Letter a GDPR.

Furthermore, the legal basis for the processing of data by Microsoft Teams is Article 6 (1) (b) GDPR. The communication is related to the fulfillment of a contract or is necessary to fulfill pre-contractual obligations. Furthermore, this tool is used to simplify communication with our company. This represents a legitimate interest within the meaning of Article 6 Paragraph 1 Letter f GDPR.

This data will be stored until the person concerned requests deletion, consent to storage has been revoked or the purpose for storage no longer applies. Cookies remain on the device until the user deletes them. Mandatory legal provisions regarding retention periods remain unaffected.

More details: .

  1. This is also important

Finally, we would like to inform you in detail about your rights and tell you how you will be informed about changes to data protection requirements.

  1. Your rights in detail
  1. Right to information according to Art. 15 GDPR

You can request information about whether your personal data is being processed. If this is the case, you can request further information about how the data is processed. You can find a detailed list in Article 15 Paragraph 1 Letters a to h GDPR.

  1. Right to correction according to Art. 16 GDPR

This right includes the correction of inaccurate data and the completion of incomplete personal data.

  1. Right to deletion according to Art. 17 GDPR

This so-called 'right to be forgotten' gives you the right, under certain conditions, to request that the person responsible delete your personal data. This is generally the case if the purpose of data processing no longer applies, if consent has been revoked or if the initial processing took place without a legal basis. You can find a detailed list of reasons in Article 17 Paragraph 1 Letters a to f GDPR. This “right to be forgotten” also corresponds to the duty of the person responsible under Article 17 (2) GDPR to take appropriate measures to bring about a general deletion of the data.

  1. Right to restriction of processing according to Art. 18 GDPR

This right is linked to the conditions set out in Article 18 Paragraph 1 Letters a to d.

  1. Right to data portability according to Art. 20 GDPR

This regulates the basic right to receive your own data in a common form and to transmit it to another person responsible. However, this only applies to data processed based on consent or contract in accordance with Article 20 Paragraph 1 Letters a and b and to the extent that this is technically feasible.

  1. Right to object according to Art. 21 GDPR

In principle, you can object to the processing of your personal data. This applies in particular if your interest in objecting outweighs the legitimate interest of the controller in the processing and if the processing relates to direct advertising and/or profiling.

  1. Right to “decision in individual cases” according to Art. 22 GDPR

In principle, you have the right not to be subject to a decision based solely on automated processing (including profiling) that has legal effects on you or significantly affects you in a similar way. However, this right also finds restrictions and additions in Article 22 Paragraphs 2 and 4 GDPR.

  1. Further rights

The GDPR includes comprehensive rights to inform third parties about whether or how you have asserted your rights under Articles 16, 17, 18 GDPR. However, this is only to the extent that this is possible or can be carried out with reasonable effort.

At this point we would like to remind you of your right to revoke your consent in accordance with Art. 7 Para. 3 GDPR. However, this does not affect the lawfulness of the processing carried out up to that point.

We would also like to point out your rights according to §§ 32 ff. BDSG, the content of which is largely the same as the rights just described.

  1. Right to complain according to Art. 77 GDPR

You also have the right to complain to a data protection supervisory authority if you believe that processing of your personal data violates this regulation.

  1. What if GDPR is abolished tomorrow or other changes take place?

The current status of this data protection declaration is September 20, 2023. As soon as we change this data protection declaration, we will inform you about it on our website.

Created with the kind support of Dieter Macht data protection