Privacy Policy of Vita Bayern

1. Introduction

Welcome to the website of Vita Bayern (https://vita-bayern.de/). We take data protection seriously and process your personal data in accordance with the General Data Protection Regulation (GDPR) and the German Telecommunication-Telemedia Data Protection Act (TTDSG). This Privacy Policy explains how we collect, use, and protect your data when you visit our website.

2. Data Controller

Blumental Bayern GmbH
Melanchthonplatz 4-6, 90443 Nürnberg, Germany
Phone: +49-911-47711390
Email: info@vita-bayern.de

3. Data Collection and Processing

We collect and process personal data only when necessary to provide our website and services.

3.1 Automatically Collected Data (Server Logs)

When you visit our website, our server automatically collects the following data:

  • IP address (anonymized if possible)
  • Browser type and version
  • Operating system
  • Referrer URL
  • Date and time of access
  • Amount of data transferred

This data is processed for security reasons, to optimize our website, and to ensure functionality.
Legal basis: Art. 6(1)(f) GDPR (legitimate interest in secure website operation).

3.2 Contact Form and Email Communication

If you contact us via email or our contact form, we process:

  • Your name
  • Your email address
  • Telephone number
  • Your message content

Legal basis: Art. 6(1)(b) GDPR (pre-contractual communication) or Art. 6(1)(f) GDPR (our legitimate interest in responding to inquiries).

3.3 Cookies and Tracking Technologies

We use cookies and similar technologies to improve user experience and analyze website traffic.

  • Essential Cookies (required for website functionality; legal basis: Art. 6(1)(f) GDPR)
  • Analytics Cookies (only with your consent; legal basis: Art. 6(1)(a) GDPR)
  • Third-Party Cookies (e.g., Google Analytics; see section below)

You can manage or revoke cookie consent anytime via our cookie settings.

3.4 Lifestyle & Supplement Questionnaire

If you choose to complete our Lifestyle & Supplement Questionnaire, we may process the following personal data you provide:

  • Dietary preferences (e.g., vegetarian, vegan, omnivore), food consumption habits (fruits, vegetables, processed foods, grains)
  • Lifestyle information (exercise frequency, sleep quality, stress levels, smoking and alcohol use, hydration habits)
  • Health-related information (medical conditions, supplement use, medications that may interact with supplements)
  • Personal goals (e.g., energy, immune support, weight management, pregnancy/breastfeeding status)
  • Optional uploads (e.g., food diary images, smartwatch/fitness tracker data)

Purpose of processing:

  • To generate personalized supplement and lifestyle recommendations
  • To provide customized product suggestions and improve our services
  • To analyze anonymized trends for internal product development and customer support

Legal basis: Art. 6(1)(a) GDPR (explicit consent). You provide consent by checking the box confirming:

“I have read and agree to the Privacy Policy and consent to the processing of my personal data for personalized supplement and lifestyle recommendations.”

Data retention: Your responses are stored only as long as necessary to provide recommendations or as required by law. You may request deletion at any time.

Sharing: Data is not sold to third parties. Access is restricted to authorized staff and trusted service providers under GDPR-compliant agreements.

Withdrawal of consent: You may withdraw consent for processing questionnaire data at any time. Upon withdrawal, your data will no longer be used for recommendations and will be deleted.

4. Third-Party Services

4.1 Google Analytics

Our website uses Google Analytics to analyze user behavior. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

  • Data collected: IP address (anonymized), page visits, interactions
  • Legal basis: Art. 6(1)(a) GDPR (your consent)
  • Opt-out: You can disable Google Analytics via our cookie settings or by installing the Google Opt-Out Plugin.

4.2 Social Media Plugins

We use LinkedIn, Facebook, and Instagram buttons that link to our social media pages. No data is transmitted unless you click these buttons.

5. Data Security

We implement technical and organizational measures to protect your data against unauthorized access, loss, or misuse. Our website uses SSL encryption for secure data transmission.

6. Data Retention and Deletion

  • Server logs: Deleted automatically after 30 days.
  • Contact form/email inquiries: Stored as long as needed for processing, then deleted.
  • Cookies: Storage duration varies; see our cookie settings for details.
  • Questionnaire data: Stored only as long as required to provide recommendations or until you request deletion.

7. Your Rights under GDPR

You have the following rights regarding your personal data:

  • Right to access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to object (Art. 21 GDPR)
  • Right to withdraw consent (Art. 7(3) GDPR)
  • Right to lodge a complaint with a data protection authority (Art. 77 GDPR)

To exercise your rights, contact us at info@vita-bayern.de.

8. Data Transfer Outside the EU

If third-party services process data outside the EU (e.g., Google, Facebook), we ensure compliance through Standard Contractual Clauses (SCCs) or adequacy decisions under Art. 44–49 GDPR.

9. Changes to This Privacy Policy

We may update this policy to reflect legal or technical changes. The latest version is always available on our website.

Last updated: September 2025