English
English Deutsch
Inquire
English
English Deutsch
Contact

Legal Documentation

Privacy Policy

Trust begins with clarity. Learn how helvascale handles your data securely, transparently, and responsibly.

Last updated: 01.05.2026

Privacy Policy

We are pleased about your interest in our website. Protecting personal data is important to us. This Privacy Policy explains how IT2CLOUD GmbH processes personal data when you use our website https://it2cloud.io.

This Privacy Policy takes into account the General Data Protection Regulation (GDPR) and the Swiss Federal Act on Data Protection (FADP / revDSG).

1. Controller

The controller responsible for data processing is:

IT2CLOUD GmbH
Hauptstrasse 87a
5742 Kölliken
Switzerland

Email: Tim.Schmidt@it2cloud.io

Represented by: Tim Schmidt

2. Contact for Data Protection Requests

For questions regarding data protection, the processing of personal data, or the exercise of your rights, you may contact us at:

IT2CLOUD GmbH
Hauptstrasse 87a
5742 Kölliken
Switzerland

Email: Tim.Schmidt@it2cloud.io

3. EU Representative pursuant to Art. 27 GDPR

As IT2CLOUD GmbH is based in Switzerland and also offers its services to persons and companies in the European Union, it has appointed a representative in the European Union pursuant to Art. 27 GDPR.

Jan Rautenberg
c/o IT2CLOUD GmbH
Neue Torstr. 6 17389 Anklam Deutschland

Email: jan.rautenberg@it2cloud.io

The EU Representative serves as a contact point for data subjects and supervisory authorities in the European Union regarding questions related to the processing of personal data.

4. Hosting and Technical Infrastructure

This website is operated on our own IT infrastructure.

When you access our website, technically necessary data is processed. This may include in particular:

  • IP address
  • Date and time of access
  • Pages and files requested
  • Amount of data transferred
  • Browser type and browser version
  • Operating system
  • Referrer URL
  • Technical metadata relating to the request

The processing is carried out for the purpose of technical operation, system security, error analysis, and abuse prevention.

The legal basis is Art. 6(1)(f) GDPR. Our legitimate interest lies in the secure and stable operation of the website.

Server and security logs are stored only for as long as necessary for the above purposes, unless longer retention is required for security reasons or due to legal obligations.

5. No Integration of External Website Resources

Our website does not integrate external resources such as external fonts, JavaScript libraries, stylesheets, or comparable third-party resources.

As a result, no connection to external providers for such resources is established during a normal visit to the website.

6. SSL/TLS Encryption

This website uses SSL/TLS encryption to protect the transmission of confidential content.

You can recognize an encrypted connection by the ‘https://’ prefix in your browser’s address bar.

7. User Registration and Login

Users may register or log in to access certain features of the website.

In this context, the following data may be processed in particular:

  • Email address
  • User ID
  • Login metadata
  • Session data
  • Technical security information

The processing is carried out to provide protected features, authentication, account management, and abuse prevention.

The legal basis is Art. 6(1)(b) GDPR, insofar as the processing is necessary to provide the respective function. In addition, processing is carried out on the basis of Art. 6(1)(f) GDPR to ensure technical operation and security.

8. Cookies

No cookies for tracking or marketing purposes are set during a normal visit to our website.

Cookies are only set when you log in or use features that require a session.

We use only technically necessary cookies, in particular for:

  • Login
  • Session management
  • Access to protected areas
  • Security and abuse prevention

The legal basis is Art. 6(1)(b) GDPR, insofar as the cookies are necessary to provide logged-in features. In addition, Art. 6(1)(f) GDPR is the legal basis for security-related cookies.

We do not use marketing cookies or third-party tracking cookies.

9. Newsletter

We offer a newsletter.

If you subscribe to our newsletter, we process the data required for this purpose. This may include in particular:

  • Email address
  • Time of registration
  • Confirmation status
  • Technical metadata relating to the registration
  • Unsubscribe status

The processing is carried out for the purpose of sending the newsletter and managing newsletter subscriptions.

The legal basis is Art. 6(1)(a) GDPR.

You may withdraw your consent at any time with effect for the future. You can do so by using the unsubscribe link in the newsletter or by contacting us directly.

The newsletter is operated through our own IT infrastructure. We do not use external newsletter service providers for sending the newsletter.

10. Comments and Interactive Features

If comment functions or other interactive features are provided on the website, registered users may publish content.

In this context, the following data may be processed in particular:

  • Comment content
  • User ID
  • Time of publication
  • Technical metadata for security and abuse prevention

The processing is carried out for the publication and management of the respective content, as well as for moderation and abuse prevention.

The legal basis is Art. 6(1)(a) GDPR, insofar as the publication is based on your active input. For security, moderation, and abuse prevention measures, the legal basis is Art. 6(1)(f) GDPR.

Comments remain stored until they are deleted by the user, moderated by us, or removed as part of account or content management.

11. Appointment and Meeting Requests

Our website may contain links to appointment booking pages provided through Google Workspace.

When you click such a link, you leave our website and are redirected to a calendar or appointment booking page provided by Google.

Google may process personal data in this context, in particular:

  • Name
  • Email address
  • Selected appointment
  • Message entered or additional information provided
  • Technical metadata

Processing by us is carried out for the purpose of scheduling appointments and communication.

The legal basis is Art. 6(1)(b) GDPR, insofar as the appointment is related to pre-contractual or contractual inquiries. In addition, Art. 6(1)(f) GDPR is the legal basis for the efficient organization of appointments and business communication.

Google’s privacy information applies additionally to the processing of personal data by Google.

12. Contact by Email

If you contact us by email, we process the data you provide.

This may include in particular:

  • Email address
  • Name
  • Content of the message
  • Communication metadata
  • Any additional information provided by you

The processing is carried out to handle your request, communicate with you, and document business-related correspondence.

The legal basis is Art. 6(1)(b) GDPR, insofar as your request is related to pre-contractual or contractual measures. Otherwise, processing is carried out on the basis of Art. 6(1)(f) GDPR.

13. Retention of Personal Data

We store personal data only for as long as necessary for the respective purposes.

Longer storage may occur if statutory retention obligations apply, if the data is required for the establishment, exercise, or defense of legal claims, or if security reasons require temporary further storage.

14. Recipients of Personal Data

Personal data is only disclosed to third parties if this is necessary to provide our services, if there is a legal obligation, if you have given your consent, or if there is a legitimate interest.

Recipients may include, in particular, technical service providers, communication services, or providers we use to deliver our services.

Where service providers process personal data on our behalf, this is done on the basis of appropriate data protection agreements.

15. Transfers to Third Countries

Where personal data is transferred to countries outside Switzerland, the European Union, or the European Economic Area, this is done only if there is an appropriate legal basis.

This may include in particular:

  • An adequacy decision
  • Standard contractual clauses
  • Contractual or legal necessity
  • Your consent
  • Other appropriate safeguards under applicable data protection law

16. Rights of Data Subjects

Subject to the applicable legal requirements, you have in particular the following rights:

  • Right of access
  • Right to rectification
  • Right to erasure
  • Right to restriction of processing
  • Right to data portability
  • Right to object to processing based on legitimate interests
  • Right to withdraw consent with effect for the future

To exercise your rights, you may contact us at:

Email: Tim.Schmidt@it2cloud.io

Alternatively, you may also contact the EU Representative pursuant to Section 3 of this Privacy Policy.

17. Right to Lodge a Complaint with a Supervisory Authority

If you believe that the processing of your personal data violates applicable data protection law, you may contact a competent data protection supervisory authority.

For Switzerland, this is in particular:

Federal Data Protection and Information Commissioner (FDPIC / EDÖB)

Individuals in the European Union may also contact a competent data protection supervisory authority of an EU Member State.

18. Children’s Privacy

Our website and services are not directed at children.

We do not knowingly collect personal data from children. If we become aware that personal data of children has been processed without the required legal basis, we will delete such data where required by law.

19. Changes to this Privacy Policy

We may update this Privacy Policy if technical, legal, or organizational changes occur.

The current version is available at:

https://it2cloud.io/privacy/

Last updated: May 2026