Privacy Policy

Responsible Party

NextSolutions Einzelunternehmen

c/o MDC Management #4627

Welserstraße 3

87463 Dietmannsried

Germany

Represented by Owner: Justin Franke

E-Mail: contact@next-host.de

Support: support@next-host.de

Abuse: abuse@next-host.de

Accounting: accounts@next-host.de

Phone: 0163 691 4800 (no support)

Imprint: Legal Notice

Overview of Processing

The following overview summarizes the types of data processed, the purposes of processing, and the affected data subjects.

Types of Data Processed

  • Inventory data
  • Payment data
  • Contact data
  • Content data
  • Contract data
  • Usage data
  • Meta, communication, and procedural data
  • Log data

Categories of Affected Persons

  • Service recipients and clients
  • Interested parties
  • Communication partners
  • Users
  • Business and contractual partners

Purposes of Processing

  • Provision of contractual services
  • Communication
  • Security measures
  • Direct marketing
  • Reach measurement
  • Tracking
  • Audience building
  • Organizational and administrative procedures
  • Feedback
  • Marketing
  • Profiles with user-related information
  • Provision of online offerings
  • IT infrastructure
  • Public relations
  • Business processes and operational procedures

Relevant Legal Bases

GDPR (General Data Protection Regulation)

  • Consent (Art. 6 Para. 1 lit. a GDPR)
  • Contract fulfillment / pre-contractual measures (Art. 6 Para. 1 lit. b GDPR)
  • Legitimate interests (Art. 6 Para. 1 lit. f GDPR)

National Data Protection Regulations (Germany)

In addition, the Federal Data Protection Act (BDSG) and, where applicable, state data protection regulations apply.

Security Measures

NextHost implements technical and organizational measures in accordance with Art. 32 GDPR to ensure a level of protection appropriate to the risk. These include in particular:

  • Access controls (physical & digital)
  • Access restrictions according to the need-to-know principle
  • Measures to ensure confidentiality, integrity, and availability
  • Privacy by design and privacy-friendly default settings

TLS/SSL Encryption

Our online offerings use TLS/SSL encryption (HTTPS) for the secure transmission of personal data.

Transfer of Personal Data

Transfer occurs only:

  • Within the scope of legal obligations
  • For contract fulfillment
  • Based on legitimate interests
  • When using external service providers (with data processing agreements according to Art. 28 GDPR)

International Data Transfers

Data transfers to third countries occur exclusively:

  • Based on an adequacy decision (e.g., EU-US Data Privacy Framework)
  • Or by means of Standard Contractual Clauses (SCCs)
  • Or based on explicit consents

Storage Duration and Deletion

Personal data is deleted as soon as:

  • The purpose no longer applies
  • Consents have been revoked
  • There are no legal storage obligations

Legal Retention Periods (Germany)

  • 10 years: Accounting records
  • 8 years: Booking receipts
  • 6 years: Business letters and tax-relevant documents
  • 3 years: Civil law claims (limitation period)

The deadline begins at the end of the calendar year.

Rights of Data Subjects

Data subjects have the following rights in particular:

  • Right of access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to object (Art. 21 GDPR)
  • Right to withdraw consent
  • Right to lodge a complaint with a supervisory authority

Payment Services

NextHost uses external payment service providers (e.g., PayPal, Stripe, Klarna, Apple Pay, Google Pay, Visa, Mastercard, Amazon Payments, American Express).

Processing is carried out exclusively for payment processing. NextHost does not receive complete payment data (e.g., credit card numbers).

Legal basis: Art. 6 Para. 1 lit. b GDPR

Web Hosting and Server Log Files

When accessing our services, the following data is processed, among others:

  • IP address
  • Date & time
  • Browser type
  • Operating system
  • Referrer URL

Log files are stored for a maximum of 30 days.

Legal basis: Art. 6 Para. 1 lit. f GDPR

Cookies & Consent Management

NextHost uses cookies:

  • Technically necessary cookies (without consent)
  • Optional cookies (only with consent)

Withdrawal is possible at any time.

Storage duration:

  • Session cookies: until end of session
  • Permanent cookies: up to max. 2 years

User Accounts & Registration

Processed data:

  • Name / Pseudonym
  • Email address
  • Login credentials
  • IP address

After cancellation of the account, data will be deleted unless there are legal obligations to the contrary.

Contact

When contacting us via form, email, or phone, we process the transmitted data exclusively to handle the inquiry.

Legal basis: Art. 6 Para. 1 lit. b and f GDPR

Newsletter

Newsletter dispatch is based exclusively on consent. Unsubscription is possible at any time.

Legal basis: Art. 6 Para. 1 lit. a GDPR

Social Media Presence

NextHost maintains a presence on, among others:

  • Instagram
  • LinkedIn
  • X (Twitter)
  • YouTube

The privacy policies of the respective providers also apply.

Third-Party Content & Plugins

Integration of external content (e.g., Google Fonts, YouTube, Social Media Plugins) occurs:

  • Based on legitimate interests
  • Or only after consent

Changes to the Privacy Policy

We reserve the right to amend this privacy policy if legal or technical changes make it necessary.