Every time our website is accessed, our system automatically collects data and information from the computer system of the calling computer. The following data are collected:

• IP address of the user
• Date and time of access
• Page / URL
• Transferred amount of data
• Browser type and version
• User's operating system
• Referrer URL (previously visited page)
• Hostname of the accessing computer
• HTTP status code

These data are Logfiles of our system stored. This data is not stored together with other personal data of the user.

Legal basis: Art. 6 para. 1 lit. f GDPR (legal interest)
Purpose: Technical provision of the website, security, misuse recognition
Storage time: 7 days, then automatic deletion
Deletion: Automatically after expiry of the storage period

3.2 Use of computers

If you use our computers, you will no input values or calculation results stored. The calculations are done on the server side, but without storing your data.

We only store anonymous usage statistics:

• Which computer was used (without your inputs)
• Number of uses (counters)
• Date of use (for statistics)

These statistics include: no personal data and cannot be traced back to you.

Legal basis: Art. 6 para. 1 lit. f GDPR (legal interest)
Purpose: Improvement of the platform, identification of popular computers
Storage time: Unlimited (anonymized)

4. Cookies

4.1 Technically necessary cookies

Our website used only technically necessary cookies:

• Session cookie (PHP session): To manage admin sessions
  Name: PHPSESSID
  Purpose: Login status for admin area
  Storage time: Up to closing the browser (session cookie)
  Legal basis: Art. 6 para. 1 lit. b GDPR (contract fulfillment)

4.2 No tracking cookies

We use No:

• ❌ Google Analytics or other tracking services
• Google AdSense advertising cookies (see section 5)
• ❌ Social media plugins with tracking (Facebook Pixel, etc.)
• 3rd party cookies for advertising (Google AdSense)

Your privacy is important to us!

Five. Google AdSense Advertising

We use Google AdSense, an online advertising service of Google LLC ("Google"), 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google AdSense allows us to turn advertising related ads on our website to finance the free offer of our computers.

5.1 What data are processed?

Google AdSense uses cookies and comparable technologies to turn advertising relevant to you and other users. The following data can be processed:

• IP address (anonymized)
• Browser type and version
• Operating system
• Referrer-URL
• Date of visit
• Interactions with ads (clicks, fadings)
• Device information

5.2 Cookies by Google AdSense

Google AdSense sets cookies to personalize ads and measure the ad performance. The most important cookies are:

5.3 Legal basis

Legal basis: Art. 6 para. 1 lit. f GDPR (legal interest)
Legal interest: Financing of the free offer by advertising
Data processing in the USA: Google is certified under the EU-US Data Privacy Framework and thus provides adequate guarantees for data transmission.

5.4 Possibility of opposition

You can object to the use of cookies for personalized advertising:

• Google Ads settings: adssettings.google.com
• NAI Opt-Out: optout.networkadvertising.org
• Browser settings: Block third-party cookies in your browser

More information about data protection at Google: Google Privacy Policy

6. Contact form and email contact

If you contact us by contact form or e-mail, the data you provide (name, e-mail address, message content) will be stored by us to process your request.

Legal basis: Art. 6 para. 1 lit. f GDPR (legal interest) or Art. 6 para. 1 lit. b GDPR (pre-contractual measures)
Purpose: Processing of your request, communication
Storage time: Up to complete processing of your request, then a maximum of 3 years (legal retention obligations)
Deletion: After an accident or on your request (if there are no statutory retention obligations)

7. Future API Use (from 2025)

The following additional data will be processed for the planned API use:

6.1 Registration

When registering for an API account, the following data is collected:

• E-mail address (Pflicht)
• User name (Pflicht)
• Password (encrypted saved)
• First and last name (optional)
• Company/Organization (optional)

Legal basis: Art. 6 para. 1 lit. b GDPR (contract fulfillment)
Purpose: Provision of API access, billing
Storage time: As long as the account is active, then 10 years (§147 AO - retention obligation for payments)

6.2 API requests

When using API, the following data are logged:

• API key ID (encrypted)
• Called Endpoint
• Date of request
• IP address (anonymized after 24h)
• Response time
• Status code

Purpose: billing, rate licensing, misuse recognition
Storage time: 90 days (use statistics), then anonymized

6.3 Payment data

Payments are made by Stripe (external payment platform). We store no credit card details. Only:

• Invoicing address
• Transaction ID (from Stripe)
• Amount and date of payment
• Selected tariff

Legal basis: Art. 6 para. 1 lit. b GDPR (contract fulfillment), Art. 6 para. 1 lit. c GDPR (legal obligation - invoicing)
Storage time: 10 years (§147 AO, §257 HGB)

8. SSL or TLS encryption

For security reasons and to protect the transfer of confidential content, this website uses SSL/TLS encryption. An encrypted connection can be recognized by the fact that the address line of the browser changes from "http://" to "https://" and from the lock icon in your browser line.

If the SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

9. Your rights as a data subject

You have the following rights under the GDPR:

8.1 Right of access (Art. 15 GDPR)

You have the right to request information about your personal data processed by us.

8.2 Right to rectification (Art. 16 GDPR)

You have the right to request the correction of incorrect or the completion of incomplete data.

8.3 Right to deletion (Art. 17 GDPR)

You have the right to request the erasure of your personal data if the conditions of Art. 17 GDPR are met. This right does not exist, inter alia, if the processing is necessary to fulfil a legal obligation (e.g. retention obligations).

8.4 Right to restriction of processing (Art. 18 GDPR)

You have the right to request the restriction of the processing of your personal data.

8.5 Right to data portability (Art. 20 GDPR)

You have the right to receive the personal data concerning you in a structured, common and machine-readable format.

8.6 Right of objection (Art. 21 GDPR)

You have the right, for reasons arising from your particular situation, at any time to the processing of personal data concerning you, which is based on Art. 6 para. 1 lit. f GDPR (legitimate interest) is to object.

8.7 Right of appeal to a supervisory authority

You have the right to complain to a data protection supervisory authority about the processing of your personal data by us.

Responsible supervisory authority for Saxony:
Saxon Data Protection Officer
Devrientstraße 5
01067 Dresden
Telephone: 0351 85471 101
Email: saechsdsb@slt.sachsen.de
Website: www.saechsdsb.de

10. What data are NOT stored

For transparency, we would like to point out explicitly what we do NOT save:

• ❌ Your input values in the computers (e.g. your gross salary, your body dimensions, etc.)
• ❌ Calculation results (remaining locally in your browser)
• ❌ Personal profiles (no registration required)
• ❌ Tracking via third-party (no Google Analytics, Facebook Pixel, etc.)
• ❌ User profiles (no tracking of your surfing behavior)
• ❌ Location data (no GPS location)

Your calculations are and remain Private.

11. Cookies

10.1 Technically necessary cookies

Our website used only technically necessary cookiesnecessary for the operation of the website:

Legal basis: Art. 6 para. 1 lit. f GDPR (technically required)
No consent required according to TTDSG, since technically necessary

10.2 No tracking cookies

We set no tracking, analysis or marketing cookies one. A cookie banner is therefore not required.

12. Contact us

When you contact our contact form or by e-mail, the data you provide will be stored:

• Name (voluntary)
• E-mail address (Pflicht)
• Subject and message
• Date of request

Legal basis: Art. 6 para. 1 lit. f GDPR (legal interest in processing your request)
Purpose: Processing and answering your request
Storage time: Until complete processing, after deletion (except for legal retention obligations)
Disclosure: No transfer to third parties (except to email providers for delivery)

13. Hosting and Server

This website is hosted by:

Internal server (Self-Hosted)
Location: Germany
Operation: Medisax GmbH, Leipzig

The servers are located in Germany and are subject to German data protection law. Personal data is not transmitted to third countries outside the EU/EEA.

14. Duration of storage

We store personal data only for as long as it is necessary for the fulfillment of the respective purpose or for legal retention obligations.

15. Disclosure of data to third parties

Your data is generally not passed on to third parties except:

• You have expressly consented (Art. 6 para. 1 lit. a GDPR)
• The transfer is necessary for fulfilling the contract (Art. 6 para. 1 lit. b GDPR), e.g.:
  • Stripe (Payment-Provider) for API payments
  • Email provider for notifications
• There is a legal obligation (Art. 6 para. 1 lit. c GDPR)

All third parties are GDPR compliant and have contract processing contracts (AVV) concluded with us.

16. Information, deletion and correction

You have the right to receive information about your stored personal data at any time free of charge, their origin and recipients and the purpose of data processing.

For inquiries regarding your data please contact us:

Data protection contact:
Medisax GmbH
Data protection officer
Martinshöhe 5d
04158 Leipzig

Email: datenschutz@umcomputer.online
Telephone: 0341 5832953

17. Revocation of consent

If the processing of your personal data is based on your consent, you have the right to revoke this consent at any time. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

18. Changes in this Privacy Policy

We reserve the right to adapt this privacy policy occasionally so that it always meets the current legal requirements or to implement changes to our services (e.g. when the API is introduced).

The new data protection declaration will apply for your new visit. For significant changes, we inform registered users (API users) by e-mail.

19. Questions about data protection?

For questions concerning the collection, processing or use of your personal data, for information, correction, blocking or deletion of data Please contact:

E-mail: datenschutz@umcomputer.online
Telephone: 0341 5832953

Or use our Contact form.

We usually answer your queries within 14 days.

Status of this privacy statement: 28 November 2025
Version 4.1 (AdSense added)

Legal notice | Terms of use | Help & FAQ